Services

Data protection and privacy compliance

We help companies build privacy-compliant products and operations without slowing down delivery. From GDPR readiness to incident response, we translate legal requirements into practical policies, contracts, and workflows that stand up to regulators, partners, and enterprise customers
Contact us
Data protection and privacy compliance

Privacy Audit (GDPR / ePrivacy)

A privacy audit is a structured review of how your organization collects, uses, stores, and shares personal data. The goal is to confirm real-world compliance with GDPR and ePrivacy (cookies and marketing), reduce regulatory and contractual risk, and prepare you for enterprise due diligence and audits.

What we review

Data mapping & processing overview

What data you collect, where it comes from, where it goes, who accesses it, and how long it is retained

Legal bases & transparency

Lawful bases, privacy notices, user/employee disclosures, and purpose limitation

Cookies, tracking & marketing

Consent mechanisms, cookie banners and preference centers, analytics/AdTech setup, newsletters, profiling/targeting

Roles & contracts

Controller/processor allocation, DPAs, sub-processors, joint controllership, data sharing arrangements

International transfers

SCCs and Transfer Impact Assessments (TIA), cloud and remote team data flows, supplementary measures

Data subject rights operations

DSAR workflows (access, deletion, portability, objection), templates, logging, timelines, and escalation

Security & incident readiness

Organizational measures, breach response procedures, notification decisioning and documentation

Governance & documentation

RoPA, retention schedules, DPIAs/DTIAs, training, and DPO support

What do you get

  • 1. A concise audit report with prioritized findings
  • 2. A 30/60/90-day remediation roadmap (quick wins first)
  • 3. A risk matrix and audit-ready evidence pack
  • 4. Updated/draft key documents and recommendations

Data Removal and Right to be Forgotten

We help individuals and businesses protect privacy, remove personal data from online sources, and enforce rights under GDPR and related laws—through direct requests, regulatory complaints, and litigation when necessary.

What we do:

  • Assessment of eligibility and legal grounds
  • Drafting and submitting erasure requests to controllers and processors
  • Takedown strategy for search results, social platforms, publishers, and data brokers
  • Evidence pack preparation
  • Follow-up, escalation, and deadline control until resolution
  • Preparing complaints to the competent Data Protection Authority (DPA)
  • Representation in correspondence, hearings, and procedural steps
  • Pre-action letters and settlement strategy
  • Injunctions and court claims where appropriate
  • Claims for damages and reputational harm
  • Platform escalation, documentation, and coordinated communications

You get a clear, outcome-driven privacy enforcement package:

  • Tailored removal strategy
  • Lawyer-drafted GDPR requests
  • Strong evidence file
  • Full representation in communications and escalation
  • Case for the DPA and court
  • De-indexing where applicable

Contact us

Use the form below to outline your legal matter.
We will review your request and respond promptly.
All information is treated as confidential
Alternative contact options
Telegram WhatsApp
Please note that messenger communication is not intended for sharing sensitive or confidential information