Service · 05

Data Protection

GDPR and UK data protection don't have to mean fifty-page PDFs no one reads. We build privacy programmes that are practical, defensible and actually implemented.

01Privacy programmesPolicies, records of processing (ROPA) and internal training pitched at the right level.
02DPIAs & riskData protection impact assessments for new products, features and vendors.
03DPO-as-a-serviceOutsourced Data Protection Officer for organisations that need one — without the headcount.
04Vendor & transfer contractsDPAs, SCCs and international transfer assessments handled properly.
05Incident responseBreach handling, ICO notifications and clear-headed advice when something goes wrong.

Privacy done properly — quiet, credible, low drama.

← All services
Common questions

Frequently asked.

Do we need a DPO?
Only certain organisations are legally required to appoint one, but many benefit from having someone accountable. We help you decide, and act as your outsourced DPO if it fits.
How quickly can you respond to a breach?
Same day for retained clients. For new clients, we prioritise breach calls and typically respond within a few hours during working time.
Can you review our existing privacy setup?
Yes — a gap assessment against UK GDPR is one of our most common starting points.

Bring us the complicated question.

Thirty minutes, no fee, no pitch deck. We’ll listen properly and tell you honestly whether we’re the right team for the job.