Privacy stuff we can help you with

DPA Drafting and Review Service

We can draft or review and update existing Data Processing Agreements for both Controllers and Processors. We have deep experience drafting compliant and agreeable DPAs.

GDPR Compliance Review and Assurance Service

Now that you have implemented your GDPR, how confident are you that you have covered everything or done it correctly? Our assurance service will provide you assurance and a second opinion.

GDPR Readiness Assessment Service

A GDPR Readiness Assessment is designed to provide a starting point for a GDPR compliance programme. Our established, tried and tested Readiness Assessment methodology is based on the GDPR, PECR and cybersecurity best practices.

GDPR Implementation

Okay, so the GDPR is finally here.  If you have not already done so then you need to start complying with its requirements, We can help with this from complete implementation to just advising and mentoring. Give us a call and find out how we can help.

DPO as a Service

The Virtual DPO will be your DPO, on call when and if you need the DPO service. This can be as simple as advice on how to interpret the GDPR, provide training, deal with incidents, deal with the ICO or other supervisory authority on your behalf or just be a point of presence for you.

Data Privacy Impact Assessment

Data Privacy Impact Assessment or DPIA is the process of assessing the impact on the privacy of the subject, whose data is being processed. Working in the public sector, our consultants have years of experience of carrying out Privacy Impact Assessments and can help organisations in this area. We can help you with carrying out a DPIA.

Privacy is not the only thing we do.




                                                        We do all sorts of cybersecurity too.

Cybersecurity stuff we can help you with

Security Architecture and Design

Security is best if it architected and designed properly. With GDPR and the requirements for privacy and security by design, it is vital that you get the security right. We have hands-on experience of architecting and designing multi-million-pound security and privacy architectures.

ISO27001 ISMS implementation

Manage information security risks by implementing ISO27001, the internationally recognised Security Management System (ISMS). We have experience of implementing ISO27001 in highly complex environments. Please contact us to find out more.

Auditing and Assessment Services

Are you sure your data is safe? Who has your data and how are they protecting the data? Let us provide you with peace of mind and assurance through our auditing and assessment service. We can provide assessments against the major security frameworks and best practices, including ISO27001, ITIL, RESILIA, NIST, ISF etc.

Fixed Price GDPR and Readiness Assessment

If you are yet to start your GDPR programme. Do not reinvent the wheel. GDPR is an evolution, not a revolution.  You do not have to start from scratch. Find out what you have, what is good and where the gaps are. 

Our GDPR Readiness Assessment is a fixed price comprehensive assessment which will pinpoint what you must do to be GDPR compliant. Our clients really appreciate and understand our tried and tested readiness assessment carried out by our experienced GDPR and privacy practitioners.

Call us on 07398 117109 about our GDPR Readiness Assessment.

GDPR Readiness Assessment and Report

  • Detailed list of remediation and action plan
  • Top Risks 
  • Quick Wins
  • A project/workstreams roadmap for remediation of the risks

What is the scope of the GDPR and does it apply to my organisation?

 GDPR has extra-territorial scope and can apply to any organisation in the world.

Find out more.






There is a lot of confusion around what constitutes personal data under GDPR. The problem is unlike PII, the GDPR very loosely defines personal data. It is not PII (Personally Identifiable Information). We have a collated list of what constitutes Personal Data on our site. This appears to the most comprehensive list so far we have seen on the Internet. One thing to remember is that, personal data can be direct or indirect, the indirect data can also be contextual, location based, attributes, descriptions etc.

Can we help you with your EU GDPR compliance?

We can take you through scoping, analysis, data mapping, DPIA all the way through to protecting personal data for GDPR compliance.

Do you need help implementing ISO27001?

We can take you from scratch to fully certified ISO27001 ISMS, that manages your risks, protects your data and fits in with your culture.

Are you managing your GDPR Third-Party Risks?

  Data Controllers, you need to ensure that your Data Processors are acting on your instructions only. Are you managing the risks that are posed by the supply chain and third-parties from information sharing?

Are they? How do you know?

We can audit your suppliers, partners and data processors to ensure they are compliant against the GDPR. this includes reviewing contracts, breach management, and reporting processes.

Some the Organisations We Have Provided Cyber Resilience and Privacy Services To

A list of some of the organisations that we have worked with over the years to provide cyber resilience and privacy services. We can help your organisation, whether large or small. Please get in touch to fine out how we can help.


List of some of the certifications our consultants hold.