top of page
Image by Markus Spiske

ASK for PRIVACY

Are YOU ready?

In an era where data privacy is crucial, compliance with Bermuda’s Personal Information Protection Act (PIPA) is a top priority for businesses. Businesses must be compliant with the PIPA from January 1, 2025.

 

ASK for PRIVACY is a collaboration between ASK Bermuda and Erica Martin Consulting, offering a comprehensive suite of PIPA compliance and data privacy services tailored to meet the unique needs of Bermuda’s small- to medium-sized businesses. With the PIPA deadline approaching fast, now is the time to ensure your business is ready.

​Why choose US?
With extensive knowledge of Bermuda’s regulatory landscape, ASK Bermuda and Certified PIPA Privacy Officer Erica Martin bring a local, expert-driven approach to data privacy compliance. Our ASK for PRIVACY services provide end-to-end support to ensure you meet PIPA requirements, safeguard personal information, and build trust with your customers. Our collaboration combines Erica’s specialised privacy expertise with ASK Bermuda’s broad advisory services, offering you a seamless, well-rounded approach to privacy compliance.

Why act NOW?
With PIPA’s effective date fast approaching, now is the time to make privacy compliance a priority. Partner with ASK Bermuda and Erica Martin to ensure your business is compliant, resilient, and ready for Bermuda’s evolving data privacy landscape.

Transformation
Governance
Oversight
Strategy
Planning

OUR PRIVACY SERVICES

PIPA
Readiness Review

Staff Training & Awareness

Assess your PIPA-readiness and current data privacy practices to identify compliance gaps and risk areas. With you, we conduct a review of your existing practices, document

deficiencies, and provide clear recommendations to enhance your privacy framework.

Your employees play a crucial role in maintaining data privacy. We provide customised training sessions to empower your team with the knowledge and skills they need to uphold privacy standards and respond effectively to privacy matters.

Customised Policy Development

▶External: Privacy Notices, Website Terms, Cookie Policies and more to inform your customers; and,

▶Internal: Polices for Data, Security, Training, etc. to ensure you maintain data confidentiality, integrity, and availability.

Privacy Impact Assessments (PIA)

Record of Processing Activities (ROPA)

Analyse potential privacy risks in your data handling processes with our Privacy Impact Assessments. We identify risks associated with the collection, storage, and use of personal data and recommend protective measures to mitigate those risks, ensuring compliance and reducing liabilities.

We help you establish a clear record of all personal information processed by your organisation. Our Record of Processing Activities (ROPA) service ensures transparency, enabling you to track data flows and demonstrate compliance to the Privacy Commissioner, and other stakeholders when required.

Responses: Data Breach & SARs

We prepare you for, and guide you in, responding to: (1) data breaches, including PIPA-mandated notifications; and (2)

Subject Access Requests (SARs) ensuring you can respond promptly to SARs from individuals wishing to access/correct/delete information.

bottom of page