Compliance, Management Systems and Certifications

Here at Aspon Consulting we can utilise our extensive experience, as well as the expertise of our wider network of partners, to support you with all your compliance, management system and certification/verification needs, whether you’re a public or private sector organisation, or a non-governmental organisation. We can support your organisation to become compliant with national, European and international legislation; to implement management systems; and to achieve third-party certifications/verifications.

If your organisation needs to comply with specific regulations or standards, whether at the national, European or international level, Aspon Consulting can support you. Our team and our network of partners have in-depth understanding of the regulatory environment affecting different types of companies from different sectors, in both Cyprus and the European Union, as well as in many international destinations. We will draw on this expertise to help your organisation achieve and maintain compliance with regulations or standards, such as the:

• EU’s General Data Protection Regulation (GDPR)

The GDPR requires organizations to implement reasonable data protection measures to protect the personal data of consumers and employees against data loss or exposure. To achieve that goal, the law regulates all areas related to data management and processing, from obtaining user consent to setting up company-wide data protection practices and handling data breach incidents. The GDPR replaces the EU’s Data Protection Directive 95/46/EC and includes new measures and a broader territorial scope. Non-compliance carries heavy fines.

We also specialise in supporting organisations develop and implement a range of management systems based on ISO standards (or integrate a new system into an overall existing management system), review, evaluate and improve the system on a regular basis, and support you in becoming certified by an independent third-party. Specifically, we have experience working with organisations on:

• ISO 37001 on Anti-Bribery Management Systems
This standard sets out requirements and provides guidance for a management system designed to help organisations to prevent, detect and respond to bribery, and comply with anti-bribery laws and voluntary commitments applicable to its activities. It includes a commitment from management to establish a clear anti-bribery policy and compliance function, with adequate training provided as part of the bribery risk assessments and due diligence procedures. The requirements of ISO 37001 are generic and are applicable to all organisations regardless of type, size and nature of activity or sector.

• ISO 27001 on Information Security Management Systems
This standard describes best practice for an ISMS (an information security management system). Implementing ISO 27001 and achieving accredited certification of the standard demonstrates that your company is following information security best practice, and provides an independent, expert verification that information security is managed in line with international best practice and business objectives. ISO 27001 is suitable for any organisation, large or small, in any sector (private, public or not-for-profit), especially those organisations where the protection of information is critical (e.g. banking, IT, finance, health, public sector). By implementing and becoming certified on ISO 27001, you can achieve compliance with relevant regulations, such as the EU’s General Data Protection Regulation (GDPR).

• ISO 26000 on Social Responsibility, as described under our Corporate Social Responsibility service; and

• ISO 14001 on Environmental Management Systems and the EU’s Eco-Management and Audit Scheme (EMAS), as described under our Environmental Management service.

Contact us:

If you’re interested in our services relating to Compliance, Management Systems and Certifications or require support with a related service that may not be listed here, please email us at info@aspon.com.cy for more information. We look forward to helping you achieve your goals and objectives.