Data Protection Officer as a Service

Tacita's sole business model is providing organisations with the tools to become GDPR compliant. For some organisations, this requires a more hands-on approach. Tacita's Data Protection Officer (DPO) as a service is suited to those organisations who wish to have their data protection outsourced and managed by the experts. Whether you are interested in hiring someone for a one off task or on a recurring basis, Tacita's flexible model can be moulded to suit your needs.


 Pay Only for What You Need

For some GDPR tasks, you may only need support for a few hours per month. Using Tacita's DPO as a service will be more cost effective than hiring someone new or training existing staff.

Expert Advice

Get access to the knowledge and experience of a GDPR company working in all sectors across the UK.  Tacita employees are trained in both GDPR law and business best practices.

Independent and objective

We focus solely on GDPR compliance. You can be certain that what we recommend is necessary and we will not try to up-sell software or other services.

Am I Legally Required to Hire a Data Protection Officer?

Some organisations are legally required to hire a Data Protection Officer (DPO). You can find out here if you need to hire a DPO. It is important to note that if you are legally required to have a DPO, this does not mean that you must hire someone to a full-time position. This role can be fulfilled by a part-time employee or outsourced to a GDPR compliance company, such as Tacita.

Even if you aren't legally required to hire a DPO, having an expert on call to answer your questions can be a very cost effective method of ensuring GDPR compliance.

Role of the Data Protection Officer

A DPO has several roles within an organisation:

  • Provides general counsel to the organisation in order that it can operate in a GDPR compliant fashion.
  • Acts as an independent expert in data protection.
  • Ensures that there are appropriate awareness and training campaigns to build a culture of privacy within your company.
  • Provides guidance on policies and procedures that need to be put in place.
  • Gives support and advice in completing Data Protection Impact Assessments.
  • Coordinates Data Subject Access Requests and other GDPR fundamental rights requests.
  • Acts as a point of contact for data subjects and the Supervisory Authority.

DPO As a Service Tasks

Tacita's DPO as a service can be used to perform a variety of GDPR tasks. See below for our standard offerings.

 Implementation of GDPR Governance Structure

Implementation of GDPR Training

Data Mapping

Advice on Supplier Contracting

Named DPO & ICO Registration

 Subject Access Request Support

Data Breach Response

 Implementation of Policies and Procedures

Data Protection Impact Assessment Support

Monthly GDPR Reporting to Board of Directors

Internal GDPR Auditing

Review of Privacy Notices

 Guidance on Record of Processing Creation and Maintenance

Helpline and Ad Hoc Support

Updates on Legislation Changes


Tacita offers competitive pricing on its DPO as a service product. For a free consultation on how Tacita can meet your GDPR needs, please get in contact with us.

Send us a message

Telephone: +44 20 4526 5699

To see how we use your data, see our Privacy Notice.