“However fast regulation moves, technology moves faster. Especially as far as data is concerned.”

Elizabeth Denham

UK Information Commissioner Information Commissioner’s Office


Winterhawk is uniquely positioned to help organisations preparing to meet the requirements of the GDPR. As a global provider of Governance, Risk, and Compliance (GRC) services, we are able to offer a full range of services to assist with your compliance pre & post May 2018. Please contact us at GDPR@winterhawkconsulting.com to find out more or to arrange a callback.


Digital and technological advancements have long-since outgrown the legislation in place for data protection; furthermore, the requirements have varied from one country to another. The need to synchronise data privacy laws and bring them into the 21st century was clear, and plans to do so under the General Data Protection Regulation (GDPR) began.

This reform is the most significant change to data privacy in over 20 years. It replaces the Data Protection Directive and is designed to harmonise data privacy regulations across Europe, to protect and empower all EU citizens’ data privacy and to reshape the approach to data privacy in organisations across the region.

Note: This site will be updated as needed, in line with developments at the European level.