DIAL – DATA IMPACT ASSURANCE LEVEL
As ICT Reverse is acting as a Processor of your data (The Controller) in the provision of the services, we are legally required to be able to ascertain the appropriate technical and organisational measures required for the services based on the data risk. As we solely carry out data sanitisation and destruction services without the completion of a DIAL, we as a processor have no way to ascertain the service you need to be provided.
The DIAL contains 5 metrics to determine the required service provision level as illustrated below:
· Risk Appetite
· Category of Data
· Volume of Data
· Impact of a data breach.
By providing answers to 5 simple DIAL questions and providing accurate information including your name, email, position, company name and site address you are fulfilling your requirement under UK GDPR for engaging with ICT Reverse as your data processor.