General Data Protection Regulation

From helping you understand what the impact of General Data Protection Regulation will be on your business, right through to implementing and managing ongoing compliance, Gordian is there.

Are you an Australian business with a website using analytics or cookies to profile users, including those in the EU?
Do you offer to sell products or services to people in the EU, including through your website?
Do you have a presence in the EU?
If the answer is yes to any of these then the new European Privacy Law, GDPR applies to your processing of that data.
Are your customers asking you to be GDPR compliant?
Do you want to demonstrate gold standard privacy compliance, building trust and respect with your customers, suppliers and employees?
Then GDPR is coming to your business!
With fines of up to 4% of global turnover or €20 million, whichever is the larger, then you must to comply.

Our offer

With over 10 year’s experience providing specialist technology law and privacy to Australian businesses, we can provide specialist privacy service that ensures your business is protected and compliant under the GDPR.

GDPR Representative services
Designed to comply with Article 27
Do you need GDPR Representative services? Find out here
Low
Ideal for small companies not processing special category data, children’s data or conducting automated decision making. For Australian businesses with up to 20 FTE that are not processing any “Special Category Data”
  • An EU presence in one Australia’s major trading partners, the UK. (Suitable for enquiries from all EU Member States)
  • Personalised webpage for requests
  • Fee includes up to 10 Communications per month.
  • Additional Communications $50 each
  • Translation services are available at additional cost.
$100 Monthly fee

Minimum term 12 months
$500 set-up fee

Regular

Ideal for small to mid-sized companies, including those processing special category data, children’s data or conducting automated decision-making.
For Australian businesses with up to 100 FTE, including those processing any “Special Category Data”, children’s data or conducting automated decision-making.

  • An EU presence in one Australia’s major trading partners, the UK. (Suitable for enquiries from all EU Member States)
  • Personalised webpage for requests
  • Fee includes up to 25 Communications per month.
  • Additional Communications $50 each
  • Translation services are available at additional cost.
$200 Monthly fee

Minimum term 12 months
$750 set-up fee

High
Ideal for medium to large companies, including those processing special category data. For Australian businesses with more than 100 FTE.
  • An EU presence in one Australia’s major trading partners, the UK. (Suitable for enquiries from all EU Member States)
  • Personalised webpage for requests
  • Fee includes up to 40 Communications per month.
  • Additional Communications $50 each
  • Translation services are available at additional cost.
$350 Monthly fee

Minimum term 12 months
$1,000 set-up fee

DPO As a Service
Designed to comply with Articles 37-39
Low
Ideal for small companies with straight forward privacy environment.
  • Awareness training
  • Management briefings
  • Monitoring of compliance programs
  • Data protection impact assessments
  • Record keeping monitoring
  • GDPR personal breach notifications and Australian Privacy Act data breach notifications
  • Requests from individuals who are exercising their rights
  • Liaison with the Supervisory Authority

Any services that exceed the monthly number of hours. This may include work on data protection impact statements, personal breach notices or disputes.

$1,250 Monthly fee
For up to 2 hours services per month.
Additional services at time and materials rates.
Minimum term 12 months.
$1,000 set-up fee.
Regular
Ideal for medium sized companies or companies with more complex privacy environments (e.g. profiling users behaviour, special category data, dealing with children or criminal records)
  • Awareness training
  • Management briefings
  • Monitoring of compliance programs
  • Data protection impact assessments
  • Record keeping monitoring
  • GDPR personal breach notifications and Australian Privacy Act data breach notifications
  • Requests from individuals who are exercising their rights
  • Liaison with the Supervisory Authority

Any services that exceed the monthly number of hours. This may include work on data protection impact statements, personal breach notices or disputes.

$4,800 Monthly fee
For up to 8 hours services per month.
Additional services at time and materials rates.
Minimum term 12 months.
$2,000 set-up fee.
High
Ideal for larger organisations or companies with more complex privacy requirements (e.g. processing large amounts of personal data, significant processing of special category data, auto-decision making, public area surveillance, etc.).
  • Awareness training
  • Management briefings
  • Monitoring of compliance programs
  • Data protection impact assessments
  • Record keeping monitoring
  • GDPR personal breach notifications and Australian Privacy Act data breach notifications
  • Requests from individuals who are exercising their rights
  • Liaison with the Supervisory Authority

Any services that exceed the monthly number of hours. This may include work on data protection impact statements, personal breach notices or disputes.

$8,000 Monthly fee
For up to 16 hours services per month.
Additional services at time and materials rates.
Minimum term 12 months.
$4,000 set-up fee.
Why Gordian?

For over a decade, Australian businesses have trusted Gordian to provide specialist technology law and privacy advice.

Our Services
With more than 10 year’s experience in providing specialist technology law and privacy advice to Australian businesses, the Gordian group of companies can provide you with a specialist privacy service.
Multi-Disciplinary, Multi-Location Team

Let our team of experts, including lawyers, project managers, information management specialists, based both here in Australia and in the EU, turn GDPR compliance into business advantage.

Compliance Programs
We can show help you work out what is needed to comply with GDPR and then support you by providing a custom GDPR compliance program.
Training Programs
Gordian Privacy runs public courses in GDRP compliance that are ideal for those who are new to GDPR, and those who want more detailed information.
Representative Services
Gordian’s Representative Office is the link between the EU Supervisory Authority and your local Australian business that meets the requirements of Article 27.
Data Protection Officer Services
As part of a compliance program, or as a standalone service we offer an outsourced “DPO as a Service” that meets the requirements of Articles 37-39.