GDPR & Privacy Compliance Guides

Need help navigating data protection laws? Our step-by-step guides break down the essentials, from consent and cookies to SARs and data roles, so you can stay compliant, protect your users, and simplify your operations.

What’s Required to Store Data Under GDPR

If you collect and store personal data, even just names and emails, GDPR requires you to do it responsibly. This guide breaks down the key rules for lawful data storage, including legal bases, retention limits, security measures, and what to include in your Privacy Policy. Whether you’re handling simple contact forms or file uploads, this is what you need to know.

Do I Need an Opt-out for GDPR?

GDPR doesn’t always require an opt-out, but when it comes to marketing or non-essential communications, it’s a must. This guide explains when you need to give users the option to unsubscribe or object to processing, and how to stay compliant without overcomplicating your forms.

Cookie Consent

Using cookies on your web form. This guide explains how to set up GDPR and PECR-compliant cookie consent, so users stay informed and you stay on the right side of the law.

GDPR Compliance for Web Forms: What You Need to Know

If your website collects personal data through forms, UK GDPR applies. From consent checkboxes to data access rights, your forms must follow strict rules to stay compliant — and to build trust with users.

This guide breaks down exactly what’s required and how to implement it in a practical, user-friendly way.

What is a Subject Access Request (SAR)

Under UK GDPR, individuals have the right to know what personal data your organisation holds about them. A Subject Access Request (SAR) is the legal way they can ask for that information.

This guide explains what a SAR is, what the law requires, and how your business should respond.

Who’s the Data Controller, Who’s the Data Processor and What’s the Role of the Data Protection Officer (DPO)?

Not sure who’s responsible for what under GDPR?

This quick guide explains the roles of data controller, data processor, and Data Protection Officer (DPO), and why it matters for compliance.

Does tracking require consent under GDPR?

If your website uses cookies to track visitors or collect personal data, you must get clear consent and give users control.

This guide explains how to stay compliant with UK GDPR and PECR rules on tracking cookie use.

GDPR Consent Capture (Checkbox)

Under UK GDPR, consent must be clear, specific, and freely given — no pre-ticked boxes or hidden terms.

This guide shows you how to capture valid consent through your web forms and stay compliant with data protection law.