ISO 27001 is the most widely used international standard for managing information security. Compliance is maintained through an information security management system (ISMS). For more information, read our essential guide to ISO 27001 compliance.
Basic
£150 mthly
GET A QUOTE
Medium
£250 mthly
GET A QUOTE
Medium +
£350 mthly
GET A QUOTE
Premium
£500 mthly
GET A QUOTE
Corporate
Customised
GET A QUOTE
GDPR basic protection
Designation of external data protection officer (DPO)
Online employee training
The legislator provides for "data protection training for employees" and may also require proof of this. In our Academy, we offer free training for a wide range of employee groups.
For up to 50 employees
For up to 75 employees
For up to 100 employees
For up to 150 employees
By arrangement
Template for employee commitment to the GDPR
The legislator provides for the "obligation of employees to comply with data protection requirements" and may also require proof of this.
Templates for privacy policies
Monitoring and support for privacy impact assessment (PIA)
1
2
4
By arrangement
Data protection dossiers with technical and data protection updates
Regular communications on relevant current events and case law relating to data protection and data security.
Annual activity report
Data protection audit
Determination of the current status of your company in terms of data protection. Based on the results, we will later prepare your data protection documentation.
Privacy assessment via our platform
Through questionnaires specially designed for your industry, we get to know the processes in your company better.
Audit telephone calls
In several telephone calls, selected industry experts will go through the answered questionnaires about the various processes in your company with you and clarify any open questions.
Company-specific data protection check
Regular review of the current status of your company in terms of data protection law and adaptation of your data protection documentation.
2 times p.a.
4 times p.a.
By arrangement
Data protection documentation
Establishment of your records of processing activities (RPA)
The RPA is a legally required list of all processing activities of personal data.
Documentation of technical and organisational measures (TOM)
These are legally required measures to ensure the security of the processing of personal data in your company.
Prioritised recommendations for action
Data processing agreements (DPA)
DPAs may be necessary if you pass on personal data to other companies, natural or legal persons, authorities or other bodies for processing, or grant third parties access to your own data processing.
Support in the creation of data processing agreements (DPA)
5 contracts p.a.
10 contracts p.a.
15 contracts p.a.
By arrangement
Review of DPAs received from your partners and customers
5 contracts p.a.
10 contracts p.a.
15 contracts p.a.
By arrangement
Data protection platform
On the platform, you can see your current audit status, open and completed queries of parties concerned, and prioritised recommendations for action at any time.
Data protection management overview
Quick contact to your supporting experts
Templates and checklists for download
The platform provides you with templates and checklists for e.g. data protection declarations, data protection incidents as well as consents (e.g. employee photos) and legally required downloads.
1
2
4
6
By arrangement
Access to DataGuard Academy with industry-specific data protection training
For up to 50 employees
For up to 75 employees
For up to 100 employees
For up to 150 employees
By arrangement
Flexible use of additional hours
The activities listed below are charged to the hourly account included in your package.
The service package includes extra hours usable for:
6 hours p.a.
12 hours p.a.
18 hours p.a.
By arrangement
- Support in the processing of requests from authorities and data subjects
- Support for data breaches
- Support and examination of documents on information duties
According to Art. 13 and Art. 14 of the GDPR, every company is obliged to provide data subjects with comprehensive information on request about when their personal data, such as name or e-mail address, will be processed.
- Support with the creation of an erasure policy
- Advice on the data protection-compliant use of software and hardware
Prices
Monthly
£150
£250
£350
£500
By arrangement
Data protection audit (one-off)
£1,000
£1,600
£2,200
£3,000
By arrangement
Contract duration
24 months
24 months
24 months
24 months
36 months
Become ISO 27001 certified – maintain Information Security and build trust according to international standards
The ISO 27001 framework helps companies achieve resilience through an Information Security Management System (ISMS). Being certified assures your consumers and stakeholders that you prioritise the safety of their information. Our team of industry experts can guide you toward implementing and adhering to ISO 27001 best practices.
Get answers to all your questions about DataGuard and our services in a no-obligation phone call. Simply get in touch with us via any of the contact options on this page.
One of our experts will get to know your company and your processes during an in-depth session. This enables us to prepare an individual and tailor-made offer for you.
Once the contract is signed, we will introduce you to your dedicated point of contact and the rest of our team, who provide you with professional and needs-based support throughout our partnership. You will also be onboarded onto our user-friendly platform.
Together we determine the scope of your information security management system and how you need to prepare for ISO 27001.
You receive a full set of information security documentation, including a list of asset inventory and a risk based tool that suits your business process needs.
Now it's time to mitigate risks, with clear guidance from your DataGuard expert. These tasks are prioritised, clear, and ensure that your daily business is not disturbed.
We accompany you during the audit process, helping you prepare everything in the exact format external auditors are looking out for to maximise your chances of success. To date we have a 100% audit success rate.
“Caring about data privacy is just common courtesy. It shows that you care just as much about your customers themselves as you do about them spending money with your company. If we only cared about...
