You need to respond appropriately and quickly

The Irish Data Protection Commission (DPC) is responsible for monitoring the application of the GDPR and protecting the data protection rights of individuals.

You may receive a letter from the DPC for a variety of reasons. For example:

Complaint from an individual:

An individual may have complained to the DPC about you.

The DPC has extensive powers to investigate a complaint.

Proactive monitoring:

The DPC does not need to wait for a complaint.

It can proactively seek evidence of your compliance with GDPR.

Themed audit:

You may also be selected by the DPC to be audited as part of a themed audit.

If you have received correspondence from the DPC, do not ignore it. Failure to engage could prove costly.

Are you unsure?

If you are unsure about how to handle correspondence from the Data Protection Commission, I can help.

Step 1: Contact me

Contact me using the form below.

Provide some basic information about the situation. I don’t need too much detail.

Give me your direct contact number and your email address. I will respond as soon as possible, usually within 24 hours.

Step 2: Free initial call

If I think I can help you, we will arrange a quick (no more than 20-30 min) phone conversation to work through the situation. I will give you some pointers to help you.

We can then decide if you need further help from me. You’re under no obligation.

Step 3: After our call

If you don’t want further help, there is no step 3. You’re under no obligation to engage me further.

If you do want my assistance and I think I can help, we can agree a scope and a cost for my involvement.

Rest assured – Whatever we discuss will remain confidential.

Step 1: Contact me

Privacy: Breaching your trust would destroy my business. I will only use the personal data (and the details of your situation) that you enter above for the purposes of our call. Your personal data will not be passed on to anyone else. You can read more in my privacy policy.