Data Processing Agreement

£450.00

Drafting of a UK GDPR-compliant data processing agreement (DPA) for controller-processor relationships. Required wherever you share personal data with a third party that processes it on your behalf (or vice versa).

What's included

  • A consultation to understand the data processing relationship.
  • Drafting of a DPA compliant with UK GDPR Article 28, covering processing instructions, security measures, sub-processing, breach notification, audit rights, and data deletion.
  • One round of revisions based on your feedback.
  • Final version ready to use.

What's not included

  • Negotiation with the other party beyond the scope described above.
  • Data sharing agreements between controllers (see separate service).
  • Tax advice (including VAT, corporation tax, income tax, capital gains tax, and stamp duty). A UK GDPR-compliant data processing agreement is required wherever you share personal data with a third party that processes it on your behalf, or vice versa. The DPA sets out the processing instructions, security measures, sub-processing arrangements, breach notification obligations, audit rights, and data deletion requirements. Without a DPA in place, both parties are in breach of Article 28 of UK GDPR. Your data processing agreement will be drafted personally by me, Geoffrey Caesar, a senior solicitor authorised and regulated by the Solicitors Regulation Authority. Once you have completed the checkout process, I will be in touch within one working day to arrange a consultation. I will take the time to understand the data processing relationship before drafting a DPA that is fully compliant with UK GDPR Article 28. One round of revisions is included, and I will deliver a final version ready to use.

Drafting of a UK GDPR-compliant data processing agreement (DPA) for controller-processor relationships. Required wherever you share personal data with a third party that processes it on your behalf (or vice versa).

What's included

  • A consultation to understand the data processing relationship.
  • Drafting of a DPA compliant with UK GDPR Article 28, covering processing instructions, security measures, sub-processing, breach notification, audit rights, and data deletion.
  • One round of revisions based on your feedback.
  • Final version ready to use.

What's not included

  • Negotiation with the other party beyond the scope described above.
  • Data sharing agreements between controllers (see separate service).
  • Tax advice (including VAT, corporation tax, income tax, capital gains tax, and stamp duty). A UK GDPR-compliant data processing agreement is required wherever you share personal data with a third party that processes it on your behalf, or vice versa. The DPA sets out the processing instructions, security measures, sub-processing arrangements, breach notification obligations, audit rights, and data deletion requirements. Without a DPA in place, both parties are in breach of Article 28 of UK GDPR. Your data processing agreement will be drafted personally by me, Geoffrey Caesar, a senior solicitor authorised and regulated by the Solicitors Regulation Authority. Once you have completed the checkout process, I will be in touch within one working day to arrange a consultation. I will take the time to understand the data processing relationship before drafting a DPA that is fully compliant with UK GDPR Article 28. One round of revisions is included, and I will deliver a final version ready to use.