Our experienced consultants provide on and off site consultancy to manage your GDPR compliance responsibilities.

Not only do we understand the legal framework of the GDPR, we have experience of managing IT and data change projects within global enterprises.  Our background is in Business Process Change, Project Management and Data Mastering, so we understand the complex nature of IT Infrastructure, Enterprise applications, bespoke systems, interfaces, Cloud/Vendor applications, business processes and data management.

All our consultants are either IAPP certified to CIPP/E, CIPM and/or CIPT level, or are trained pending qualification.

Achieving and maintaining GDPR compliance will be an ongoing responsibility for you.  We can guide you along the way.

We offer bespoke packages to suit your needs and fill the gaps left by knowledge or resource limitations.

Audits. Its good to know where you stand.

Data Protection Officer as a service.  Remote DPO offers all the benefits of a highly experienced Data Protection Officer without the cost and employment complexities.

Privacy By Design and Default.  Our business consultants have vast experience of Business Change projects, including process and IT system design.  We understand that Privacy should be considered at the design phase and how best to implement solutions that will not only be compliant with the GDPR, but will be scaleable and future proof, allowing the flexibility of process change in the future.

Data Processing Inventory.  To comply with Article 30 of the GDPR, a data processing inventory must be available upon request from the local Statutory Authority.  Harnessing the power of our partner tool OneTrust, we can produce a comprehensive and easily manageable inventory.  This can then be managed internally by your process experts or IT teams.

DPIA implementation and reviews.  Business Change is commonplace, resulting in new or amended process and supporting technology.  Conducting a Data Protection Impact Assessment is a useful and often necessary tool to help data controllers comply with data protection laws.  We provide independent, professional and experienced knowledge, helping your internal teams achieve ongoing data protection compliance

Staff training.  We are happy to transfer our knowledge and skills to your staff.

Example Packages

Managed services are tailored to the individual needs and requirements of the customer. We offer flexibility in the number of days consultancy, level of Audit/review, structure of DPIA assessments etc. Therefore each package will be tailored and priced accordingly.

Bronze

Bespoke pricing, monthly billing

  • Remote DPO
  • GDPR Audit - Annual compliance review
  • Documentation of GDPR Compiance actions taken by company
  • GDPR Supervisory Authority liaison and filing of compliance documentation
  • Point of contact for GDPR Compiance issues and reporting of data breach

Silver

Bespoke pricing, monthly billing

  • Bronze - plus the following services
  • DPIA Compliance - Onsite Business process review (4 Per Year)
  • Legal advise - Provided by our GDPR specialist legal partners
  • Data Security Strategy - data architecture review and strategy - (4 days per year)

Gold

Bespoke pricing, monthly billing

  • Monthly GDPR complaince report - Onsite
  • Training - Subject Matter Expertise and training for staff - Monthly, Onsite
  • DPIA compliance - Onsite process review and process solutioning based on DPIA process