Independent, expert data protection consultants

Bulletproof’s virtual Data Protection Officer (DPO) offers an easy way to access a wealth of data protection and privacy knowledge (including GDPR) within your business, without the expense of a full-time internal staff member. By using an outsourced DPO service, your organisation gets expertise, advice and guidance whenever you need it. A DPO can help your business cope with the pressures of data protection and under GDPR, some organisations must have one.

DPO services don’t have to cost the earth

Cost-effective expertise for businesses of all sizes

Specialist knowledge in regulatory & compliance

Specialist knowledge in regulatory & compliance

DPO especially relevant for GDPR obligations

DPO especially relevant for GDPR obligations

Help you stay focussed on your core business

Help you stay focussed on your core business


GDPR compliance & beyond

Bulletproof outsourced DPO services allow one of our experts to take over the role of Data Protection Officer in your organisation. This provides a range of benefits including:

  • Advice and guidance on GDPR compliance
  • A point of contact for data subjects and data protection authorities
  • Breach notification support
  • Help creating and maintaining a data processing register
  • Documentation development and review
  • Ad-hoc data privacy and protection support
  • Advice on DPIA requirements
  • Monthly status reports for Senior Management
  • Annual reviews, supported by on-site audit
  • Training and awareness

Find the right DPO package

Bulletproof offer three DPO packages, depending on the size of your business. The service also includes 10% off the, GDPR Gap Analysis which is a pre-requisite of the service. Delivered by certified EU GDPR Practitioner, the Gap Analysis will give a complete assessment of your current state of compliance and identify areas in need of improvement. Outsourced DPO customers also benefit from up to 10% off other Bulletproof cyber security services.

DPO as a service cost
Package Suitable for DPO time Delivery Price
Small Business Package Businesses with up to 20 employees 4 hours per month Virtual, on-site once a quarter £595 PCM
Medium Business Package Businesses with 21-200 employees 1 day per month On-site (if required) £995 PCM
Enterprise Package Businesses with over 200 employees Customised to your requirements Flexible £POA

Make privacy part of the bigger picture

Don’t stop at data protection. Bulletproof offer the full range of services for total cyber threat protection. Read more about our penetration testing and social engineering services, or why not ask us about our managed SIEM and incident response services?

  • Bulletproof are CREST approved

    CREST approved

  • Bulletproof are ISO 27001 and 9001 certified

    ISO 27001 and 9001 certified

  • Bulletproof are Tigerscheme qualified testers

    Tigerscheme qualified testers

  • Bulletproof are a PCI DSS v3.2 Level 1 service provider

    PCI DSS v3.2 Level 1
    service provider

  • Bulletproof have 24/7 on-site Security Operations Centre

    24/7 on-site Security
    Operations Centre

Frequently asked questions

Does my business need to have a data protection officer?

Businesses are only required to have a data protection officer (under GDPR) if:

  • They are a public body or authority
  • Their core activities require large scale, regular and systematic monitoring of individuals
  • Their core activities consist of large scale processing of special categories of data or relating to criminal convictions or offences

However, all organisations can benefit from having a data protection officer to handle all things data protection. Not only will they free up time for other staff members, they will also help reduce the risk posed to data subjects in the unfortunate event of a breach.

How can a virtual DPO benefit my business?

A virtual DPO can offer all the benefits of having a dedicated data protection officer without having to pay for a full-time member of staff. You can simply pay for the number of hours needed each month, which will vary depending on the size and nature of your business.

You can feel reassured that the appropriate processes and procedures are in place across the business to manage personal data, and that the relevant members or staff are made aware of their responsibilities, all at a low cost.

What does a DPO do?

A DPO manages and oversees all things data protection within a business. They ensure that the relevant management and technical processes and procedures are in place to keep personal data as safe as it can be. If needed, a DPO will arrange training sessions with relevant members of staff to ensure there is an adequate level of awareness throughout the business. They will deal with the day-to-day requests from data subjects and liaise with them and the relevant regulatory body (where necessary) following a data breach.

Get a quote today

If you’re interested in our services, get a free, no obligation quote today by filling out the form below.