top of page

DPO services



GDPR Audit

DPO Assist

DPO Assist Plus





The GDPR is the most significant development in data protection that Europe, possibly the world, has seen over the past twenty years and therefore unsurprisingly is designed to better take into account modern technologies, the way we work with them today and are likely to work in the future.


In addition, there is a much greater emphasis on compliance following a widely held belief that business had not taken data privacy seriously enough previously.


As a consequence, penalties are considerably harsher

and the compliance requirements are intended to spread

a far wider net to include small and medium businesses.

Our 76 point Audit includes the key points covered

in the following GDPR Articles:



Technical Measures - Art 28 (1)


Organisational Measures - Art 28 (1)


Data Protection Principles


Lawfulness of Processing - Art 6


Consent – Art 7


Legitimate Interest – Art 6


Profiling – Art 22


Legal Data Transfer - Art 44


Privacy Policies - Art 13


Third Party Processor Compliance - Art 28 (3)


Processing Records - Art 30 (2)


Data Protection Officer - Art 37


Data Subject Rights – Arts 15-21


Breach Notification - Art 33 (2)



Assures customers of your readiness 


Avoids protracted contract negotiations 


Commercial advantage over non-compliant competitors


Enhances customer trust


Prepares you for official accreditation

gdpr audt

DPO Assist

The DPO Assist service features the following:



Support for in-house DPO or Head of Data Protection

Monthly half day on-site documentation review and audit

Maintenance of third party supplier responses

Updates based on ICO and Article 29 Working Party advisories

Updates to key GDPR templates

Technology solution updates from key vendors

‘Compare & Contrast’ with industry best practice

Assistance with SAR and Breach Response processes

Assist IT with Privacy Impact Assessments

Maintenance of Processing Records

Email support for DPO and core business areas (IT, HR, Marketing etc)


DPO Toolkit

DPOAssist Plus


As with DPOAssist but with the additional features:

1 day per fortnight on-site documentation review and audit


As DPOAssist Plus but with the additional features:

3 days Setup Consultancy

Registered as DPO with the ICO

Review and advise on privacy policies, procedures and Accountability Framework documentation relating to the processing of personal data - Art 39(1)(a)

Oversee the establishment and maintenance of the personal data Processing Record - Art 30

Advise, collate and approve data protection impact assessments (DPIAs) - Art 39(1)(c)

Advise and oversee data breach reporting - Art 39(1)(a)

Act as the contact point for data protection authorities (ICO) for all data protection issues – Art 39(1)(d) and (e)

Provide advice and guidance on responses to Subject Access Requests and other rights from individuals (rectification, objection, erasure, portability) - Art 38(4).

Facilitate GDPR awareness and data protection best practice training

Monitor general compliance with the GDPR - Art 39(1)(b)

Quarterly risk report for senior management


Something else you're looking for? 

Copyright 2twenty4 Consulting

bottom of page