Mainspring Fund Services, a specialised fund administrator for private funds, has chosen norm. as its Data Protection as a Service provider and appointed its lawyer-led team of experts as its Data Protection Officer (DPO).
Already a subscriber to the company’s Cyber Security as a Service (CSaaS) offering, when Mainspring decided to outsource its data protection requirements evaluating norm. was an obvious step. Prior to this, Mainspring had managed data protection internally, with the support of internal compliance, external cyber consultants and external legal experts. Although this approach had served them well in the past, as a financial services provider Mainspring operates in a highly regulated industry and recognises the role that effective data protection plays in fostering confidence and trust amongst clients and other stakeholders.
“As a financial services provider, Mainspring is regulated by the FCA and holds significant amounts of information related to investors and their clients,” said Stephen Doherty, CTO at Mainspring. “We take our responsibility to safeguard personal data seriously, and know that instilling market confidence is key. That’s why we chose a recognised expert as our DPO.”
Coverage starts immediately after purchase, and as a lawyer-led service it negates the need for external legal data protection support. “Having norm. as our DPO has yielded immediate benefits. Their team of experts is helping us to enhance our controls environment and synchronise IT, cyber security, data protection and information security which will make us more resilient in the face of cyber and data protection risk in the future.” added Stephen.
DPaaS is a virtual DPO offering led by a fully qualified data protection lawyer. Available as either a Basic or Premium service, it supports customers in achieving compliance with the GDPR and other data protection laws, as well as helping them to foster trusted, sustainable relationships with customers and stakeholders by demonstrating their commitment to protecting individual privacy rights.
NormCyber takes away the stress, time and cost of protecting organisations against cyber security and data protection risks. We deliver transparent, measurable cyber security and data protection services for midsize companies who want to benefit from enterprise-grade solutions without the hefty overheads. We keep businesses safe, while our customers get on with growing them.
If you organisation could also benefit from norm’s appointment as DPO then you can contact us here.