GDPR without the paperwork burden.

We set up the processes, documentation and technical measures so you meet GDPR without getting in the way of day-to-day business. We work with organisations of every size.

Why it matters

Not just fines — customer trust

GDPR isn't only about the risk of sanctions. When a breach happens, the reputational cost usually exceeds the financial one. Clients and partners today actively check how you handle their data.

Fines of up to 4 % of annual turnover
Mandatory 72-hour breach notification
Client requirements in tenders
Supply-chain audits
Link with NIS2 and DORA
Ethical work with AI and profiling

Scope of service

From audit to daily operation

We work either on a project basis — a one-off audit and remediation — or long-term as your external DPO. Which fits depends on the size of the organisation and the sensitivity of the data you handle.

GDPR audit — map of processes and risks
DPIA — data protection impact assessment
Records of processing — complete documentation
Policies and contracts — template library
Staff training — in-person and online
External DPO — point of contact for the supervisory authority
Incident response — breach-handling procedure
AI governance — linked to the AI Act

Deliverables

What you get after the audit

Audit report

Findings, risks and prioritised recommendations.

Records of processing

Ready for supervisory authority inspection.

Policy set

Internal rules tailored to your operation.

Contract templates

Data-processing agreements, consents, privacy notices.

Incident playbook

Procedure including the 72-hour notification.

Remediation plan

Concrete steps with deadlines and owners.

Not sure where you stand?

The initial 1-hour assessment is free. We'll tell you whether you need an audit, a DPO role, or only minor adjustments.

Schedule a consultation