How can I discuss my specific requirements with DataGuard before committing?
Book a meeting with our sales team to discuss your needs. They will work closely with you to understand your requirements and recommend a package (Light, Essential or Professional) that aligns with your business goals.
What are the costs associated with your services?
Our pricing structure includes a one-time fee for the gap analysis and a recurring monthly fee. The monthly fee includes access to our platform and training courses as well as ongoing support from our experts and customer success managers. The price depends on the size and complexity of your business as well as your exact requirements.
Are there any hidden costs that I should be aware of?
We always keep you fully informed about the costs associated with our services. With many competitors you incur hidden costs for data breach support, incident reporting, data protection impact assessments, expert support, awareness trainings, cancellation charges, and more. At DataGuard, we believe in maintaining full transparency with you. Our pricing model is designed to be comprehensive and transparent about all possible costs - including those for a named DPO or a CISO.
What are the payment options for your services?
You can choose to pay via bank transfer or direct debit. You are free to choose the method that works best for you.
Can I start with the lowest pricing option first and upgrade later?
We recommend choosing the package most suitable for your needs based on your business model, size, locations, compliance requirements and complexity. Starting off with the lowest pricing package means you miss out on capabilities and services which might be vital for your business. Our sales team will give you a comprehensive demo so you can get a full understanding of our solution and offers.
How can I avoid paying extra for features that my company doesn’t need?
Our team is dedicated to understanding your unique requirements. We will work closely with you to tailor a package that aligns with your goals. You will have access to all the platform capabilities, check-ins and consulting hours you have signed up for within your pricing package. However, if your business requirements change and you wish to downgrade, you can do so at the time of contract renewal.
Can I upgrade or downgrade my chosen package if required?
Our standard contract length is 24 months. You can upgrade anytime, but be aware that this might conflict with your ongoing project plan and could lead to duplicate work. For these reasons, we usually advise against upgrading. If your business requirements change and you wish to downgrade, you can do so at the time of contract renewal. Please note that we charge a downgrade fee and give a discount on upgrades.
Are personalised pricing options available before getting in touch?
While we offer standard pricing plans, we understand that every business is unique. You can get pricing quotes by answering quick questions about your business model, number of locations and employees, and desired certification. For further questions please feel free to get in touch with us and our sales team will reach out to discuss your specific needs and offer personalised pricing options.
What does the gap analysis include, and why is it billed separately?
The gap analysis consists of questionnaires that provide us a detailed overview of your existing information security practices. Your answers help us to identify risks, missing policies and documentation gaps. We then use the findings to outline your project plan. As the gap analysis is only done once at the beginning of your journey, we bill it separately.
Why is the standard contract length 24 months?
ISO 27001 certification generally takes anywhere between 3 and 12 months. In some cases it can also take longer depending on various business factors like size, available resources and complexity. We help you to establish your ISMS, manage your risks, record your information assets and conduct an internal audit to get you certified. However, it’s a common misconception that the journey ends with your successful certification. Mandatory surveillance audits are conducted every year and a complete re-audit is necessary every 3 years. To pass these audits, you need to continuously improve your ISMS, implement corrective actions post-audit and manage all evolving risks. At DataGuard, we want to make sure that you not only get certified, but stay certified to reap maximum benefits from your information security investment. That’s why our contracts are designed to offer ongoing support through your complete ISO 27001 journey.
Can I have consulting services without the platform or vice versa?
The platform is where you complete most of your tasks and deliverables for certification. You use it to manage risks, build your ISMS, create an information asset inventory, conduct the internal audit, and receive management reviews. While the platform helps you to work smarter, our qualified experts guide and advise you every step of the way. We believe this combined approach is the best way for businesses to navigate the complexity of InfoSec.
Is it mandatory for us to have a CISO (Chief Information Security Officer) in our company?
It is not mandatory to have a designated CISO in your company. However, accelerated business growth often leads to existing resources being spread too thinly across critical information security areas such as risk governance, policy management, security officer trainings, employee trainings, and more. So, if you don't have a designated CISO and would like to outsource, we will happily take over the role. We will provide you with more extensive advice and support on topics such as managing incidents, answering security questionnaires, responding to requests from regulatory bodies, and maintaining your ISMS. The external CISO is available on the Essential and Professional packages.
How long does it take to set up my information security management system (ISMS)?
In our experience, setting up your ISMS usually takes between 1 and 3 months. That timeframe can vary depending on the complexity of your organisation and your existing processes. Our team will work with you to provide a realistic timeline based on your specific circumstances.
How long does it take to get certified?
Some of our customers have achieved certification in as little as 3 months. For others, it took 6 to 12 months. What impacts the time to certification are factors such as your current state of compliance, business size & complexity, the specific certification you are pursuing and availability of the certifying body. When you start with us, our experts will guide you through the process and provide an estimated timeframe.
How many consulting hours does my company need per month/year?
You can get a pricing quote by answering quick questions about your business model, number of locations and employees, and desired certification. However, the exact number of consulting hours depends on the scope of your project, your organisation's requirements, and the level of support you desire. Please feel free to get in touch with us and our sales team will reach out to discuss your specific needs and offer personalised pricing options.
Don't just take our word for it
Customer Success Stories
“The Policy Generator feature of the platform looks promising as it will reduce manual effort massively on our end. I’m not stressed about the upcoming changes in ISO Standards in 2023 because I...
“We had a lot of know-how, but we needed someone to guide us through the whole process. In the end, the ISO certificate is definitely an award criterion for us, a USP. But it also shows what we stand...
“Data security and GDPR is very important to us. DataGuard started to consult us in every direction, tried to find out what the critical points in our businesses are and built up a risk register for...
"Having someone I can send my questions to for a prompt reply is wonderful. I don't have to worry about the cost as much as I have to with a lawyer where I have to write them to please only invest 25...
“Trying to find the right solution was a complete minefield. There was no understanding or empathy. We are dealing with sensitive data and needed extra help. Nobody took the time to really understand...
“Previously, all data privacy queries ended up on my desk. Now, the platform is the linchpin. Colleagues can find all their necessary to-dos, templates, documentation, and training courses easily and...
“Strong data protection practices are a great argument in favour of a company. People really care about this. And if customers care about it, then businesses need to care about it too. With the help...
“E-commerce is all about people. We do more than just store personal data: we monetize it. This makes it critical for us to stay on the safe side of data protection law. DataGuard helps us do exactly...
Find out how our Privacy, InfoSec and Compliance solutions can help you boost trust, reduce risks and drive revenue.
100% success in ISO 27001 audits to date
40% total cost of ownership (TCO) reduction
A scalable easy-to-use web-based platform
Actionable business advice from in-house experts
Trusted by customers
Get to know DataGuard
External data protection officer
Audit of your privacy status-quo
Ongoing GDPR support from a industry experts
Automate repetitive privacy tasks
Priority support during breaches and emergencies
Get a defensible GDPR position - fast!
Trusted by customers
Get to know DataGuard
Continuous support on your journey towards the certifications on ISO 27001 and TISAX®️, as well as NIS2 Compliance.
Benefit from 1:1 consulting
Set up an easy-to-use ISMS with our Info-Sec platform
Automatically generate mandatory policies
100% success in ISO 27001 audits to date
TISAX® is a registered trademark of the ENX Association. DataGuard is not affiliated with the ENX Association. We provide consultation and support for the assessment on TISAX® only. The ENX Association does not take any responsibility for any content shown on DataGuard's website.