“However fast regulation moves, technology moves faster. Especially as far as data is concerned.”

Elizabeth Denham

UK Information Commissioner Information Commissioner’s Office


Winterhawk is uniquely positioned to help organisations preparing to meet the requirements of the GDPR. As a global provider of Governance, Risk, and Compliance (GRC) services, we are able to offer a full range of services to assist with your compliance pre & post implementation, alongside our legal and software partners.


Digital and technological advancements have long-since outgrown the legislation in place for data protection; furthermore, the requirements have varied from one country to another. The need to harmonise data privacy laws regulations and bring them into the 21st century was clear, and plans to do so under the General Data Protection Regulation (GDPR) began.

This reform is the most significant change to data privacy regulation in over 20 years. It replaces the Data Protection Directive and is designed to harmonise data privacy laws across Europe, to protect and empower all EU citizens’ data privacy and to reshape the approach to data privacy in organisations across the region.

Note: This site will be updated as needed, in line with developments at the European level.