Our Self-Assessment Tools can assist in ensuring that the functions within your organisations are compliant in line with the General Data Protection Regulation (GDPR). The law requires you to demonstrate compliance and we have designed our free tools to mirror the ones the regulator would use.

The tools and subsequent reports can be used by your organisation to target your resources to key areas of compliance and data security.

The tools which we provide are an effective way of collating information on key systems and highlighting areas for improvement or where there may be issues within your organisation. The initial discovery comprises of sectioning key areas into a number of subsections – those which can be audited by the ICO. These sections will then be scored by you on the level of compliance currently achieved. From this, you are then provided with the heat maps and charts that indicate the more urgent areas, but still list areas for improvement which are less high risk.

The heat maps are beneficial in determining areas for focus and areas which are compliant. Dependent upon any gaps your organisation has, Data Privacy Advisory Service can provide further services around solutions and remediation plans where policies and procedures may be absent.


Self-Assessment Scope

The scope of the assessment will be structured into sections which the ICO have published on their site. These include: 

  • Accountability and governance

  • Individual’s rights

  • Lawfulness, fairness and transparency

  • Data security, international transfers and breaches

Within each of these sections, we will pose several questions to your organisation including questions about the processes, capabilities, policies and systems that you have in place. The aim of the audit is to fully encompass all areas within an organisation and identify gaps. A full scope is necessary in order to provide an incremental approach towards complete compliance in terms of data protection. 

Self-Assessment Approach 

Download our self-assessment spreadsheet

Complete our downloadable self-assessment spreadsheet to determine the current level of compliance within your organisation and highlight immediate gaps, as well as providing you with an overall picture of your organisational compliance.


Complete our online compliance questionnaire

Answer our self-audit questionnaire. Once submitted we will send you a report of your results by the end of the next business day.


Once the self-assessment audit or online questionnaire is complete, an in-depth report; highlighting all areas raised as a risk- will be provided, either within the downloaded self-assessment or sent to you by the end of the next business day after your results are submitted.

This will additionally be translated into graphs and charts to highlight areas of higher risk and aid in prioritisation moving forward – each section will be scored by the weightings of the questions within the auditing tool. Dependent upon the risks found, DPAS can provide further support and services in moving towards 100% compliance against the report produced.

The graphs and charts within the audit tool will allow a visual representation of your status of compliance as steps are put in place. For example, areas which were previously red and require ‘major work’ may turn to green ‘compliant’ if the suggestions DPAS make are actioned. 


Moving towards compliance

Using the findings of your report. DPAS will be able to tailor our services and advice to your organisation and provide you with actionable steps to move toward compliance.

Why DPAS for your organisation's audit?

With close to 20 years of data protection experience, we formed the Data Privacy Advisory Service to provide organisations with a pragmatic approach to data protection. We are not your average compliance company, driven simply by numbers and red-tape. We care about the organisations we work with, and the data that they hold on customers and employees. It is important to us that the services and products we provide are useful, accurate and clear.


Following our work with a number of clients within different sectors, we are able to provide a strong understanding of best practices alongside the ICO’s guidelines. The tools which we have created are an efficient and effective way of moving towards compliance pragmatically.


We understand that organisations don’t always have a significant amount of time or resources to ensure compliance across departments. The timescale of our audit is 2 days in total, if you choose to fill in our online compliance questionnaire. After the completion of the compliance audit, a high-level report of your current state of compliance will be produced.

An audit may highlight several aspects where your organisation is not currently compliant in regard to handing personal data. Data protection issues and risks can be identified through the series of questions. These areas can then be prioritised dependent upon the risks. This allows for the audit report to be specifically tailored to your organisation.

In addition to highlighting areas for improvement, an audit can raise awareness across an organisation of the change in culture that is required for compliance to the GDPR and general information and cyber security. The knowledge gained from an audit can then be transferred across departments.


Contact us and find out how our Data Protection services can benefit your company.Before filling in the form please ensure you have read and understood our privacy notice.


10 Oaktree Place, Marsh Barton, Exeter,

Devon EX2 8WA


01392 914019

  • Black LinkedIn Icon
  • Black Facebook Icon
  • Black Twitter Icon

©2019 Data Privacy Advisory Service Ltd. ALL RIGHTS RESERVED


01392 914019

0203 3013384


 Privacy Notice

Please note all information on this website is for your help and guidance. It should not be regarded as an authoritative

or definitive statement of the law.