transfer risk assessment support service

Looking for advice?


Ensure Compliance with our Data Transfer Risk Assessment Support

Does your organisation transfer personal data internationally? Are you struggling to ensure compliance with all the changes to legislation? That’s where we can help. We understand that not every organisation has the capability, capacity, or resources to tackle legal issues. DPAS provides bespoke, high quality and cost-effective services related to international data transfers. Our team is here to do the work for you, allowing you to focus on other business activities.

Outsourcing your compliance issues to us will help ensure your organisation is appropriately tackling legal issues, minimising risk, and improve operational efficiency. Our services include developing Transfer Risk Assessments (TRAs), Standard Contractual Clauses (SCCs), UK Addendums, supplier assurance assessments, and International Data Transfer Agreements (IDTAs) for your organisation. We can also provide supplier assessments, where we engage with processors and/or third parties to assess their processing activities and security measures, ensuring they comply with not only the law, but the standards your organisation upholds. 

Your work is handled by our experienced and legally qualified team of experts who have hands-on experience dealing with the complications when transferring personal data internationally. We will work closely with you to understand your specific needs and help you achieve compliance.

Our prices start from as little as £1000. Get in touch with us today to see if our transfer risk assessment support is the right fit for your organisation.


RBBC required support with international data transfer compliance, which included completing a number of Transfer Risk Assessments for various countries and supporting them with implementing Standard Contractual Clauses and comprehensive Data Processing Agreements. 


DPAS provides us with excellent, responsive advice when we need to supplement our in-house resource – a great, reliable service when we need it most.

carys jones

reigate & banstead borough council


With our team’s knowledge and expertise, we are able to deliver our services to an agreed timeline, at a fraction of the cost. This approach will allow you to save both time and money.

Outsourcing the management of international data transfers allows you to focus on your core business activities, whilst having the peace of mind this is being managed by the experts. This can help improve overall efficiency and productivity within your organisation.

You will gain access to a team of experts who have specialised knowledge and experience in data protection, with particular regard to international data transfers. This can help ensure that your organisation is complying with all the relevant laws and best practice guidelines regarding international transfers.

Regulations are constantly changing and evolving. When you use our services, you can rely on our expertise and stay up to date with the latest legislation changes, and ensure ongoing, long-term compliance.

You only need to pay for the level of service you require. There are no ongoing recurring fees, and you can pick and choose when you use our services. We are here whenever you need us.

By outsourcing services, you are assured that the management of your international data transfers will not be subject to internal conflicting decision-making, and will balance the rights of the data subject with the business objectives in an independent manner.

What's Included?

A dedicated specialist to deal with your organisation’s requirements.

Initial kick-off meeting to understand your needs.

A DPAS project manager to support you through the project.

Advice on International Data Transfers.

The provision, drafting and delivery of Transfer Impact Assessments (TRA) for Third Countries. This includes an assessment of the risks associated with the proposed transfer and guidance on the next steps required.

Assistance when negotiating contracts with suppliers regarding the transfer of data, where required.

The development, delivery, and monitoring of processor adherence to the information security standards laid out in the contract arrangements within the International Data Transfer Agreement (IDTA), UK Data Impact Assessments, and Standard Contractual Clauses (SCCs).

Monthly updates on ICO guidance. Bi-weekly data protection bulletins.

Access via our online portal to a full suite of free templates, tools, policies, and more.

Meet Our Team Of DPO's & CONSULTANTS

Nigel Gooding

Chief Data Protection Officer

Natalie Bennett

Head of Data Protection Consultancy

Charlotte Bolt

Senior Data Protection Consultant

Lauren Durham-Hutchins

Data Privacy Officer

Gary O'Reilly

Legal Counsel Consultant

WE WORK WITH FTSE 100s Multi-National Organisations Schools Universities Councils Local Governments Agencies NHS Trusts GP Practices Retailers Charities Multi-Academy Trusts Housing Associations Ambulance Services Insurance Companies Sporting Associations Airports Retail Companies Hospitality Businesses




Easy to understand data privacy and information security services that are always accessable, consistenty pragmatic and continually exceeding expectations.

Keeping up to date with changes in data protection regulations, and best practices, can often be challenging for organisations. By outsourcing to an expert consultancy like us, organisations can access data protection professionals and lawyers who stay current with the latest developments, case law, and have the subject matter expertise to support your organisation.

Outsourcing allows your organisation to scale up requirements as needed, without the commitment of a full-time, or part-time, employee. We have the capacity and capability to hit the ground running and support your organisation whenever you need it, so you can focus on your core business activities — whilst we ensure that your data protection requirements are being met. 

We have a wealth of experience delivering data protection and information security projects and training, to public, private, and third sectors. We understand that each organisation faces its own challenges, and always provide tailored solutions to meet your specific requirements.

We are extremely competitive, and our work consistently exceeds our customers’ expectations. Instead of hiring and maintaining an in-house team or seeking external legal advice, we’ll work closely with you to develop a customised plan that meets your specific needs, and budget.

We work with you to identify any potential threats and take steps to mitigate them, reducing the risk of reputational damage and compliance fines. With our up-to-date knowledge on current issues facing data protection and information security we can take proactive measures to safeguard your data.