GDPR Technical Audits

To get your business moving forward, you need your visitors onboard

Days since enforceable:

What is tracked is managed, have you started tracking your personal data usage. Focusses on your practical step towards achieving GDPR compliance.

Take the first steps towards GDPR compliance with your website by understanding your obligations, what are your current processes and identify gaps.

  • Document and review your website processes to produce Data Itinerary.
  • Review cookie and third party services to map data processing.
  • Identify any unneeded legacy connections and services who are not compliant.
  • Update website frontend technical changes needed to be compliant.

This is not intended as a checklist, it is actionable results to save you time before the deadline.

Advice can be extended to reviewing custom applications change plan.

Email List

Would you like to be kept informed with regular emails. We value and take precautions with your personal data and do not share emails. 


This is not legal advice, it is designed to speed up the leg work required to implement GDPR by professionals when internal staff are not yet up to speed or can not spare the time. This does not replace advice your legal council has given you.

GDPR Audit and Implementation

Audit 3rd parties and cookies

Website built right, share a list of cookies and there use, we can discover and help you communicate this.

Audit and diagram Personal Private Data flows

Frame the data journey through the website and partners in datagrams an data inventory, to show ICO audits your privacy planning.

Implement frontend changes

Good GDPR change improve business and investment. The best sites evolve to make it clear they support customers right to control data.


"An innovative problem solver and facilitator of learning!
... Tristan’s ability to understand what we required even before we knew what we wanted ourselves has helped us to develop from a mediocre offering to the best in class industry leading website. ..."

Jeremy Fielden Digital Marketing Specialist at White Clarke Group

"Tristan is a very conscientious and hard-working web developer. His professionalism combined with friendliness make his easy to approach and co-operate with, and I would be happy to work with him again."

Miia Matinolli Expert Investor Europe


GDPR topic resources

GDPR clear language inside

With the new GDPR regulations data Collectors and partners who are Processors of people's personal data need to be listed clearly in your Privacy statement and opted into collection

App Cookies, Marketing and Advertising alert popups

Under GDPR you should give new users a pop-up on the website to choose to allow cookies, and the personal tracking ones should be off by default

GDPR Personal data export requests (The right of access)

Under GDPR people you store data on can request their Personal Private Information you will need a system to export and share this

Visitor Opt-In Controls for GDPR

Clear granular opt-in controls for GDPR compliance. Remember you can no longer pre-tick boxes for terms or Opt-In, so make sure the options are short and clear.

Re-engagement campaigns for email opt-in renewal

GDPR requires that you record consent, so your email list or marketing database may need to re-engage with members to track missing consent

Removal requests (Right to be forgotten)

Make a GDPR removal request process. Removal requests come with the extra need to delete data that staff or other systems might want to use.

Separate Personal Data

Store data at rest encrypted and transmit all communication securely to be in GDPR with personal data.

Visitor Opt-In needs logging for GDPR

Log the location and time of opt-in, where recommend also store Screengrabs with your GDPR data process audits.