Join Loch Employment Law and SortmyPC to learn more about the upcoming GDPR changes, and what they mean for your business.

Chris Phillips, Partner at Loch Employment Law, will chair this breakfast seminar, which will cover the legal implications of GDPR, and how you IT and cybersecurity can be prepared.

Gavin Macgregor, Solicitor, will talk you through:

  • The legal principles of the GDPR, and bases for processing data
  • What is covered by ‘personal data’?
  • Storing, Processing & Deleting Data – the GDPR changes
  • Employee Consent & Rights and how Employers should respond to Subject Access Requests
  • What happens when you suffer a data breach, including enforcement & consequences
  • Tips for Compliance

Gordon Sayers, Managing Director, SortmyPC will discuss:

  • The intersection of IT and GDPR
  • Data Risk Assessment
  • A practical approach to GDPR and IT
  • How SortmyPC can help with compliance

The presentation will be followed by Q&A’s with our expert speakers, and networking opportunities over breakfast.

Learn more and book your place here; https://www.eventbrite.co.uk/e/gdpr-update-seminar-tickets-41112678127

GDPR Seminar blog imageAre you ready for the upcoming changes to data protection that GDPR will bring next year? If not, don’t panic! Join us on Thursday 1st February when Loch Employment Law and SortmyPC present a GDPR Update Seminar.

WHEN: 1 February, 2018, 08:30 – 10.30
WHERE: Atria One, Brewin Dolphin, 144 Morrison Street, Edinburgh, EH3 8BR
Register online: https://gdprupdateseminar.eventbrite.co.uk

Chris Phillips, Partner at Loch Employment Law, will chair this breakfast seminar which will cover the legal implications and how your IT and security policies can be prepared.

Gavin Macgregor, Solicitor at Loch Employment Law will talk you through:
• The legal principles of the GDPR, and bases for processing data What is covered by ‘personal data’?
• Storing, Processing & Deleting Data – the GDPR changes
• Employee Consent & Rights and how Employers should respond to Subject Access Requests
• What happens when you suffer a data breach, including enforcement & consequences
• Tips for Compliance

Gordon Sayers, Managing Director, SortmyPC will discuss:
• The intersection of IT and GDPR
• Data Risk Assessment
• A practical approach to GDPR and IT
• How SortmyPC can help with compliance

The presentation will be followed by Q&A’s with the expert speakers and networking opportunities over breakfast.

To book a place visit https://gdprupdateseminar.eventbrite.co.uk/

About the speakers:

Chris Phillips is a partner with Loch Employment Law and accredited by The Law Society of Scotland as an employment law specialist. He has a wealth of experience in advising organisations on legal compliance issues.

Gavin Macgregor advises on a wide range of employment issues and personally conducts Employment Tribunal hearings in addition to representing clients during mediation proceedings.

Gordon Sayers is Managing Director of SortmyPC, one of Edinburgh’s leading Managed IT services providers.
For further information contact Gordon Sayers on 0131 477 2644.

Start your GDPR plan now… book your place today!

From 25 May 2018, the General Data Protection Regulation legislation will raise the privacy bar on personal data by requiring organisations to locate, understand its purpose and appropriately secure it, no matter where it lives or how it is shared… and the majority of organisations are still completely unaware of GDPR.

Data processors, companies using personal data on behalf of others, will have specific legal obligations to maintain records of personal data and processing activities. You’ll now be required to notify the ICO, within 72 hours of a data breach where it is likely to result in a risk to the rights and freedoms of individuals.

Please come and join the team from Lugo for breakfast followed by a constructive half day seminar where you’ll hear from industry leaders and GDPR specialists. You’ll come away with the tools to enable your data protection compliance over the coming months.

Friday 1st December, The Village Hotel Edinburgh. £25. Full details here

Specialising in cyber security for SMEs, Lugo are a Scottish IT company founded in 2003 with offices in Glasgow, Edinburgh, Dundee and Inverness. With roots in the accounting & finance field, Lugo’s monthly support contracts provide the reassurance of fixed price computer and communications support, providing business with state of the art tools to enable continual growth.

To confidently claim personal data is safe from threats at the perimeter, next generation firewall devices detect advanced, and never before seen, threats and also scan encrypted traffic which older firewalls lack the ability to do. SonicWall specialises in cyber-security products to stop ransomware, encrypted threats and phishing attacks, over not only wired but also wireless and mobile networks.

Multi award winning law firm Gilson Gray will guide you through the steps and measures you can put in place to secure your business without running the risk of being non-compliant.

As IASME (Information Assurance for SMEs) accredited to provide advanced levels of auditing through the Cyber Essentials Scheme, CyberAggress will provide practical steps to help your organisation protect itself against cyber attacks.

Agenda
8:30am Registration with breakfast rolls
9:15am Introduction
9:30am Gilson Gray – Changes in Data Protection Legislation
10:30am Coffee break
10:45am CyberAggress – Cyber Security Compliance
11:30am SonicWALL – Protecting your business data
12 noon Lugo – Enabling effective IT security
12.30pm Q&A
12:45pm Close

The cost to business of poor practice in this area goes above and beyond any fine the ICO can impose. Losing your customers’ trust could be terminal for your reputation and for your organisation.

