This web site uses cookies. You are free to manage your cookie settings in your web browser at any time. For more about how we use cookies, please read our data privacy policy.

Our mission

GDPR SMEs simplifies the process for organisations like yours to become GDPR and PECR data protection compliant. We engage with clients across the entire profit and non-profit spectrum. Our services include consulting, managed services, training and outsourcing. We have successfully delivered very challenging GDPR projects. We share our expertise and insight with you to help achieve your data protection objectives.


Three reasons Why GDPR SMEs is the right choice

Firstly, because we know that data protection is not a technology challenge. It is all about governance, management, oversight and training. Our GDPR framework illustrates how we address the GDPR challenge.

Secondly, our data protection implementation services will keep you protected. Our first GDPR/PECR implementation became operational in 2017. Our data protection compliance solution is in operation in eight business sectors. Our solutions are based on a traceable GDPR framework operating model built from regulatory knowledge and pragmatic business experience.

Thirdly, our solution does not require expensive tools, additional software or extensive disruption to your day-to-day operations. We deliver a sustainable GDPR framework operating model that fits into your existing managerial and operational infrastructure. Our solutions are all operational in our clients' organisations.

Three steps to compliance

The road to data protection compliance may seem long and difficult but we make your journey easier by taking it in three manageable steps. Make no mistake, the way to GDPR and PECR compliance is a journey. These are not our words, they are from the UK Information Commissioner, Elizabeth Denham.

GDPR data protection regulation subject matter experts"GDPR compliance will be an ongoing journey. Unlike planning for the Y2K deadline, GDPR preparation doesn't end on 25 May 2018, it requires ongoing effort. It's an evolutionary process for organisations. 25 May is the date the legislation takes effect but no business stands still. You will be expected to continue to identify and address emerging privacy and security risks in the weeks, months and years beyond May 2018."

Source: https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2017/12/blog-gdpr-is-not-y2k

Our three step approach to sustainable compliance

Current state assessment
GDPR data protection regulation subject matter experts

GDPR data protection regulation subject matter experts

Assess / Audit

  • Your current state of personal data protection
  • Gap report of your current state against our GDPR framework benchmark model
  • Road-map to GDPR compliance
  • Board papers for estimated cost and effort
  • Compliance action plan
  • Project brief
Control framework delivery
GDPR data protection regulation subject matter experts

GDPR data protection regulation subject matter experts

Take control

  • Governance and operating model
  • Policies, standards and procedures
  • Risk management integration
  • Internal training to "best practice"
  • "How to" guides
  • Templates for collecting regulatory data
  • Implementation consultancy or "Do It Yourself" delivery under our guidance
  • Operation within a GDPR / PECR compliant framework
Operate and maintain
GDPR data protection regulation subject matter experts

GDPR data protection regulation subject matter experts

Maintain / Improve

  • Standard approach
  • Single, repeatable process applied to all business areas
  • Risk assessed, weighted and measured
  • Delivers business benefits wider than GDPR compliance
  • Planned approach: risk assessment, execution sequence, establish the process, apply process across your organisation
  • Outsourced DPO and representative services
  • Support software and training

Practical, Pragmatic, Tested

We are not selling software because the foundation of data protection is not technical, it is all all about governance, management, oversight and training.

Our solution does not require expensive tools, additional software or extensive disruption to your day-to-day operations. Our approach assesses your current state based on our standard 14 point checklist followed by a planned implementation that you can manage yourself or let us manage for you. We deliver a GDPR framework operating model that fits into your existing managerial and operational infrastructure. Once operational we will show you how to plan and implement a sustainable remediation process to ensure that your personal data protection obligations are maintained and sustained.

Learn more about GDPR SMEs

Clients

Delivered for companies in multiple sectors including: Finance, Insurance, Technology, Associations, Consultancy, Medical Services, Real Estate, Software Development, Telco.

Solutions

Comprehensive data protection solutions and services: Assessment, Audit, Compliance and oversight delivery, Remediation, Training, Outsourced Data Protection Officer, EU Representative.

Projects

Find out how we have delivered solutions for national and multinational organisations inside and outside the EU. Our scalable solutions work for organisations from 10 to thousands of employees.

Knowledge Base

Increase your data protection knowledge using our free GDPR Knowledge Base containing FAQs, definitions, a key components guide, an interactive version of the entire GDPR regulation and more.

Contact

Contact us now to find out more about our data protection compliance solutions, products and services. NOTE: all personal information you provide is subject to our Data Protection Policy.

About

We are experts, agile, responsive and highly knowledgeable. Our mission is to simplify the process for organisations to become GDPR and PECR data protection compliant. We engage with clients across the entire organisational spectrum.