GDPR Consultants for the Hospitality Industry
Who We Are
CS Consulting are specialist consultants for the hospitality sector , Certified Data Protection Practitioners and members of the Association of Data Protection Officers.
Since the introduction of General Data Protection Regulation (GDPR) on 25th May 2018 it has led to much concern and not a little confusion for businesses in the hospitality sector.
CS Consulting have a specific focus on the hospitality industry and have a good working relationship with the Data Protection Commission (DPC).
We provide GDPR compliance training resources on and off line. We also provide GDPR Policy review and redesign helping you through the EU & legal rhetoric and provide training / resource solutions making it easier to understand your responsibilities at a reasonable cost.
We are Associate Members of the Irish Hotels federation and are recommended as a GDPR service provider.
GDPR Policy & Procedures review
In May 2018 when GDPR came into law many hotel policies and procedures we have reviewed were somewhat generic in nature and not really specific enough to the hotel industry. We review and redesign policies and procedures for our client hotels in a hotel specific manner and we use actual examples of GDPR issues /questions that have arisen over the years in hotels with the Data Protection Commissioners (DPC) clarifications which does allow a greater understanding of GDPR for your teams.
GDPR Hospitality Specific Training
Online and Onsite training ( when possible) provided to team members spread over all the various departments. The DPC expectations are that all staff are GDPR trained and have suggested that regular /annual training should also be in place as GDPR is an evolving issue as circumstances change, staff turnover etc .
For example as a result of Covid and contact tracing, policies need to be amended to show how this personal information is gathered,where it is kept, how long it is kept for etc.
Ongoing GDPR support services
When teams know that there is GDPR support resource available to them, when Data Protection queries arise they will contact us for clarification. This results in the teams getting a better understanding of GDPR themselves as the queries are very specific to what they are doing each day. The greater the teams understanding of their GDPR responsibilities the more protected the hotel is from breaches.
GDPR Specific Supports
Dealing with breaches, subject access requests , personal claims made against the hotel for data breaches.
As you are aware the hospitality Industry has to deal with a claims culture and a worrying trend we are seeing more and more of, is people using alleged breaches of GDPR to try to secure financial compensation from hotels . We provide GDPR support for our clients in this regard.
GDPR and the Data Protection Commissions Expectations of the hospitality Industry
Are your hotel’s GDPR policies, procedures and training adequate? Especially considering new GDPR guidelines about Covid 19, such as contact tracing?
Whilst the hospitality industry is experiencing significant business restrictions due Covid, now is a good time to review your GDPR policies and provide training to staff. The Data Protection Commission expects hotels to have appropriate policies and procedures in place and that all members of staff are trained in GDPR on an annual basis:
“…the onus is on every data controller to demonstrate as to how it justifies its collection and processing of personal data. Policies, procedures, and training of staff are a means to do this. The better the policy / procedure / training, the lesser chance of a fine or enforcement action, occurring from this office on an ongoing basis.” Data Protection Commission Ireland
CS Consulting have built a good working relationship with the Data Protection Commission and have established what their expectations are in relation to GDPR, specifically regarding the hospitality industry. We have worked closely with the DPC on hotel policies, queries, questions, breaches etc., so our training is not theory-based but based on hotel-related, specific issues making it easier for your teams to understand their GDPR responsibilities.
We can review and redesign your GDPR Policies and procedures, train staff members across the various departments and provide ongoing training and support about general queries, Subject Access Requests, managing breaches etc.
Our fee is based on the level of services you require. However, we will not expect payments - which can be spread over a 12-month period - until your premises reopens for business.
For a free consultation to discuss your potential GDPR policy and training requirements, please contact us on 086 814 6570, email @ or via our website
A small sample of our valued customers