Don’t wait or take a reactive approach to your GDPR preparations, not least because the ICO will have the power to fine companies up to twenty million Euros or four per cent of a company’s total annual worldwide turnover for the preceding year.

Book your team and your clients on now!

Is your business ready for GDPR in May 2018? Spend some time with the OneStopIT team to learn about how GDPR will affect your business.

We have four speakers from the worlds of IT, Marketing, Legal and HR who will share their knowledge with you. GDPR affects all areas of your business so come along and learn how a joined-up approach is needed to safeguard your company.

As an IT company we are aware that Cyber security and GDPR is not just an IT issue. It will affect all areas of your business which is why we have teamed up with our friends at:

Wright Johnston & McKenzie LLP
GDPR comes into force on 25 May, 2018 and one of its primary aims is to give more control back to individuals over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

39Steps
Do you know how GDPR will affect your Marketing Department? If your business uses email marketing, sends direct mail or makes sales calls, the layw is changing what you can and can’t do.
Some things you might do today will no longer be allowed.
It’s tempting to think “I’ll deal with it in May”.
But there’s some easy things you should do right now, which mean you won’t run into trouble later.

HR Dept
Don’t panic! It’s not too late to get ready, as long as you start now.
Your HR department will be crucial to preparing your business to comply with the new GDPR in regard to data held on employees, contractors, volunteers and job applicants.

Cyber Essentials & GDPR Expert

The Government-backed Cyber Essentials accreditation provides a comprehensive set of guidelines that, when followed, provide the best outcome to reducing the risk to any business.

GDPR isn’t just for big businesses – a gym that offers a members’ loyalty scheme or a one-person chiropractor that asks patients to complete a wellbeing form will have to ensure that personal data is stored in line with the new regulations and not breach them.

Registration with Tea, Coffee & nibbles will start from 5pm with the first presentation starting at 5.30pm. We expect the event to wrap up for 7.30pm – just in time to head home for dinner.

Find out more and book your place here.

IDCIT are hosting two events in Edinburgh showcasing GDPR and the importance of Cloud Computing with Azure and Office 365.

GDPR (General Data Protection Regulation) – 9th November 2017

13:00 – Introduction
13:30 – 14:00 – GDRP – Alan Nelson – CMS Law & Tax
15 Minute Break
14:15 – 14:45 – IDCIT – IT Implications of GDPR
15 Minute Break
15:00 – 15:30 – TBC
15 Minute Break
15:45 – 16:45 – General Discussion

Cloud Computing and 365 – 23rd November 2017

13:00 – Introduction
13:30 – 14:00 – James Henderson – BA365
15 Minute Break
14:15 – 14:45 – IDCIT – Office 365
15 Minute Break
15:00 – 15:30 – Accu8 Payroll
15 Minute Break
15:45 – 16:15 IDCIT – Future of IT

Who Should Register?
The events are aimed at decision makers and business owners who want to ensure their business is taking full advantage of cloud technologies, ensuring their companies become future proof.

To register your place on one of these events please click here and fill out the contact form. Please note there are limited number of seats available.

Who Are We?
We are a Microsoft Gold Partner Managed Services Company that provide the levels of service an attention that the modern business requires. We offer the following:
• Complete Microsoft Azure Migration
• Office 365 Subscriptions
• Custom Email Signatures
• Complete Cloud Security
• Fully Managed IT Support
• And Much More

As the significant new data security regulation, the General Data Protection Regulation (GDPR), comes into force in May 2018, Darren Bird, Head of Technology at Xeretec, explains how businesses can stay compliant.

Irrespective of how security conscious we have become in the digital era, the recent cyberattack on the NHS was a sobering reminder about the online vulnerabilities that all private and public sector organisations are still exposed to. Cyberattacks come in many forms, with many resulting in confidential data either being exposed or compromised.

But security breaches don’t just arise from large scale, high-profile attacks. Sometimes poor internal processes, or a lack of diligence, can result in a breach. In a bid to force companies to be even more proactive in their efforts to protect company and customer data, the EU has announced the GDPR will come into action in May of next year. In the case of a breach, the EU is warning of hefty fines of up to €20m, or 4% of a company’s annual worldwide turnover – whichever is greater.

Here are our recommendations to help avoid GDPR non-compliance:

Implement measures to keep your data safe

The primary objective of the GDPR is to strengthen and unify data protection for all individuals within the EU. This will ensure all organisations provide a broader duty of care to their customers, to prevent their personal details and data from leaking, so it is crucial that businesses start to think about the security measures they will put in place to comply with the GDPR.

The EU specifies that personal data is “any information relating to an individual, whether it relates to his or her private, professional or public life. It can be anything from a name, a home address, a photo, an email address, bank details, posts on social networking websites, medical information, or a computer’s IP address.”

