Book FREE Consultation

URM is pleased to provide a FREE 30 minute consultation on GDPR for any UK-based organisation. Once an enquiry form has been submitted, we will be in touch to understand the nature of your enquiry and to book a mutually convenient time for a 30-minute consultation slot with one of URM’s specialists.

GDPR Gap Analysis

Pragmatic and tailored approach to GDPR compliance
Book FREE
Consultation
Gap Analysis
Virtual DPO
DPIA
ROPA
DSAR
STAIRs
Training and Awareness
Consultancy Services

Speak to GDPR Specialist

URM has 19-year track record assisting organisations to comply with legislation such as the Data Protection Act, the GDPR and local country-specific legislation.

Speak to one of our experts for more information on how we can help you comply. Simply call 0118 206 5410 or request a call back using the form below.

FREE GDPR Compliance Review

High-level review of your GDPR compliance position.

Offer is valid until

29/8/2024

Find out more

Conducting a Gap Analysis

One of URM’s most popular services is the GDPR gap analysis, which will help you understand your current levels of data protection compliance, identify gaps and vulnerabilities, and enable you to establish and implement a prioritised action plan.  
The gap analysis can be a thorough exploration of compliance or can be completed as a 2 or 3 day high-level review, conducted remotely or on site, and typically involves interviews with pre-agreed personnel and a high-level documentation review.  

URM will be looking to examine how you process personal data in each area of your business, the measures you have in place and to understand the relationship with customers, third parties and stakeholders.  A RAG status diagram is often used to illustrate, at a high level, your GDPR compliance, and you will receive clear practical guidance on which gaps to prioritise in terms of remediation activity.

We used URM as we had a large amount of information to redact for a Court of Protection case and neither had the time nor the knowledge to be able to complete this appropriately. URM were suggested to us and we made contact. They responded very quickly and were able to explain their role, estimated timescales & costings. During the initial consultation, they were very professional and approachable, and certainly had the skills we required. URM’s consultant provided us with details of the work they had completed before & we felt confident to pursue the work with them. We were on a tight deadline for court and URM were confident that they could provide the services we required in a timely manner. The logistics of sending a large amount of confidential documents were easy to navigate and straightforward. We were unable to very accurately gauge how much work was required, however URM’s Team supported us with this and maintained regular contact regarding their progress and addressed any concerns they had. When we needed to contact them, they were prompt with their responses. The work did take longer that envisaged, however that was due to the amount of work that we, as clients, were unable to accurately identify would be required. We did, however, meet the deadline for court. I would certainly use the services of URM again & if possible would work with same team. The services are not cheap, however redacting sensitive information is a skilled task and, therefore, having a professional complete this work is priceless.
Metropolitan District Council

The gap analysis will cover all aspects of data protection compliance, including:

  • Adherence to data protection principles
  • Delivery of data subject rights
  • Privacy by design, risk assessment and data protection impact assessment processes
  • The lawful basis for processing and the management of consent
  • The record of processing activities
  • Third-party processing of data
  • Data retention and deletion
  • Data security measures
  • Breach procedures
  • Record keeping practices to demonstrate compliance.

If you are looking to reset or reinforce your data protection compliance you will find this service invaluable, and it can also be used as part of an audit or compliance monitoring regime.

Organisations have found a gap analysis to be a useful tool to provide a check on current compliance, but also when they are looking to improve their data protection position or when considering new business ventures.  As URM operates with clients worldwide, a gap analysis can be used to consider compliance before an organisation moves into new international markets.

We cannot thank URM enough for their help in ensuring our business is GDPR compliant. Both the gap analysis conducted and the in-depth assistance with the ROPA were made much easier and understandable with URM’s help. I would like to give particular thanks to URM's Consultant for providing us with the best guidance and making a famously complex topic comprehensive, and to our Account Manager for helping make sure all our needs were covered.
Energy solutions provider

Get in touch

Please note, we can only process business email addresses.

Why URM?

Track record

URM’s DP and GDPR consultants have extensive ‘real world’ experience as both practitioners and subject matter experts working at a senior level within a range of industries and public bodies as well as in their data protection consulting roles advising organisations on best practice.  With a 19-year track record assisting organisations to comply with legislation such as the Data Protection Act, the GDPR and local country-specific legislation, URM has earned a reputation for adopting a pragmatic and business appropriate approach.

Flexible service offerings

A key differentiator between URM and other data protection service providers is our flexible service offerings.  Our service can be customised to your precise requirements, in terms of the type of support you require and the frequency of site days (remote or on site) etc. Equally, with our remediation support, URM can assist you address any gaps identified and achieve full GDPR compliance. We can also help you maintain that compliance with ongoing GDPR auditing services and assist with processes such as data subject access requests as a regular service or to help you reduce your backlogs.

Knowledge transfer

URM prides itself on its knowledge transfer philosophy and training expertise which helps to ensure that you not only understand what the principles and requirements of the GDPR are but how to best meet them.

I have never experienced such a smooth, stress-free process in relation to a SAR. The consultants’ service, communication, etc., has been brilliant. It was an absolute pleasure working with them both.
Housing association
Find out more
Information Security FAQ
Thank you to the URM DP consultant for continuously making our days and plans more manageable. We value his commitment, his patience and his going beyond of what is expected over and over again. We would also like to commend his contagious passion for privacy and thank him and the URM Team for all they do.
US-based university
URM regularly holds FREE webinars on GDPR
Find out more
related BLog
Governance, Risk Management and Compliance
|
Data Protection
|
GDPR

Sharing Personal Data With the Police

Published on
20/3/2025

URM’s blog breaks down the key data protection aspects to consider when sharing personal data with the police to ensure GDPR & Data Protection Act compliance.

Read more
Thumbnail of the Blog Illustration
Data Protection
Published on
6/3/2025
Are you Processing Special Category Personal Data Without Knowing It?

URM’s blog breaks down the GDPR requirements around special category personal data and how organisations can avoid processing this data inadvertently.

Read more
Thumbnail of the Blog Illustration
Data Protection
Published on
26/2/2025
Apple Removes Advanced Data Protection Tool from UK

URM’s blog explores Apple’s removal of its ADP tool following a dispute with the UK government & the ongoing struggle between privacy and law enforcement.

Read more
Thumbnail of the Blog Illustration
Data Protection
Published on
5/2/2025
Analysis of Fines Imposed by the Information Commissioner’s Office in 2024

URM’s blog breaks down the fines issued by the ICO in 2024 for data protection breaches, highlighting emerging trends in their approach to enforcing compliance.

Read more
"
We cannot thank URM enough for their help in ensuring our business is GDPR compliant. Both the gap analysis conducted and the in-depth assistance with the ROPA were made much easier and understandable with URM’s help. I would like to give particular thanks to URM's Consultant for providing us with the best guidance and making a famously complex topic comprehensive, and to our Account Manager for helping make sure all our needs were covered.
Energy solutions provider
contact US

Let us help you

Let us help you in your compliance journey by completing the form and letting us know how we can best support you.