Member of International Association of Privacy Professionals


Phased approach to privacy

The dangers of not taking privacy importantly in your organisation might result in losing important clients, breaching privacy laws and most importantly jeopardizing goodwill of your business amongst loyal consumers, not to mention large fines.

Approach to Privacy

My approach to privacy consists of the phased approach through which I can help you change your businesses internal working to facilitate, improving and fortifying the ways through which confidential information is safeguarded. I can work with both small and large companies and have experience in both. A phased approach is ideal for smaller business, whilst could also be used in a larger privacy environment. I would recommend that large companies look at a much more custom approach, always feel free to arrange a call, even a zoom met up works for me!

The dangers of not taking privacy importantly in your organisation might result in losing important clients, breaching privacy laws and most importantly jeopardizing goodwill of your business amongst loyal consumers, not to mention large fines. Our pricing approach to helping companies implement privacy laws and regulations effectively is extremely cost-effective in nature as we believe in providing companies flexibility.

Phase 1 – Risk Assessment (Privacy Gap Assessment)

In order to help in performing a privacy assessment and maintain protection of sensitive information. I focus on three primary aspects that include understanding the customer expectations in concerns with privacy, analyzing privacy obligations that your business has with other parties such as website users and evaluating the current landscape and how I might be able to assist in these regards. Our focus is primarily upon protecting the Personal Identifiable Information or PII through which the individuality of clients and businesses with whom you interact is maintained confidential.

For as little as £400 for small businesses and small charities, I am able to gauge the amount of threat through a risk assessment and have a clear understanding of the compliance needs that pertain to the business size or business type. Our main focus is upon assisting implemented map approach to juggling a lot of critical information processes easily.

At Green Arrow Consultancy, our privacy services focus upon achieving the following goals for clients:

  • Providing clients with up to date information in regards to compliance obligations and regulations
  • Assisting in the maintenance of privacy plans throughout your organisation
  • Facilitating in bringing about operational changes from ground level to executive managerial level.

Phase 2 – Establish Internal Roles

In small companies, there is a clear indication of which person performs which type of work in different types of departments such as HR, IT, and others. For these different departments and small roles, I can help assist you in how to make a clear privacy focused plan that your staff will understand. In the United Kingdom and Europe, the Information Commissioner possesses the power of issuing fines per infringement of data protection regulations (GDPR). These fines go up to above €10 million or 2% of the business’s global turnover and I can help you avoid this situation.

Statistical information suggests only 12% of reputable companies are willing or able to comply with the California Consumer Privacy Act (CCPA), this may be a Californian law, but it has an effect for companies across the USA and even Globally. This is a surprisingly large percentage as more and more people are becoming concerned about how confidential information is being treated. In large companies, this may be explored through the existing roles of individuals, my job here is to help you explore who within your company should be doing what and if you have gaps, in many cases I can plug gaps you have with my own expertise.

Phase 3 – Implementation of Privacy Compliancy Program

In order to implement the compliance project prepared by myself for your business, I will focus upon setting specific goals, rules, internal policies and standards to help you going forward in staying compliant going forward, successful implementation of compliancy programme is not the end of the story, if you don’t have internal policies in place your websites or apps will soon start breaking the law again, I will give you easy to use guides and where needed reports and training. I am here and availably to your business to take advantage of my expertise. In the case of small companies, this can be very straightforward and take a few weeks or even days as per the internal structure of the business. However, for large companies, it can take a longer period as in our experience working with multinational companies involves dealing with lots of internal staff, a lot more digital space is being used, often more than one website or a much larger website. This requires investigations into each area in order to make the privacy compliance program happen effectively.

My approach at GreenArrow is to help your business at every stage of compliance and support frequently for a number of months so that privacy of your prospective clients can be maintained at every step and demonstrated. Existing clients who have been with us for years can provide a testament to my work. My company Green Arrow Consultancy operate on the philosophy of “Leading the industry by example” and we exemplify this by our catalogue of websites we manage privacy concerns for including cookie consent.