itas GDPR Compliance Statement

itas place a high priority on protecting and managing data in accordance with the new GDPR. As a business, we remain committed to high standards of information security, privacy and transparency.

As such, we will aim to comply with all applicable GDPR regulations when they take effect in May 2018. We will also work closely with our customers and potential customers to help them meet their obligations through the provision of professional services.

itas' GDPR Preparation

As part of our GDPR preparation process, we are reviewing and updating all our internal processes, procedures, data systems and documentation in order to help ensure that we are ready when GDPR comes into force in May 2018.

Our GDPR Principles:

  • We will process all personal data fairly and lawfully.
  • We will only process personal data for specified and lawful purposes.
  • We will endeavour to hold relevant and accurate personal data, and where practical, we will keep it up to date.
  • We will not keep personal data for longer than is necessary.
  • We will keep all personal data secure.
  • We will endeavour to ensure that personal data is not transferred to countries outside of the European Economic Area (‘EEA’) without adequate protection.

Our GDPR Focus:

  • We aim to introduce and build on our existing security and business continuity systems to help ensure our compliance.
  • We will help our customers understand and prepare for GDPR, as well as help support the development of their compliance plans.

Our GDPR Actions:

  • We are reviewing and updating our range of policies, including our Data Breach Policy, Business Continuity Plans and Subject Access Requests.
  • We will provide an updated privacy policy on our website to incorporate our GDPR obligations.
  • We will undertake a systematic review of the personal data we store, manage, maintain, collect, process and control.
  • We will provide training to our team and generally raise the awareness and importance of GDPR to our business.
  • We will continually look at ways of improving our systems and procedures to better comply with GDPR best practise.
  • We will continue to monitor our GDPR plans up to the target date in May 2018 and beyond.

Should you require any further information about itas's GDPR plans and preparedness then please feel free to contact us.

If you would like to submit a request under the General Data Protection Regulations please complete the following form: