Main Lawyer Thomas

Thomas

check

Certified Privacy Specialist (FBCS, CITP, MAPM, CIPP/E, CIPM, FIP, CCP)

United Kingdom
9 years in information management and data protection

Experience:

Tom has managed large Information departments and specialised in Information Management... Tom has managed large Information departments and specialised in Information Management and Governance, Data Protection, GDPR and Cyber Security. He has also produced Information and Cyber Security Strategies within the NHS and private health sectors. He has managed 20 GDPR compliance projects in many different industries and within different sized companies. He has more than 30 years overall consulting experience. He is a Fellow of the British Computer Society, CITP, the International Association for Privacy Professionals (IAPP), CIPP/E, CIPM, and GDPR Practitioner. He also has qualifications in Cyber Security and Project Management.

Client Feedback:

“An excellent consultancy providing data governance and security services that cover most if not all industry sectors. I...”

“An excellent consultancy providing data governance and security services that cover most if not all industry sectors. I have no problem in recommending Hayes Associates as a consultancy services for their wide knowledge and experience in respect to regulatory Data Governance requirements that organisations will be seeking.”

“We instructed Hayes Associates Ltd in a contractual role as DPO with the primary role of training the employees on data protection. We would highly recommend Hayes Associates for their in-depth knowledge and experience within this complex industry sector.”

Thomas’s Services:

Privacy Compliance (GDPR)

Free consultation
End-to-end GDPR Compliance
Privacy Assessment
Privacy and Cookie Policies
Data Processing Agreement
Data Protection Officer
Data Breach Management
Data Subject Access Request Management
Data Protection and Cyber Security Training and Awareness
Information Management Consultancy
Cyber Security Audits and Advice
Cyber Essentials Accreditation
ISO 27001 Accreditation

Free consultation

starting at:

Free

Description:

Let me know if you would like to receive a free initial consultation.

End-to-end GDPR Compliance

starting at:

to discuss

Description:

Full-cycle GDPR compliance support and implementation within your organization. It all starts with an initial consultation to get the grasp of your business and map out the data you are collecting. Next, is the preparation of the set of recommendations to ensure your business is fully compliant and its implementation.

Privacy Assessment

starting at:

GBP 2400

Description:

A starting point for privacy works: a clear map of data flow, privacy professionals examine the current protection of personal data and prepare a set of recommendations to achieve a high level of privacy protection.

Privacy and Cookie Policies

starting at:

to discuss

Description:

Public statements of a company on the collection and further processing of personal data. Usually posted on the website or application for the user review. Required by Art. 12-14 GDPR

Data Processing Agreement

starting at:

to discuss

Description:

An agreement between a B2B service provider and client concerning the processing of personal data controlled by the client. Required by Art. 28 GDPR.

Data Protection Officer

starting at:

GBP 700 per month

Description:

A person responsible for interacting with government bodies and users of the company on privacy related issues, as well as supervising protection of personal data within the company. Required by Art. 37-39

Data Breach Management

starting at:

to discuss

Description:

When a personal data breach has occurred, you need to establish the likelihood and severity of the resulting risk to people’s rights and freedoms. Thomas can help you with managing personal data breaches.

Data Subject Access Request Management

starting at:

to discuss

Description:

Understand how to respond to and manage requests from data subjects.

Data Protection and Cyber Security Training and Awareness

starting at:

GBP 1000

Description:

Train your team on their responsibilities in the field of data protection and cyber security. Thomas conducts a comprehensive half-day training on data protection / cybersecurity essentials. training

Information Management Consultancy

starting at:

to discuss

Description:

Understand how to set up efficient management of your company's information.

Cyber Security Audits and Advice

starting at:

GBP 4000

Description:

Ask Thomas for a consultation in the field of cyber security

Cyber Essentials Accreditation

starting at:

GBP 3500

Description:

Cyber Essentials is a simple but effective, Government backed scheme that will help you to protect your organisation, whatever its size, against a whole range of the most common cyber attacks.

ISO 27001 Accreditation

starting at:

to discuss

Description:

ISO/IEC 27001 specifies a management system that is intended to bring information security under management control and gives specific requirements. Organisations that meet the requirements may be certified by an accredited certification body following the successful completion of an audit.

awards

CIPM, CIPP/E, FIP
FBCS
CITP
MAPM
CCP

Languages Spoken

English

Publications

Free consultation

starting at:

Free

Description:

Let me know if you would like to receive a free initial consultation.

End-to-end GDPR Compliance

starting at:

to discuss

Description:

Full-cycle GDPR compliance support and implementation within your organization. It all starts with an initial consultation to get the grasp of your business and map out the data you are collecting. Next, is the preparation of the set of recommendations to ensure your business is fully compliant and its implementation.

Privacy Assessment

starting at:

GBP 2400

Description:

A starting point for privacy works: a clear map of data flow, privacy professionals examine the current protection of personal data and prepare a set of recommendations to achieve a high level of privacy protection.

Privacy and Cookie Policies

starting at:

to discuss

Description:

Public statements of a company on the collection and further processing of personal data. Usually posted on the website or application for the user review. Required by Art. 12-14 GDPR

Data Processing Agreement

starting at:

to discuss

Description:

An agreement between a B2B service provider and client concerning the processing of personal data controlled by the client. Required by Art. 28 GDPR.

Data Protection Officer

starting at:

GBP 700 per month

Description:

A person responsible for interacting with government bodies and users of the company on privacy related issues, as well as supervising protection of personal data within the company. Required by Art. 37-39

Data Breach Management

starting at:

to discuss

Description:

When a personal data breach has occurred, you need to establish the likelihood and severity of the resulting risk to people’s rights and freedoms. Thomas can help you with managing personal data breaches.

Data Subject Access Request Management

starting at:

to discuss

Description:

Understand how to respond to and manage requests from data subjects.

Data Protection and Cyber Security Training and Awareness

starting at:

GBP 1000

Description:

Train your team on their responsibilities in the field of data protection and cyber security. Thomas conducts a comprehensive half-day training on data protection / cybersecurity essentials. training

Information Management Consultancy

starting at:

to discuss

Description:

Understand how to set up efficient management of your company's information.

Cyber Security Audits and Advice

starting at:

GBP 4000

Description:

Ask Thomas for a consultation in the field of cyber security

Cyber Essentials Accreditation

starting at:

GBP 3500

Description:

Cyber Essentials is a simple but effective, Government backed scheme that will help you to protect your organisation, whatever its size, against a whole range of the most common cyber attacks.

ISO 27001 Accreditation

starting at:

to discuss

Description:

ISO/IEC 27001 specifies a management system that is intended to bring information security under management control and gives specific requirements. Organisations that meet the requirements may be certified by an accredited certification body following the successful completion of an audit.