Data Protection & GDPR Compliance
GDPR compliance is not a one-off exercise. These packages establish the legal structure — from an initial audit to a complete data protection framework for businesses with cross-border data processing across the EU, UK and Greece.
GDPR Foundation
Essential compliance structure
- Review of processing activities and preparation of a records of processing activities (Art. 30 GDPR)
- Review and drafting of a GDPR-compliant privacy notice for website and app
- Identification of legal bases under Art. 6 GDPR for key processing operations
- Review of consent texts and cookie notices
- Written action plan with prioritised recommendations
Ideal für
Start-ups and SMEs establishing or reviewing their GDPR foundation.
Fixed fee: from EUR 1,500 + VAT
GDPR Compliance with Contract Layer
Compliance with contract layer
All Start services, plus
- Drafting and negotiation of data processing agreements (Art. 28 GDPR) with service providers
- Review and structuring of third-country transfer mechanisms (SCCs, adequacy decisions)
- UK GDPR analysis: EU GDPR / UK GDPR comparison, UK adequacy decision, Transfer Impact Assessment
- Technical and organisational measures (TOMs) under Art. 32 GDPR
- Data subject rights processes: access, rectification, erasure, portability
- Staff training framework (guidance document)
Ideal für
Growing businesses with service providers, third-country transfers and UK operations.
Fixed fee: from EUR 2,500 + VAT
Complete Data Protection Framework
Complete governance framework
All Start and Plus services, plus
- Data Protection Impact Assessment (DPIA) under Art. 35 GDPR for high-risk processing
- Coordinated GDPR / EU AI Act analysis for AI system deployments
- Greek data protection law: HDPA requirements, national specifics, cross-border structure
- Full data protection governance: DPO appointment review, internal policies, incident response procedures
- Data breach notification procedures under Art. 33/34 GDPR: process design and templates
- Annual review meeting (60 minutes) to maintain compliance structure
Ideal für
Tech and FinTech businesses with complex data processing, AI deployment and cross-border structures across EU, UK and Greece.
Fixed fee: from EUR 4,500 + VAT
Optional annual review: EUR 450 / year + VAT
Related Practice Areas
Fixed fees apply to the standard scope described. Additional complexity, extra jurisdictions, notarial or regulatory steps, and multilingual versions are agreed separately. All prices are exclusive of VAT. Packages do not constitute individual legal advice.