We can help you act with confidence in case of a GDPR enforcement action - both proactively to set up the necessary processes and templates for the future and provide direct advice and support in case of an impending enforcement action.
We can offer services to improve your organisation's audit readiness in a so-called soft audit. We review a selected business process and train your audit response team and at the same time evaluate your organisation's audit readiness.
The audit response team will receive real-life training in managing the lead supervisory authority's Desk Supervision and Field Inspection processes. We will evaluate the organisation's performance in written and oral form, with likely sanctions and commercial consequences. Our team will review and implement best practice in the form of an end-to-end process, complete with templates, checklist and presentation materials. Mitigate prioritized gaps from pre-study, soft audit and other known issues, suggesting specific measures to implement.
A soft audit is an efficient way to assess, evaluate and train your audit readiness and data compliance.
Price example project – preparing a leading retailer for a potential inspection from the supervisory authority consisting of an internal review (a "soft audit"), including several workshops with preparation, conducting the legal and best practice analysis soft audit mimicking the actual processes used by the supervisory authorities, follow up meetings and report to management/DPO we offered a price estimate for our work in the range of SEK 120 - 190 kSEK (exclusive of VAT).
Experienced, practical expert advice at your disposal to ensure an efficient and fair audit process. Let us help prepare your position and argue before the supervisory authority to provide your organisation with the best possible outcome. We are proactive, solution-driven and provide hands-on advice and support with great attention. We have extensive experience in leading several high-profile clients' enforcement actions vs the Swedish Data Protection Authority (Integritetsskyddsmyndigheten, IMY).
We can act as your advisor in real-life audit situations, supporting the DPO and audit response team:
Our in-house legal and quantitative analytics of GDPR sanctions provides a leading understanding of risks and possible financial sanctions.
Through the initial hands-on analysis of potential risk exposure, let us support you through the entire enforcement process from the initial legal analysis of the situation, determining of strategy for senior management, taking decisive actions to mitigate any risk exposure, preparing and addressing the Supervisory Authorities requests to advising on a suitable media strategy.
Please take advantage of our expert advice regarding the supervisory authority's corrective powers and ensure you are taking the right measures at the right time to minimise the risk of a penalty fee.
We offer our services based on our hourly rates and are open to providing volume-based pricing or retainer for longer assignments depending on your needs and preferences.