GDPR compliance delivered by experts

Compliance Services for organisations to meet the requirements of General Data Protection Regulation (GDPR).

This Regulation affects the personal data of EU citizens and applies to companies outside of the European Economic Area (EEA), with potential penalties of fines up to €20m or 4% of global annual revenues for non-compliance.

Our experts collaborate across legal, IT, compliance to design and establish compliant policies and workflows, ensuring input from key stakeholders and transparency in policy development and implementation.

To be GDPR compliant, a business must:

  • Appoint a Data Protection Officer

  • Identify and document data processing activities

  • Obtain user consent

  • Provide an easy way for users to withdraw consent

  • Implement Privacy by Design and Privacy by Default

  • Allow data subjects to access, rectify, erase, restrict, and object to the processing of their data, as well as to exercise their right to data portability

  • Ensure data security

  • Conduct Data Protection Impact Assessments

  • Establish data breach procedures, notifying the relevant Data Protection Authority and affected data subjects within 72 hours

  • Follow GDPR guidelines for transferring personal data outside the European Economic Area

  • Train employees and maintain documentation

Services

Data Protection Officer

Data Protection Audits

Gap Analysis

Data Protection Impact Assessments

GRPR Compliance Training

Independent Internal Audit

Regulatory approvals and entrepreneurship are at the heart of what we do. We are proud of our achievements, but we are prouder of our clients. We are lucky to work with some amazing businesses, building brands and value, aligning our interests to a common goal of success.