Do I need to appoint a GDPR representative? What does it do?
GDPR can apply to your organisation even if you have no business presence in the EEA (EU)
The far-reaching General Data Protection Regulation GDPR requires every organisation that offers goods and services to people in the EU or collects and analyses data tied to EU residents needs to be compliant to GDPR, including organisations based outside of Europe.
Non-compliance carries a maximum fine of 20 million Euros or 4 percent of the organisation’s annual global turnover, whichever is greater. Therefore it is vital for organisations of any size to have a clear understanding of GDPR and to carry out the necessary operational reforms to ensure compliance.
Similarly, same is true with the UK Data Protection Brexit Regulations
As your GDPR representative, we act on your behalf as a local point of contact for individuals and data protection authorities in the EEA or the UK, depending on where your organisation is located.
We will go the extra mile by providing you with the necessary GDPR foundation training to help your organisation to understand the regulation and your responsibilities as data controller or data processor.
As your named representative, we will also help you maintain a record of processing activities (ROPA).
Our Work As Your Data Protection Representative
- Dedicate time to understand your data processing activities and approach to EU / UK GDPR compliance
- Act as your point of contact with data protection authorities in the EEA (including the EU) and/or the UK
- Assist you to maintain your record of processing activities (ROPA) as required by Article 30 of EU GDPR and/or the UK GDPR
No fiddly spreadsheets – Maintain Your Record of Processing Activities (ROPA) with our Simple Online App
Maintain ROPA with Online App
Regulator’s Point of Contact
Access Point for Individual’s Requests
Offices in the UK, Italy and Spain
Meet Article 27 of the GDPR Requirements
Understands Your Data Processing Needs
Plans & Pricing
Our simple annual subscription plans can be cancelled at any time. There are no hidden charges or additional per-request fee unless there is an excessive number of requests (exceeding 0.35% of student weeks) per annum. All of our fees are advertised inclusive of VAT (where applicable).
Our GDPR Representative Service is specially designed for Schools and Universities but it can also be used by small to medium businesses. To work out your band and annual subscription fee, we will need your estimated student weeks or employee number for the NEXT 12 months, whichever is higher. i.e. if you have 500 student weeks and 10 employees, you will be on band 3. Employee number is calculated based on average throughout the year, for example, 24 staff for one month in summer is equivalent to 2 employees for the year.
Before your next annual subscription renewal, we will ask you to confirm any changes to your student weeks or employee numbers.
|Band||Student Weeks*||Employee No (Avg)||Price / Year**|
|2||1,001- 2,000||2 – 5||£238|
|3||2,001- 6,000||6 – 10||£288|
|4||6,001- 10,000||11 – 15|
|5||10,001- 20,000||16 – 20|
|6||20,001- 30,000||21 – 30|
|7||30,001- 40,000||31 – 40|
|8||40,001- 70,000||41 – 50||£788|
|9||70,001 – 100,000||51 – 75||£1288|
|10||100,000 – 125,000||76 – 100||£1688|
**Additional charges of £6.80 / request may apply in case of an excessive number of requests (exceeding 0.35% of student weeks) per annum
INCLUDED FREE with Organisation PRO*
*Our UK & EU GDPR Representative Service is included in our Organisation PRO subscription plan at no extra cost for band 1 – 6