Tender Tips: Meeting GDPR

  • GDPR

Bidding for contracts often involves a number of hoops to jump through. However, with minimum benchmarks set, there needs to be a method to separate the wheat from the chaff. After all, the public sector has a duty to ensure taxpayer’s money is spent wisely; business can’t simply be done on the basis of a promise and a handshake.

The latest challenge for businesses is to consider the ramifications of the replacement to the Data Protection Act – GDPR. Not only is it more expectant, there are also more serious consequences if you are found to be using data improperly.

As a result, the supply chain will seek to protect itself. After all, there is no point investing in becoming GDPR compliant if one of your suppliers is allowed to undermine efforts.

TENDERING ADVICE: Read our 10 tips on tendering.

Organisations are now starting to see the result of this in Pre-Qualification Questionnaires and other tender documents. Below is a direct copy of a question set out in a recent public sector tender:

THIRD PARTY PROCESSOR CHECKLIST

Avoid Reputational Damage

As well as the monetary loss, the reputational damage caused by being found in breach of the incoming GDPR legislation would be significant.

profile image of Elizabeth Sheldon
Written by Elizabeth Sheldon

ISMS Scheme Manager - Experienced Senior Lead Auditor with a demonstrated history of working in the information services industry. Skilled in ISO 27001 ISO 9001, ISO14001 and ISO 45001.

Share