9 years in information management and data protection
Experience:
Tom has managed large Information departments and specialised in Information Management... Tom has managed large Information departments and specialised in Information Management and Governance, Data Protection, GDPR and Cyber Security. He has also produced Information and Cyber Security Strategies within the NHS and private health sectors. He has managed 20 GDPR compliance projects in many different industries and within different sized companies. He has more than 30 years overall consulting experience. He is a Fellow of the British Computer Society, CITP, the International Association for Privacy Professionals (IAPP), CIPP/E, CIPM, and GDPR Practitioner. He also has qualifications in Cyber Security and Project Management.
Client Feedback:
“An excellent consultancy providing data governance and security services that cover most if not all industry sectors.I...”
“An excellent consultancy providing data governance and security services that cover most if not all industry sectors.I have no problem in recommending Hayes Associates as a consultancy services for their wide knowledge and experience in respect to regulatory Data Governance requirements that organisations will be seeking.”
“We instructed Hayes Associates Ltd in a contractual role as DPO with the primary role of training the employees on data protection. We would highly recommend Hayes Associates for their in-depth knowledge and experience within this complex industry sector.”
Full-cycle GDPR compliance support and implementation within your organization. It all starts with an initial consultation to get the grasp of your business and map out the data you are collecting. Next, is the preparation of the set of recommendations to ensure your business is fully compliant and its implementation.
A starting point for privacy works: a clear map of data flow, privacy professionals examine the current protection of personal data and prepare a set of recommendations to achieve a high level of privacy protection.
Public statements of a company on the collection and further processing of personal data. Usually posted on the website or application for the user review. Required by Art. 12-14 GDPR
A person responsible for interacting with government bodies and users of the company on privacy related issues, as well as supervising protection of personal data within the company. Required by Art. 37-39
When a personal data breach has occurred, you need to establish the likelihood and severity of the resulting risk to people’s rights and freedoms. Thomas can help you with managing personal data breaches.
Train your team on their responsibilities in the field of data protection and cyber security. Thomas conducts a comprehensive half-day training on data protection / cybersecurity essentials. training
Cyber Essentials is a simple but effective, Government backed scheme that will help you to protect your organisation, whatever its size, against a whole range of the most common cyber attacks.
ISO/IEC 27001 specifies a management system that is intended to bring information security under management control and gives specific requirements. Organisations that meet the requirements may be certified by an accredited certification body following the successful completion of an audit.
Full-cycle GDPR compliance support and implementation within your organization. It all starts with an initial consultation to get the grasp of your business and map out the data you are collecting. Next, is the preparation of the set of recommendations to ensure your business is fully compliant and its implementation.
A starting point for privacy works: a clear map of data flow, privacy professionals examine the current protection of personal data and prepare a set of recommendations to achieve a high level of privacy protection.
Public statements of a company on the collection and further processing of personal data. Usually posted on the website or application for the user review. Required by Art. 12-14 GDPR
A person responsible for interacting with government bodies and users of the company on privacy related issues, as well as supervising protection of personal data within the company. Required by Art. 37-39
When a personal data breach has occurred, you need to establish the likelihood and severity of the resulting risk to people’s rights and freedoms. Thomas can help you with managing personal data breaches.
Train your team on their responsibilities in the field of data protection and cyber security. Thomas conducts a comprehensive half-day training on data protection / cybersecurity essentials. training
Cyber Essentials is a simple but effective, Government backed scheme that will help you to protect your organisation, whatever its size, against a whole range of the most common cyber attacks.
ISO/IEC 27001 specifies a management system that is intended to bring information security under management control and gives specific requirements. Organisations that meet the requirements may be certified by an accredited certification body following the successful completion of an audit.