Your shopping cart is currently empty.
“GRCI Law provided a thorough gap analysis to help our company achieve GDPR compliance before launching an IoT product in Europe. They were thorough when researching questions we had about data privacy and how to categorise the various pieces of data we collect through our app and IoT device. They also provided DPO services and helped us prepare for Brexit, and we feel prepared for the year to come.” - Business Systems Manager, IoT company
This all-encompassing service fulfils your DPO (data protection officer) responsibilities under Articles 38 and 39 of the GDPR and provides you with an experienced and dedicated DPO as your single point of contact. Your DPO will also be independent with no conflicts of interest with other business services.
We only advise on data protection and data privacy, which means our team has sector-specific knowledge and experience, and visibility of the latest trends, best practice, developments and challenges.
Our clients view us as part of their teams and we are known for our pragmatic, commercial advice. We won’t just identify an issue or advise on the law – we provide you with a practical solution to suit your specific needs.
"OASIS Group has used the legal services of GRCI Law over the last few years for data protection matters.
We are provided with legal experts who are dedicated to our account which gives us full continuity of service. These experts have worked on the ‘other side of the fence’, having come from industry, so they really understand the challenges that businesses face when dealing with the complexities of regulations and legislation. Their advice is always simple and pragmatic, and is provided in a way that supports our business rather than in a way that could work against it. They always put our interests first, but at the same time they will balance these against legal or regulatory requirements so that we always do the right thing.
They work across multiple functions in our business rather than just with one individual. This equips them with all of the knowledge that they need to provide us with the right level of support.
The real value of their services comes from their technical knowledge and expertise in data protection law, they always keep up to date with the outcome of data protection legal cases and case law which often set the precedent for their future application. This ensures that we do not fall foul of the law due to the grey areas that sometimes exist.
Our legal representatives are also extremely responsive. When we call on their services, we require a very fast response so that there is no disruption to the service that we provide to our clients. They will always respond within hours, they never let us down, which means that the service we provide to our clients is seamless and reliable.
We have full confidence and faith in their advice. They are true partners and in fact, we regard them as part of our team, we are very grateful for all of their support."
- Nicola Simpson, Group Compliance and Audit Director, Oasis Group
"We are a relatively small organisation, and rely on GRCI Law to provide external DPO support. They are able to provide domain knowledge and expertise that we do not have in–house. We have a named person who acts as our DPO. She is approachable and quick to respond, has a good understanding of the sector that we are in and the sort of issues that we are facing, and really makes an effort to look into the specifics of every issue that we raise, and offer practical workable solutions. She meets regularly with our working group and is able to provide support and advice on the GDPR-related matters that they raise. And in between meetings she is quick to respond to direct queries."
- Peter Alsop, Finance Bursar, Wadham College, Oxford
"We appointed GRCI Law as our Data Protection Officer back in 2018 having decided to outsource this important service. This was for us definitely the right course of action and GRCI Law have supported us in many different ways including data protection for staff training and specialist advice in a wide range of important areas. In particular, the initial data protection audit created a clear action plan for us to follow and we have benefited from having a good and responsive relationship with our appointed leads at GRCI Law."
- Association of School and College Leaders
Our team of qualified lawyers and DPOs have decades of experience between them. They have advised on, created and delivered effective data protection solutions, including:
You will be supported by a dedicated DPO with access to the wider GRCI Law team’s knowledge and expertise. Many of our clients find that they need more support than just a DPO. Our flexible services can grow with your business and adapt to your needs.
For more information about this service or to get a tailored quote, please enquire below and one of our experts will be in touch shortly.
We are a specialist consultancy firm offering a full suite of data protection and data privacy compliance solutions and associated non-reserved legal services. Our clients operate globally in a wide range of sectors including health and social care, education, professional services, retail, technology, media and telecoms
We are market leaders in terms of depth and breadth of experience. Our team of lawyers andDPOs have decades of experience and sector-specific knowledge between them.
We offer pragmatic, legal risk and compliance consultancy advice that you can trust, but without the burden of administrative duties and expenses that law firms must bear to carry out certain ‘reserved legal activities’, such as litigation, conveyancing and advocacy.
GRCI Law has completed the NHS DSP (Data Security and Protection) Toolkit online self-assessment, which allows organisations to measure their performance against the National Data Guardian’s ten data security standards, providing the assurance to all NHS clients that we are practising good data security and that personal information is handled correctly. If you process NHS patient data in any capacity, GRCI Law can assist you with all your data privacy requirements.
Christina Maclean – Managing Executive
Christina has overall responsibility for the running of GRCI Law. She oversees commercial strategy, client relationship management, product development and new business. She has a track record of driving growth through evidence-based strategy and providing excellent client service. She is a non-practising solicitor with a background in business development, marketing, communications and broadcast media.
Loredana Tassone – Managing Consultant, Head of EU & UK Representative Service
Loredana oversees operations, service delivery, and management and development of the consultant team. She has more than 15 years’ experience in the fields of privacy rights, data protection and cyber security in both the private and public sectors. She is a specialist in international and European law, and a qualified attorney at law in France and Italy. Based in Brussels, she advises GRCI Law clients on a wide range of data privacy issues. She is a certified GDPR consultant, DPO and trainer, and has worked at the European Court of Human Rights, at the Directorate General of Human Rights and Legal Affairs of the Council of Europe, and for international law firms in the EU.
If you have any queries or you’re unsure of how to progress, please get in touch with our team of experts, who will be able to assist with your enquiry and provide guidance options.