GDPR

GDPR

ÍN SHORT

General Data Protection Regulation (GDPR) is an EU regulation that mandates organizations to protect personal data and uphold the privacy rights of individuals within the EU.

My approach is hands-on and business-oriented — mapping your current posture, identifying gaps, and delivering a clear roadmap to full compliance. I support every step: from policy documentation and process design to training and technical controls.

GDPR COMLIENCE

Key Compliance Steps

• Lawful Data Processing: Ensure all personal data is processed based on a valid legal basis, such as consent or contractual necessity.
• Data Inventory: Document the types of personal data collected, processing purposes, and data retention periods.
• Privacy Policy: Maintain a transparent and accessible privacy policy outlining data handling practices.
• Data Subject Rights: Implement procedures to address rights such as access, rectification, erasure, and data portability.
• Data Protection Officer (DPO):: Appoint a DPO if required, based on the scale and nature of data processing activities.
• Third-Party Agreements: Establish data processing agreements with all third-party processors handling personal data.
• Security Measures: Implement appropriate technical and organizational measures to safeguard personal data.
• Breach Notification: Develop a protocol to detect, report, and investigate personal data breaches within 72 hours.

For a comprehensive checklist, refer to the GDPR compliance checklist provided by GDPR.eu .

Whether you're early-stage or enterprise, the goal is the same: actionable clarity, not compliance theater.

PEOPLE, POLICY & PRACTICE

BUILD A SECURE CULTURE

Compliance isn't just about documents — it’s about behavior. I help embed security-minded thinking across your organization through:

• Security awareness training
• Policy creation and rollout support
• Role-based access control & governance practices
• Incident response planning and table-top exercises
• Internal audit coaching and risk communication

Together, we create sustainable practices that reduce regulatory risk and build lasting stakeholder confidence.

Practical, Trusted Security Expertise

I’m a multidisciplinary developer and consultant with a deep background in full stack development, cybersecurity, and compliance. My approach is pragmatic — blending technical depth with real-world security needs.

I’ve worked across sectors on secure systems design, vulnerability response, policy building, and audit preparation. With over 10 years of experience, I understand the risks, challenges, and regulations businesses face today.

Let’s build systems that are not just functional, but secure and future-proof.

Get in Touch