Helpdesq
When GDPR compliance is closely connected to customer confidence
Executive Summary
Helpdesq are an IT support company offering I.T support services and equipment supply. Rather than a fixed monthly fee that is biased towards the supplier, they only charge for what they do.
The Challenge
It was essential to ensure that not only was Helpdesq fully GDPR compliant as an IT support services company, but also could be seen to be so by customers, by being able to demonstrate all the necessary documented proof.
To be able to achieve this objective with confidence, Helpdesq quickly realised they needed a GDPR expert to confirm what was required and so sought advice and were recommended to Chapter Three Consulting (C3C) by a customer.
The Solution
Chris Ball, Managing Director of Helpdesq was impressed by C3C’s systematic and pragmatic approach and the Company was appointed.
Eddie Finch of C3C conducted a GDPR review including data protection impact assessments (DPIA) and provided a Toolkit providing the data protection policies and procedures to be implemented. C3C’s templated processes and sample policy statements (such as a GDPR compliant privacy policy) were quickly adapted and completed to demonstrate compliance.
The Results
All the necessary and proportionate GDPR documentation was put in place. However, as a result of the GDPR review with Eddie and the data protection impact assessment, Helpdesq also further modified the internal procedures that involved the storage or processing of data.
To communicate with their engineers in the field, Helpdesq had always used WhatsApp. Concerned about the vulnerability to leakage, the Company created a new WhatsApp group within which all messages are deleted daily to avoid any risk to customers. ‘As this was not paperwork, I saw this as a real risk,’ said Chris Ball.
This is still an ongoing process and is closely monitored, as are all procedures across the Company relating to compliance.
Chris Ball, Managing Director
www.helpdesq.co.uk
When GDPR compliance is closely connected to customer confidence
Executive Summary
Helpdesq are an IT support company offering I.T support services and equipment supply. Rather than a fixed monthly fee that is biased towards the supplier, they only charge for what they do.
The Challenge
It was essential to ensure that not only was Helpdesq fully GDPR compliant as an IT support services company, but also could be seen to be so by customers, by being able to demonstrate all the necessary documented proof.
To be able to achieve this objective with confidence, Helpdesq quickly realised they needed a GDPR expert to confirm what was required and so sought advice and were recommended to Chapter Three Consulting (C3C) by a customer.
The Solution
Chris Ball, Managing Director of Helpdesq was impressed by C3C’s systematic and pragmatic approach and the Company was appointed.
Eddie Finch of C3C conducted a GDPR review including data protection impact assessments (DPIA) and provided a Toolkit providing the data protection policies and procedures to be implemented. C3C’s templated processes and sample policy statements (such as a GDPR compliant privacy policy) were quickly adapted and completed to demonstrate compliance.
The Results
All the necessary and proportionate GDPR documentation was put in place. However, as a result of the GDPR review with Eddie and the data protection impact assessment, Helpdesq also further modified the internal procedures that involved the storage or processing of data.
To communicate with their engineers in the field, Helpdesq had always used WhatsApp. Concerned about the vulnerability to leakage, the Company created a new WhatsApp group within which all messages are deleted daily to avoid any risk to customers. ‘As this was not paperwork, I saw this as a real risk,’ said Chris Ball.
This is still an ongoing process and is closely monitored, as are all procedures across the Company relating to compliance.
Chris Ball, Managing Director
www.helpdesq.co.uk
