AdvanceTrack demonstrates its compliance to GDPR by adding the BS 10012 standard to its existing BSI certifications
AdvanceTrack is delighted to announce that it has attained the personal information management system standard BS 10012.
Attaining the standard means it has met BSI’s best practice framework for the collecting, storing, processing, retaining or disposing of personal records relating to individuals.
The framework aligns to the principles of GDPR.
“We went through the process as many firms and their lawyers don’t understand the GDPR legislation,” says Vipul Sheth, AdvanceTrack founder and MD.
“We felt that we wanted the standard in order to demonstrate that our processes were aligned to GDPR compliance processes.”
The audit process undertaken by the BSI concluded that it was satisfied that AdvanceTrack’s processes enable us to deal with GDPR in a professional and systemised manner. The standard places AdvanceTrack at the forefront of compliance, says Sheth.
“In terms of culture, our staff have always taken security very seriously, so it is very much business as usual,” he says. “As a systemised business – while not an easy exercise – it did make the certification process much easier to attain.
“We already had most of the processes in place, but there were some technical changes applied to exceed best practice.”
What are the benefits of BS 10012?
BS 10012 provides a best practice framework for a personal information management system that is aligned to the principles of the EU GDPR. It outlines the core requirements organisations need to consider when collecting, storing, processing, retaining or disposing of personal records related to individuals.
Easily integrated with other popular management system standards, BS 10012 brings big benefits to companies of all sizes, including:
- Helping to identify and manage risks to personal information
- Supporting regulatory compliance with data protection legislation
- Inspiring customer trust
- Protecting your organisation’s reputation
- Benchmarking your own personal information management practices with recognised best practice.
AdvanceTrack is already certified for both ISO27001:2013 and ISO9001:2015.
The former covers the requirements for establishing, implementing maintaining and continually improving an information security management system.
The latter sets out the requirements for a quality management system when an organisation needs to demonstrate its ability to provide products and services that meet the needs of both the customer and regulatory requirements; and aims for continual improvement.