“With our digital approach combining online appointments with a healthcare app, we needed a partner that really understands our technical needs. With DataGuard, we have found a partner that speaks...
“Trying to find the right solution was a complete minefield. There was no understanding or empathy. We are dealing with sensitive data and needed extra help. Nobody took the time to really understand...
"As a result of flexibility for recording permissions introduced by DataGuard, UNICEF UK have seen a significant increase in the number of supporters giving consent to marketing depending on channel."
"The requirements with regard to data privacy and information security recently increased massively with our automotive customers, similarly to our industrial customers from other industries."
"With DataGuard, there’s a certain amount of hours included in our package. It covers the amount of questions that I have and gives me peace of mind that I won’t get a huge invoice at the end of the...
“DataGuard allows us to automate responses which saves time and money. And if we ever have a question, they have a team of experts standing by to help. It is like having a pain reliever."
“The GDPR requires us to document so many things, to fill out so many forms. We simply don’t have the time to do this. This is where DataGuard comes in – they take this task off our hands.”
“We chose a professional solution that covers a spectrum which an individual internal data protection officer cannot provide – neither in terms of expertise nor in terms of time."
“We were introduced to DataGuard and they were able to provide us with the perfect solution at the time we needed it. DataGuard gives us peace of mind and helps us sleep well at night. If you want to...
“Previously, all data privacy queries ended up on my desk. Now, the platform is the linchpin. Colleagues can find all their necessary to-dos, templates, documentation, and training courses easily and...
“DataGuard's team of privacy experts is what makes the difference. They don't just tell us "do it like this", they also explain why it should be done in a specific way – which helps broaden my team's...
“As a non-profit, we often work with so much personal data – names, email addresses, phone numbers, and more. We have to be on the safe side when it comes to privacy.”
“E-commerce is all about people. We do more than just store personal data: we monetize it. This makes it critical for us to stay on the safe side of data protection law. DataGuard helps us do exactly...
DataGuard consists of a team of certified experts from the fields of law, business & IT.
Set your brand apart with a proven commitment to strong information security practices.
Benefit from user-friendly processes, jargon-free explanations, and a dedicated expert to help you every step of your compliance journey.
Schedule a meeting with our information security experts to understand what solution works best for your business. Get started on your compliance journey today.
ISO 27001 is the most widely used international standard for managing information security. Compliance is maintained through an information security management system (ISMS). For more information, read our essential guide to ISO 27001 compliance.
ISMS stands for information security management system. It’s a documented management system that helps to protect the confidentiality, availability, and integrity of your company’s assets. By designing, implementing, and maintaining an ISMS, your business can protect data and information from being compromised. In addition, you can get your ISMS certified by an external body. One of the most common certifications is ISO 27001. Certification is essentially a means to guarantee that your ISMS meets a high standard.
There is no set time frame, but to properly set up an ISMS you need at least a few months. If you are seriously considering building a certified ISMS, we warn against providers who promise rapid certification via the use of cheap templates. External auditors can spot these quick fixes easily and, in these cases, it's more than likely you will fail your audit (and you will still be charged the audit fee in most cases). A sustainable yet efficient approach will ensure that you get ISO 27001 certified on time.
The cost of certification depends on the size of your organisation, existing technology in place, and the confidentiality of the information concerned. These factors affect the time taken to conduct an initial audit. To get a clearer picture of the costs involved, speak with one of our consultants and get a tailored quote.
C(ISO) stands for (Chief) Information Security Officer. They are responsible for planning and implementing policies to protect a company's information from loss, damage or theft. A (C)ISO can be hired internally or outsourced. This highly strategic role has seen skyrocketing demand in recent years thanks to increased digitisation. Their core focus is on areas like security operations, data loss and fraud prevention, identity and access management, and security architecture - making this role a critical piece of the puzzle for companies who want to scale.
All ISO 27001 audits must be performed by auditors who are both competent and objective. They must possess expertise in at least one branch of information security, a knowledge of the auditing procedure, !SO 27001 Lead Auditor Training (or other recognized qualification) and an awareness of the organisation’s goals and requirements.
Yes! In today's world, data is the new oil - so showing that you protect your information carefully really helps your business stand out amongst your competition. By proving that you are secure, you can win more deals and RFPs. In addition, a certified ISMS also helps you keep important customers, as many large businesses are now pushing compliance requirements down their entire supply chain.
TISAX® is a registered trademark of the ENX Association. DataGuard is not affiliated with the ENX Association. We provide consultation and support for the TISAX® Assessment only. The ENX Association does not take any responsibility for any content shown on DataGuard's website.
Our approach is designed to be an all-in-one solution for all your privacy and information security needs. We deeply understand the challenges of your industry and can speak to you in a language you understand.
Speak to an expert
Are you looking for an external data protection or information security officer? With over 100 experts and a platform we developed ourselves, we support you at eye level to achieve your goals!
Get practical tips and invitations to webinars and online Q&A sessions via our monthly emailing