GDPR in a Box


A complete toolbox with everything you need to achieve the highest level of compliance. Guidelines, policies, procedures and additional support and guidance in an “all-in-one” bundle which you can tailor to your own needs.

GDPR Basics

On May 25th, 2018, Regulation (EU) No 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data took effect, which is widely known as the GDPR. The Regulation contains a number of new protective provisions, while imposing high fines to offenders. Specifically, a maximum fine of € 20,000,000 or, in the case of enterprises, 4% of the worldwide turnover, whichever is higher, can be imposed. In addition to administrative fines, every Member State is expected to utilise the option afforded by the Regulation and also enact criminal sanctions such as prison sentences and monetary fines.

The GDPR in a box – 3600 compliance box

The 360o Compliance box includes all the guidelines, documents and procedures needed in ensuring compliance with the General Data Protection Regulation. Customise your toolbox based on your own compliance needs and drive your business into the new age.

Build Your Box

Data Mapping Box

Does your company handle personal data as part of its business activities? If so, you are obliged to maintain a record of processing activities.

Employment Box

Do you employ people? Do you receive CVs from prospective employees? Companies that process employees’ personal data have specific obligations towards their personnel under the GDPR.

Privacy & Consent Box

Does your company manage client data? Companies that process clients’ personal data have obligations towards them under the GDPR, such as the obligation to inform.

Data Processing Agreement Box

Do you use subcontractors? If so, you should be aware that companies that outsource activities which include processing of personal data to subcontractors shall only use data processors who can provide sufficient warranties.

Policies & Procedures Box

Do you use CCTV? Do you use cookies on your website? If so, you should know that the company is liable and must comply with GDPR requirements


The General Data Protection Regulation (GDPR) radically changed how a business operates and introduced additional obligations for both data controllers and processors.  The Data Protection Officer (DPO) and Support to Data Protection Officer services can be tailored to your business’ needs and ensure your ongoing compliance with the General Data Protection Regulation (GDPR).

Add Up to your Box


Awareness and training seminars on the rights and obligations of those involved in the processing of personal data under the GDPR. The seminars can be tailored to the specific needs business and are designed to cover a wide range of business activities.

Implementation workshops

Specialized and experienced professionals undertake to customise deliverables based on your business’ needs. In addition, clarifications on how to practically implement them in day-to-day business operations are also provided.

Data Protection Impact Assessment

When the processing of personal data may expose to the rights/freedoms of natural persons to higher risk, or new technology is used, an assessment of the impact of the envisaged processing operations on the protection of personal data shall be carried out.


If you’d like to achieve a high level of compliance with the new Regulation you’ve come to the right place.

Contact us by filling out the form below to receive an offer tailored to your needs.

Andersen Legal is an independent legal firm with a worldwide presence through the member firms and collaborating firms of Andersen Global