Contact Us

Contact Us

Please get in touch using the form below

1000 characters left
View our privacy policy


Data protection officer as-a-service

If, like many others, your organisation is subject to the GDPR or DPA 2018, appointing a Data Protection Officer (DPO) is of paramount importance. Likewise, if you are located in the US and are required to comply with the Health Insurance Portability and Accountability Act (HIPAA), you’ll need to appoint an individual to act as a privacy and security officer.

For many businesses, an individual with the required skills and experience to perform these duties simply doesn’t exist in-house. The scope of duties and responsibilities required are likely to exceed what a single individual can fulfil, even for those that do employ one.

In partnership with leading data privacy law firms, Kroll provides an outsourced DPO service to help organisations meet and maintain the standards required for GDPR, DPA and HIPAA compliance, as well as a wide range of other compliance requirements.


DPO consultancy services on demand

Kroll’s global team of technical and legal experts are well versed in helping organisations set up and maintain a compliant DPO program as quickly and efficiently as possible.

We take a strategic approach that aligns technological and operational decision-making with best practices for cyber security and data privacy.

DPO as a service can help organisations significantly improve cyber resilience, whatever their location, size or sector, and whatever mandates they need to comply with.

picture of computer, clipboard and people

How we can help

How DPO as a service can help

Training employees on their data privacy obligations
Recommending assessment plans to identify gaps
Managing documentation and maintaining audit trails
Informing and advising about data processing risks
Creating an operational roadmap and maturity model
Developing data protection impact assessments
Maintaining data processing records
Identifying information assets and process flows
Advising when mitigating actions are required

Discuss your requirements

Get in touch

Why choose us?

Why use Kroll’s DPO service?

By commissioning a DPO service from Kroll, you’ll be tapping into a wealth of experience from a team of certified experts that help thousands of organisations meet their security, risk and regulatory challenges every year.

Many of our cyber professionals bring years of unique experience from their former service with law enforcement, regulatory and investigatory agencies across the world.

You can call on our DPO consultancy experts as and when you need them, and you’ll gain access to Kroll’s unrivalled end-to-end cyber risk services portfolio.

picture of people pointing at a board and a printer printing something

Breach notification

Breach notification services

If the multitude of breach notification requirements your organisation is subject to feels daunting, you’re far from alone. Kroll is a global leader in breach notification services, and our experts are here to help you with end-to-end breach solutions, from proactive preparation to crisis management.

We closely track the evolution of data privacy requirements across the globe and are continually developing our capabilities to meet the changing regulatory landscape and help businesses support them in multiple jurisdictions.

About Us

Why choose Kroll?

  • Flexible, on-demand services
  • Recognised by CREST and the PCI Council
  • Global team of cyber risk experts
  • >3,200 security incidents responded to every year

Get in touch

Complete the form for a prompt response from our team.

Two Redscan team members analysing cyber security intelligence

1000 characters left
View our privacy policy


Discover our latest content and resources

From the blog
From the blog Case studies Latest news
18th September 2023
Company board members struggle to understand cyber risks
According to new research, company board members often struggle to fully understand cyber risks, increasing the potential for attacks on businesses.  
11th September 2023
UK boards less concerned about cyber risk than those in other countries
A concerning new study suggests that UK boards are less worried about cyber risk than those in other countries.  
4th September 2023
NCSC issues new warning about AI chatbots
The UK’s National Cyber Security Centre (NCSC) has issued a new warning about the cyber risks posed by AI chatbots, urging organisations to be cautious when building integrations into services.    
29th August 2023
Attack dwell times decrease but threat actors move faster
A new report has shown that while the dwell time of cyber-attacks fell in the first half of 2023, attackers are moving faster.