Data Protection & General Data Protection Regulation (GDPR) Consulting

We’re here to help you set up your data protection management system (DPMS) and support your data protection officer (DPO).

Structured approach

Setting up a DPMS for the first time can be difficult. Our finely tuned processes can assist you from the start.


Privacy and respect for the individual have always been core values of our team. Our focus on open source and transparent IT underlines this.

We also provide help with technical measures.

As IT professionals we deliver what many consultants who specialize solely in data protection cannot: extensive IT knowledge.

Data breach? We’re here to help!

We are at your disposal and provide fast effective support in dealing with data breaches and requests from supervisory authorities.

Let’s talk


You are also welcome to directly send an email to or call us on +49 721 7540 7430 (Mon–Fri, 9:30 am–5 pm). Your data will only be used to process your request and not be transferred to any third party (as described in our privacy statement).

Sample approach

Stage 1: Target / performance analysis

  • Analysis of all Processing Activities (creation of RoPA documentation)
  • Analysis of existing Technical and Organisational Measures (TOM)
  • Definition of responsibilities and areas within your organisation
  • Review of existing Order Processing Agreements

Stage 2: Implementation of the DPMS Part 1

  • Records of Processing Activities (RoPA)
    • Review of pre-existing records
    • Documentation of further Processing Activities
  • Development of a storage and deletion concept
  • Development of a security concept
  • Creation of a company-specific Order Processing Agreement

Stage 3: Implementation of the DPMS Part 2

  • Validation and implemention of the TOMs
  • Documentation including the technology found during Stage 1
  • Ensuring accountability (Article 5 (2) GDPR)
  • Ensuring the rights of the data subject (Articles 12 to 23 GDPR); Definition and implementation of the required processes
  • Controlling, documentation and auditing

Stage 4: Fine Tuning

  • Initial training session for employees
  • Initial run through of the PLAN, DO, CHECK, ACT (PDCA)-Cycle