Don’t overlook print from a security perspective

In the context of document imaging and print, it’s well known that unprotected print devices can be a source of data leaks. Private data is still being left unclaimed on devices, even though solutions already exist to mitigate the risks. While May 2018 may seem some time away, now is the time for all organisations to start assessing how ready and able they are to comply with the GDPR. Xeretec ensures that all its clients’ print is secure and has vast experience helping businesses to understand the security vulnerabilities print exposes them to

Find print solutions to comply with GDPR

Xeretec can also provide intelligent print management solutions that enable IT administrators to set up automated workflows. These can detect if documents contain specific patterns relating to data, such as bank or credit card details, personal health information, or sensitive company data. It can then redact any, or all, instances of that pattern in a document. On top of that, it is sophisticated enough to flag up incidents of potential compliance violations to a company’s chief data, security or compliance officer, thereby acting as an early warning system ahead of a potential breach.

Having a secure print function is another way that businesses can help their print comply with the GDPR, as this only allows those authorised to release prints from a device via a secure PIN code or swipe card. This is a powerful way to stop unclaimed documents being left on devices and an effective measure to help prevent security breaches from occurring.

Combined, these solutions can help deliver the type of proactive security management that could easily halt the kinds of security breaches that the GDPR is trying to prevent, therefore helping businesses avoid paying severe fines.

Arts & Business Scotland is delighted to announce booking is now open for courses and seminars in Edinburgh on copywriting, hiring for attitude and being a board member and their next Development Forum in Glasgow.

See all events here http://bit.ly/2vXOytB

Development Forum: GDPR and A Culture Strategy for Scotland
Thursday 26 October, Glasgow
Booking: https://DevelopmentForumOct26.eventbrite.co.uk

Our latest Development Forum features two Topics in Focus:
The General Data Protection Regulation (GDPR) will have a significant impact on how cultural organisations deal with personal data. Speakers from Scott-Moncrieff and BTO Solicitors will discuss important changes, including how it will affect fundraising and marketing.
A representative from Scottish Government will share the progress of A Culture Strategy for Scotland, enabling attendees to contribute to the consultation and feedback process.

This event is brought to you by Arts & Business Scotland, with Resourcing Scotland’s Heritage (RSH).

Telling it like it is – Effective Copywriting
Thursday 28 September, Edinburgh
Booking: https://CopywritingSept28.eventbrite.co.uk

This one-day training session explores the five stages of the copywriting process in the context of putting together an effective case for support for a cultural project or cause. Topics include defining and applying your tone of voice, writing creative headlines and crafting an elevator statement.

Introduction to Being a Board Member
Wednesday 4 October, Edinburgh
Booking: https://IBBMOct4.eventbrite.co.uk

This seminar is for new board members/trustees in the charitable arts sector (and those who would like a refresher) to understand their roles and responsibilities. Topics covered include: demystifying your legal and financial responsibilities and the dividing line between your role and that of the professional staff

Hiring and Managing for Attitude – Business Briefing
Tuesday 10 October, Edinburgh
Booking: https://HiringforAttitude.eventbrite.co.uk

So often people are great technically but are the wrong fit in terms of attitude and behaviours, so how do we recruit and develop the right people (and not the wrong people)? The session, delivered by A&BS member The HR Dept will cover the how to implement Competency based recruitment and performance management, and why it is so important.

Thorntons - GDPRBusinesses and public sector organisations have been warned that they will have under a year to ensure they are compliant with new Europe-wide data protection laws.

As part of the European Commission’s attempts to make the continent fit for the digital age, data protection law is undergoing significant reform and on 25th May 2018, the General Data Protection Regulation will become effective in the UK.

Leading Scottish law firm Thorntons joined forces with world class security experts Net Defence to offer advice and guidance from specialist experts at a recent seminar in Dundee. More than 90 businesses attended the two day event which aimed to ensure organisations don’t face heavy penalties for failing to comply with the legislation.

The recent event found that although 70% of attendees knew about GDPR, they have not yet started preparations in their business ahead of the new regulation.

Liam McMonagle, partner at Thorntons, chaired the event and associate Loretta Maxfield led the sessions.

Liam said: “From next May, GDPR will apply to all organisations that deal with personal data so it is essential that their processes are up to date.

“For organisations there is a level of security risk with information, but we aim to advise how these risks can be mitigated and provide a practical holistic view of what needs to be done to get GDPR ready.”

Organisations currently need to comply with the Data Protection Act 1998, but failure to comply with the new regulations will see penalties to the greater of 4% of turnover or €20M levied.

David Horn, Net-Defence Director, said: “We are all ‘data subjects’ and we live in a world where key aspects of our lives will be ever more determined by the data held about us.

“We also live in a world where that same data is more at risk and open to compromise than ever. With exactly one year to go until GPDR, it is vital that you understand the data risks within your organisation.”

Pictured (L-R): David Horn – Net Defence, with Loretta Maxfield, Liam McMonagle and Gregor MacQuarrie from Thorntons