Skip to Main Content
Lockdown learning: Get 25% off all June, July and August training dates, plus all self-paced online courses! Find out more
Privacy as a Service

Privacy as a Service

SKU: 5434
Authors: ITG

Covering all elements of data protection, Privacy as a Service (PaaS) provides a flexible, holistic solution to data protection under one easy-to-manage contract.

Delivered by our sister company GRCI Law, this complete solution comprises a blend of seven bespoke data privacy services to meet your short, medium, and long term compliance objectives. Experienced lawyers, barristers, DPOs and cyber security experts are on hand to support your data privacy needs, providing the assurance you need to meet your GDPR and DPA 2018 compliance requirements.

 COVID-19: remote delivery options

We would like to reassure our clients that all training and consultancy services will go ahead as scheduled during the current COVID-19 situation. As a company that fully embraces flexible and remote working, we are adjusting our delivery methods to allow us to provide consultancy services, penetration tests and training remotely where necessary. Please also refer to our COVID-19 policy.

For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service

About GRCI Law

GRCI Law is a sister company of IT Governance, with decades of experience advising on data privacy and implementing operational solutions. Our team of consultants keep abreast of the constantly evolving data protection and data privacy regulatory landscape, horizon scanning and ensuring clients are up to date with key changes and emerging trends. We work closely with stakeholders and consider ourselves an extension of our clients’ in-house teams.

Download GRCI Law’s corporate brochure to find out more about their services.

What's included?

All GRCI Law services are scoped individually. A member of the GRCI Law team will:

  • Liaise with you to establish your organisation’s privacy requirements;
  • Work with you to develop a bespoke PaaS solution comprising the services you need;
  • Work with you to build a long-term relationship and embed privacy by design and by default across your organisation; and
  • Help you meet your short-, medium- and long-term GDPR and data privacy compliance objectives.



DPO as a Service (DPOaaS) An outsourced, virtual DPO service. We will act as your DPO in accordance with the requirements set out in the GDPR/DPA 2018.
Data Privacy Manager Service For organisations that need an experienced professional to help manage their data protection and data privacy compliance programme.
DPO Support Service Expert advice, support and extra resource for less experienced in-house DPOs, available as and when issues arise.
EU Representative Service Representation for your organisation within the EU, in accordance with the GDPR’s requirements.
Breach Management as a Service Advice, support and guidance on all aspects of data breaches throughout their lifecycle, including liaison with the relevant supervisory authority.
DSAR as a Service Advice, support and guidance on all aspects of DSARs (data subject access requests), including reviewing and assessing the nature and validity of the DSAR, screening and redacting the data in scope, and liaising with the relevant supervisory authority and the data subject.
Contract and Legal Service Our team can advise on reviewing, drafting and/or amending your data protection documentation, commercial agreements and HR documents, and provide advice on data transfers and relevant mechanisms. This includes supply chain and data processor contracts, binding corporate rules and standard contract clauses.

Want to know more?

Download GRCI Law’s corporate brochure to find out more about their services.

  • Cater for your data privacy requirements under one easy-to-manage contract.
  • Create a culture of privacy by design in your organisation.
  • Contact us when and how it suits you.
  • A flexible approach that grows and adapts with your organisation.
  • Quick access to qualified data protection professionals with market-leading experience.
  • Competitive rates and transparent fees allow you to remain in control.
Why GRCI Law

PaaS is delivered by IT Governance’s sister company, GRCI Law, and has been developed specifically to cater to the needs of organisations trying to comply with the GDPR and DPA 2018.

  • Unlike other organisations, GRCI Law is a specialist legal consultancy, which means we only advise on issues related to data protection, privacy and cyber security.
  • GRCI Law’s team of qualified lawyers, DPOs, solicitors and barristers have decades of experience in privacy and information/cyber security compliance programmes, and personal data solutions for high-profile organisations.
  • GRCI Law takes a strategic approach to assessing and managing your data privacy needs, aligning standards and best practices with your operational and business requirements.
  • As a sister company of IT Governance, you have direct access to cyber security specialist expertise, if needed.
  • Our team has experience with global multinationals, international banks, investment firms and leading law firms, healthcare providers, world-leading educational institutions, the European Council; and UK law enforcement organisations.

Download GRCI Law’s corporate brochure to find out more about their services.

Customer Reviews

This website uses cookies. View our cookie policy