The client initially engaged Hivemind to review policy documentation, however it quickly became clear that our GDPR expertise and delivery capability would be valuable, not only to head office but to their 35 global subsidiaries.

The client HQ perspective required a consolidated approach to reduce overhead, provide continuity and create an extensible approach that was immediately usable and that would also support their legal obligations under GDPR, whether onshore in the UK or elsewhere across non-EU countries.

Hivemind was tasked to provide GDPR awareness sessions, policy reviews, GDPR-engagement tests, processes and more importantly the tools necessary to help the client meet their GDPR obligations.

We were also asked to review HQ and the subsidiary material submitted for GDPR and to provide ongoing assistance for GDPR challenges, queries and options for consideration.

Our initial engagement delivered well-received policy material.

This initial engagement was extended almost immediately into a formal GDPR engagement that included ongoing GDPR knowledge transfer, awareness briefings, reviews, approaches and tools to assist in their compliance activities.

The approach and artefacts were used by HQ and their subsidiaries

Hivemind’s team on the engagement incuded the expertise of a data protection lawyer for oversight of the more challenging areas.

Our initial delivery was well received by the client who engaged HM further for our GDPR expertise and delivery.

Hivemind provided GDPR guidance and tools forming the basis of the GDPR disclosable artefacts (for supervisors and courts).

The Hivemind delivery allowed the client to adopt an incremental approach to GDPR, providing consistency across the organisation and its subsidiaries while at the same time allowing it addresses high-priority areas without disruption to its operations.

• Privacy

• Organisational Agility & Effectiveness