Fortis DPC (The GDPR Compliance Consultancy)
Fortis DPC Ltd
★★★★★
5.0
/ 5
•
18 reviews
Fortis DPC offers expert GDPR, ISO, Cyber Security, and PCI DSS compliance solutions. They provide services like Data Protection Officer as a Service, GDPR audits, and EU representative services to ensure your business meets regulatory requirements.
Fortis DPC Ltd, also known as The GDPR Compliance Consultancy, specializes in providing comprehensive compliance solutions for GDPR, ISO standards, Cyber Security, and PCI DSS. They offer a range of services designed to help businesses achieve and maintain regulatory compliance, including Data Protection Officer (DPO) as a Service, GDPR Annual Audits, Data Protection Health Checks, and GDPR DSAR Support. Their expertise extends to acting as an EU Representative in Europe, ensuring businesses not established in the EU can meet Article 27 GDPR requirements. Fortis DPC aims to provide peace of mind by helping organizations navigate complex data protection laws, mitigate risks associated with data handling and cyber threats, and achieve demonstrable compliance. They cater to various needs, from landlord-specific GDPR guidance to comprehensive training and privacy notice authoring, ensuring businesses of all sizes can operate securely and compliantly. With a focus on ongoing maintenance and robust data protection postures, Fortis DPC assists clients in identifying high-impact risk areas and implementing effective strategies. Their services are crucial for businesses looking to avoid penalties, enhance their security, and build trust with customers and partners by adhering to the highest standards of data privacy and protection.
About
**Who they are**
Fortis DPC (The GDPR Compliance Consultancy) provides expert GDPR, ISO, Cyber Security, and PCI DSS compliance solutions. They specialize in helping organizations meet regulatory requirements.
**Expertise & scope**
* Offers EU Representative services to satisfy Article 27 of the GDPR, acting as a point of contact for European regulatory agencies for businesses without an EU/EEA physical presence.
* Provides Data Protection Officer (DPO) as a Service, fulfilling mandatory requirements or enhancing compliance demonstration.
* Conducts GDPR Annual Audits and Data Protection Health Checks to assess and improve an organization's data protection posture.
* Offers GDPR DSAR Support Service to manage Data Subject Access Requests effectively within the mandated 30-day timeframe.
* Delivers specialized GDPR services for landlords, including policy and procedure development.
* Supports compliance with various ISO standards, including ISO 9001, ISO 14001, ISO 27001, ISO 27701, ISO 45001, and ISO 22301.
**Reputation / proof points**
* Focuses on ensuring businesses meet regulatory requirements.
Fortis DPC (The GDPR Compliance Consultancy) provides expert GDPR, ISO, Cyber Security, and PCI DSS compliance solutions. They specialize in helping organizations meet regulatory requirements.
**Expertise & scope**
* Offers EU Representative services to satisfy Article 27 of the GDPR, acting as a point of contact for European regulatory agencies for businesses without an EU/EEA physical presence.
* Provides Data Protection Officer (DPO) as a Service, fulfilling mandatory requirements or enhancing compliance demonstration.
* Conducts GDPR Annual Audits and Data Protection Health Checks to assess and improve an organization's data protection posture.
* Offers GDPR DSAR Support Service to manage Data Subject Access Requests effectively within the mandated 30-day timeframe.
* Delivers specialized GDPR services for landlords, including policy and procedure development.
* Supports compliance with various ISO standards, including ISO 9001, ISO 14001, ISO 27001, ISO 27701, ISO 45001, and ISO 22301.
**Reputation / proof points**
* Focuses on ensuring businesses meet regulatory requirements.
Additional information
Fortis DPC emphasizes that GDPR compliance is an ongoing process, not a one-time event. They offer a free one-hour meeting to discuss GDPR needs. Their services are designed to provide a clear view of an organization's data protection and security posture, identifying high-impact risk areas and offering detailed guidance for robust compliance programs. They aim to deliver peace of mind to businesses navigating complex data protection legislation.
Key Highlights
-
Provides EU Representative services to meet GDPR Article 27 requirements for businesses without an EU/EEA presence.
Source
“The EU GDPR requires organisations that are regulated by the GDPR must be represented in the EU/EEA. If there is no physical presence in the EU/EEA, then a the business can appoint a body to represent their data protection interests in Europe.”
-
Offers Data Protection Officer (DPO) as a Service to fulfill mandatory GDPR requirements or demonstrate enhanced compliance.
Source
“The GDPR Compliance Consultancy can provide the role of GDPR Data Protection Officer, DPO as a service for organisations.”
-
Conducts GDPR Annual Audits and Data Protection Health Checks to ensure ongoing compliance and assess data protection posture.
Source
“Businesses evolve, grow, move and change over the period of a year. Therefore, it is vital that your GDPR status is reviewed at least once very twelve months.”
-
Supports businesses with GDPR DSAR Support Service to manage Data Subject Access Requests effectively within the 30-day timeframe.
Source
“The EU and UK GDPR requires you to respond quickly and effectively to requests. To be precise, 30 days to requests from individuals about their personal data.”
Certifications & Trust Signals
-
Offers a range of ISO services including ISO 9001, ISO 14001, ISO 27001, ISO 27701, ISO 45001, and ISO 22301.
Source
“ISO 9001 Services ISO 14001 Services ISO 27001 Services ISO 27701 Privacy Information Management”
Buyer Snapshot
Best for
- Organizations needing an EU Representative under GDPR Article 27
- Businesses requiring outsourced DPO services
- Companies seeking to enhance their GDPR and data protection compliance
How engagement typically works
- Consultative approach with initial free meetings
- Service-based engagements for specific compliance needs
- Ongoing support for data protection and regulatory adherence
Typical deliverables
- EU Representative appointment and management
- DPO as a Service reports and guidance
- GDPR audit reports and action plans
- Data Protection Health Check assessments
- DSAR response support
- ISO compliance documentation and support
Good to know
- Best when organizations require expert guidance on GDPR and related compliance standards.
- Suitable for businesses without an EU/EEA establishment needing Article 27 representation.
Pricing
Model:
Retainer
HQ:
Cobham, GB
Languages:
English
Timezones:
Europe/London
Status:
listed
Services & Capabilities
GDPR Article 27 EU/UK Representative
Jurisdictions:
EU
Onboarding time:
2–5 days
Pricing model:
Retainer
Included services:
Regulator contact point, DSAR forwarding, Compliance support
Coverage:
GDPR, ISO 9001, ISO 14001, ISO 27001, ISO 27701, ISO 45001, ISO 22301, Cyber Security, PCI DSS, Data Protection, AI Compliance, DefStan 138, DefStan 139
Supports Special Category Data:
Yes
Supports Children Data:
Yes
Supports Health Data:
Yes
Dpa Available:
Yes
Dsar Workflow Support:
Full managed
Regulator Comms Handling:
Full handling
Pricing Basis:
custom
Supports Biometric Data:
Yes
Additional gdpr_art27_rep Details
Coverage Details
EU
Onboarding Steps
Offers a free one-hour meeting to discuss GDPR needs.
EU EEA Establishment
Provides EU Representative services for businesses without a physical presence in the EU/EEA.
