The Compliance Foundation provides a range of data protection and GDPR support, from assessing your compliance to providing DPO support and post the end of the Brexit transition period, providing GDPR representation, using practical data, operations, customer and compliance experience.

We also offer support to meet data protection and GDPR challenges across governance and structure, process and policy, and technology in partnership with Hill Dickinson LLP and Mitigate Cyber.


... since GDPR came into force. How confident are you about your compliance?

What is GDPR?

On 25 May 2018, the data protection regime under the Data Protection Act 1998 was replaced by the new EU General Data Protection Regulation (GDPR), with significant implications for all organisations. In the UK, the Data Protection Act 2018 Brexit-proofed this by implementing these standards into UK law for when the UK’s Brexit transition period came to an end under what is now ‘UK GDPR’. Brexit also complicates the position of controllers or processors located outside the UK. They will need to comply with the UK GDPR but must appoint a UK representative for UK GDPR purposes. The Compliance Foundation can help you with this.

GDPR introduced tougher fines for non-compliance and breaches, and gives people more say over what can be done with their data. Subject access rights changed and there is now an onus on organisations to demonstrate compliance with data protection from the outset. This reflects and raises public expectations.

The GDPR increased penalties for non-compliance – fines can be up to 4% of total global annual turnover or €20m, whichever is greater. Regulators in the UK and Europe have started investigations and have started levelling fines at this new level.

All organisations, including small to medium-sized companies and large enterprises, have to take GDPR requirements seriously and be able to comply. May 2018 was only a start. And the environment in which we live and work is one where our personal data is all the more important and can be all the more at risk.

Fines can be up to 4% of total global annual turnover or €20m

You must be aware and be able to comply on an ongoing basis

View Video

How we can help

We offer a range of products and services to set to set you up for success. The joy of our end to end solution is that we can supply you with whatever you need for your legal, compliance and technology requirements.

Expert Support

Expert data protection and GDPR resources to help upgrade your organisational data structure, governance arrangements, policies and processes, security, storage and collection arrangements.

Sign up for support

Expert Support

We provide data protection, DPO and GDPR support drawing on many years of practical experience. We work with organisations and businesses across a wide range of sectors and industries to help assess and implement the changes needed to ensure and maintain compliance and to keep data protection compliance under review. Ranging from short sharp assessments to deep dives, project support to ongoing help and ad hoc to regular support.

Get in touch

Examples of how we might work with you

Targeted assessment tailored to your scale and type of business, remote or onsite, to help identify where your key gaps are and what you might do
Expert support, one off, periodic or ongoing and whether Virtual DPO, retained regular support or 'phone a friend'
Complete a full review of your policies, processes and procedures and draft new ones as appropriate - particularly in relation to how you process your customer data and to ensure that the concept of ‘privacy by design’ is properly embedded and auditable
UK GDPR support for people outside the UK who after the end of the Brexit transition period need a UK GDPR representative
Complete a full assessment of your technology arrangements (including a penetration test) and create a plan to upgrade the arrangements so that they are secure and comply with the new GDPR requirements
Design and implement a training and development activity to help your staff understand their role in data protection and ensure they are suitably skilled and knowledgeable

Assess how ready you are

If you’re not sure what you need to do, fill in our free online questionnaire to get a basic idea of how you are doing against GDPR.

Complete the questionnaire

Virtual DPO Support

We provide support across the whole range of DPO activities combining a depth of data protection and GDPR experience with the wider experience you may need to manage your personal data successfully and effectively.

Find out more

Workshops & Events

If you would like to deepen your and your team’s understanding of data protection and GDPR, we run regular, practical GDPR workshops and events.

See all workshops See Mentoring & Coaching


If you would like to broaden your general understanding of data protection and GDPR and how to apply it to your business, have a look at the articles we have written.

See the articles

Get in touch

If you need support, get in touch. We can come to you and carry out a more detailed data protection or GDPR compliance assessment of your business to help you understand what needs to be done.