Turning compliance requirements into ways to improve a Business

#ISO27001 | #GDPR | Helping companies manage compliance requirements and security risks – cyber, electronic and paper records, people, process, data protection legislation, physical access and business continuity –  in a way that delivers tangible business benefits and avoids issues that lead to financial loss and reputational damage

Details on five ways we can help YOUR business >>

Protect your Information, Protect your Reputation

Manage Security Risks

Manage security risks

We help you manage all types of security risks; people, cyber, physical access, process and business continuity.

Get ready for GDPR

Data Protection/GDPR 

We strip away the fear and myths to explain what is required to meet the GDPR and Data Protection Act 2018 requirements. And we can talk to you about Marketing (PECR) as well

Answering Information and Cyber Security questions

Dependable Advice

We will answer any questions you have about Information and Cyber Security and ISO27001.

We don’t do IT. We don’t sell products.
We give honest and practical advice on best practice to manage all the security risks to your business, and help you develop and implement programmes to integrate security and good data governance into your culture so you avoid data breaches and compliance issues that lead to financial loss and reputational damage.

View All Features

Our Blog

any-3 provides bespoke surveys around engagement, diversity and self-assessments to high profile corporates and public sector organisations. Clients expect data to be kept secure and may undertake audits or run tests with any-3 to confirm everything is in place to protect the confidentiality, integrity and availability of data. Getting ISO27001 certification was the next step… Read More

Continue Reading

A Business Continuity Plan (BCP) defines how unplanned circumstances will be managed so organisations can continue running and, for ISO27001, maintaining the confidentiality, integrity and availability of Information Assets. Coronavirus could have an impact on many organisations. Staff may need to ‘self isolate’ and work from home for extended periods. In the worst case, key… Read More

Continue Reading

Questions about how to address this control are usually raised by clients early on in discussions on how to implement ISO27001 requirements. “What is meant by transfer?” and “Do we really need complex procedures as that isn’t going to work with our culture” are typical. The ISO27001 document gives the outline “Formal transfer policies, procedures…..protect… Read More

Continue Reading

2019 was the year when we worked in more business sectors to help with Information and Cyber Security and data protection requirements. ISO27001 Helped 3 SMEs get ISO27001 certification Worked with 4 organisations on their ISO27001 Surveillance programmes. This included updating of risk assessments, doing internal audits and running desktop tests of business continuity plans… Read More

Continue Reading

Recent experience of helping new clients develop information asset based risk management processes has given me more insight into the area of who REALLY owns risks (and opportunities). Most of the work I have been doing is in the context of a risk process aligned with ISO27001 requirements, but some risk assessments had very specific… Read More

Continue Reading

Several companies have made claims similar to “EU companies required to appoint UK Representative if there is a NO DEAL Brexit”. The headlines are wrong. I checked the Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019 and with the ICO. EU companies MAY need to appoint a UK representative, but if… Read More

Continue Reading
View Blog