GDPR Governor - GDPR compliance software logo with tag line

Easy GDPR Compliance with 80+ Compehensive Document Templates

Created by our team of certified DPOs (Data Protection Officers), GDPR Governor includes all of the pre-written, templated and customisable policies, processes, procedures and checklists you need to meet the requirements of the General Data Protection Regulation.  But this is not just a stack of templates…

Don't want to wait?

image of GDPR Governor compliance sofware GDPR Status dashboard


Top-Down View

Update senior management with ease using GDPR Governor’s clean dashboard views. Know and communicate your current compliance position.


Team Management & Task Allocation​

Effortlessly allocate tasks and keep track of their delivery through the project task dashboard. 

image of GDPR Governor compliance sofware policies dashboard


Comprehensive Document Library

Every templated policy, process, procedure and checklist you need for your journey to GDPR compliance. 


Manage Remotely

Hosted on secure servers in the UK, access GDPR Governor from wherever you are working.  

GDPR Governor compliance software shown on laptop screen

A single home and a single view for your journey to GDPR compliance


Most frequent questions and answers

GDPR Governor is suitable for organisations of any shape and size, in any sector. Once customised, our comprehensive document library will ensure full coverage of the regulation.

Not at all – GDPR Governor is hosted on secure servers in the UK. You can access it through any internet enabled device whether you are working from home or in the office. You will receive a link to follow and set up your access password – As simple as that.

Absolutely. The templates are clearly marked where you need to input information specific to your organisation. Through this process you achieve documentation that uniquely and accurately reflects your business. It is not an inadequate one-size-fits-all approach.

GDPR Governor is routinely updated as appropriate to reflect any changes in regulation, at no extra cost.

Many of our clients using GDPR Governor ask for additional Data Protection consultancy. If you are interested in this, take a look at our consultancy services or get in touch to set up a call about how we can help.

Steps to GDPR Compliance

The Information Commissioner’s Office (ICO) has defined 12 steps to compliance:

1. Awareness

You should make sure that decision makers and key people in your organisation are aware that the law is changing to the GDPR. They need to appreciate the impact this is likely to have.

2. Information you hold

You should document what personal data you hold, where it came from and who you share it with. You may need to organise an information audit.

3. Communicating privacy information

You should review your current privacy notices and put a plan in place for making any necessary changes in time for GDPR implementation.

4. Individuals’ rights

You should check your procedures to ensure they cover all the rights individuals have, including how you would delete personal data or provide data electronically and in a commonly used format.

5. Data Subject Access Requests (DSARs)

You should update your procedures and plan how you will handle Subject Access requests within the new timescales and provide any additional information. You may also be interested in our DSAR as a Service option.

6. Lawful basis for processing personal data

You should identify the lawful basis for your processing activity in the GDPR, document it and update your privacy notice to explain it.

Image of sight scope over a searched for document

7. Consent

You should review how you seek, record and manage consent and whether you need to make any changes. Refresh existing consents now if they don’t meet the GDPR standard.

8. Children

You should start thinking now about whether you need to put systems in place to verify individuals’ ages and to obtain parental or guardian consent for any data processing activity

9. Data breaches

You should make sure you have the right procedures in place to detect, report and investigate a personal data breach.

10. Data Protection by Design and Data Protection Impact Assessments

You should familiarise yourself now with the ICO’s code of practice on Privacy Impact Assessments as well as the latest guidance from the Article 29 Working Party, and work out how and when to implement them in your organisation.

11. Data Protection Officers

You should designate someone to take responsibility for data protection compliance and assess where this role will sit within your organisation’s structure and governance arrangements. You should consider whether you are required to formally designate a Data Protection Officer.

12. International

If your organisation operates in more than one EU member state (ie you carry out cross-border processing), you should determine your lead data protection supervisory authority. Article 29 Working Party guidelines will help you do this. You also need to consider your post-Brexit data protection position. We can help with this.

Want to have a chat about how we can help - Get in touch

Fill in the form below and we’ll get back to you as soon as possible

JSIG is committed to protecting and respecting your privacy. We will also occasionally contact you about products, services and content that we feel are both relevant and of interest to you. You can unsubscribe from these communications at any time. For more information please see our privacy policy.