We have the in-house expertise in data protection and direct marketing compliance to assist companies and organisations to ensure compliance with the General Data Protection Regulation (GDPR) and the Privacy and Electronic Communications Regulations (PECR).


The GDPR came into force in the UK on 25th May 2018. The GDPR’s objective is to give individuals more control over the use of their personal information. The GDPR achieves this objective by introducing rules to ensure greater transparency when collecting individual’s personal information, giving individuals more rights in relation to their personal information and requiring organisations that collect and use personal information to maintain an audit trail of their data processing activities.

Download our FREE” GDPR Guidance booklet for Consumer Credit Firms   Click Here

Our GDPR Services


  • GDPR Ongoing Compliance Support – Unlimited telephone support in relation to GDPR.
  • GDPR Privacy Policy – A template privacy policy that contains the updated GDPR prescribed terms.
  • Data Protection Schedule (Contract) A data protection schedule to add to contracts with third parties.
  • GDPR Adequacy Assessment – A remote review of firms’ data protection policies and procedures and an update to them to meet GDPR requirements.
  • GDPR Audit – A remote adequacy assessment plus an onsite audit of a firm’s data protection practices.
  • GDPR Premium Audit – A remote adequacy assessment, an onsite audit of a firm’s data protection practices plus provision of a GDPR compliance manual.
  • GDPR Compliance Manual – A GDPR compliance manual which contains GDPR compliant data protection policies and associated templates such as a breach recording form and information asset register template.
  • Reviewing and updating your data protection policies.
  • E-learning Course – A bespoke GDPR e-learning course designed for firms’ management teams and decision makers.
  • GDPR Bespoke Training – We are able to provide firms with bespoke GDPR training. Training modules will include coverage of lawful bases, data protection principles, data processor relationships and breach reporting. Training can be delivered at your business premises, at your chosen location or in one of the training rooms at our office premises.
  • GDPR Training Material – We are able to provide firms with training material in the form of a PowerPoint and supporting staff assessment to assist with the provision of in-house GDPR training.


Understanding Your Obligation

Who does the GDPR apply to?

GDPR applies to all organisations that collect, hold or use personal information. This includes customers’ personal information as well as staff personal information.

How does GDPR affect you?

You will need to update your privacy policy to include the additional information prescribed under GDPR. The purpose of the GDPR privacy policy is to better inform individuals about why you collect their personal information and how you will use it at the offset so that they can make an informed decision to provide their personal information.

You need to conduct an assessment of what types of personal information you collect, how you collect them, what you use them for, who you share them with, how long you keep them and how you keep them safe.

Such an assessment will inform you about any risk areas in your practices and give you a focus in implementing controls to manage those risks.

What’s the worst that can happen if you are not GDPR compliant?

The GDPR gives the Information Commissioner’s Office (ICO) the power to issue organisations with fines of up to €10 million or 2% of global turnover for certain categories of breaches and up to €20 million or 4% of global turnover for other categories of breaches.


If you require any information in regards to GDPR then please contact us below.

Here is what some of our customers had to say

  • Jourdain has been exceptional in providing an efficient and thorough support service throughout our GDPR journey to date. He offers clear advice and has been only too happy to answer queries on any scale. We have been very appreciative of his prompt response on each occasion and find him a very beneficial addition to the team at CCC. We look forward to working Jourdain in the future.

    Becky Ashley-Still
    Ethos Asset Finance Limited
  • Consumer Credit Compliance did a fast and extremely efficient job in updating all our documentation and processes ahead of GDPR. It was accurate, and on time – first time! This service is truly great value for money

    Gary Miller-Cheevers
    Tallaght Financial Limited
  • It was a pleasure to interact with Jourdain. He is a professional that is willing to share his knowledge, making himself available even if it is after-hours to ensure you receive an answer to a question today and not have to wait for tomorrow. Jourdain’s understanding of the GDPR regulation is impressive. I highly recommend seeking out Jourdain through the CCC office for help in ensuring your firm is compliant with GDPR. I’m sure you’ll find Jourdain’s guidance of great help in grasping GDPR requirements.

    Velia Murillo
    Vice President of Compliance & Human Resources at Zero Parallel LLC
  • Are you still confused on GDPR? Do you want someone to tell you what you can do rather than freaking you out? Well I can sincerely recommend Jourdain as a professional who offers a clear, no-nonsense sort of way through the new GDPR regulations. I was impressed by his knowledge, its application to our process, and the quick response to the documents I sent to him for review. Great job and thank you! You made something that everyone had whipped up in to a frenzy, a logical and pain-free process.

    Claire Sandbrook
    CEO and Founder at Shergroup USA LLC
  • We have worked with Consumer Credit Compliance company for sometime and enjoyed a very
    professional and client friendly service. We were therefore very relieve to learn that they were now providing a GDPR consultancy
    and support service which we gladly signed up for. Jourdain Tambo was a fountain of knowledge and his expertise
    and friendly guidance was absolutely invaluable in guiding us through the whole process of GDPR compliance, we are
    now not only confident we have put all the necessary procedures in place, but also the consultancy service is there for us
    to provide ongoing advice when necessary

    Terry Hunt
    Clarity Copies (High Wycombe) Ltd
  • We approached CCC with an intial enquiry about GDPR, which resulted in a full Gap analysis and breakdown of our individual requirements.
    “We were impressed from start to finish with Jourdains approach and the outcomes of the analysis and the support to implement the improvementns into our business.

    Richard Thornton
    The Consultancy


Windsor House, Cornwall Road, Harrogate, HG1 2PW

01423 522 599