Specialist Consulting

Our Services

Advisory services across data observability, GDPR, and Swiss FADP compliance. Each engagement is scoped to your specific regulatory exposure and technical environment — not a subscription seat or a pre-packaged checklist.

4 Service disciplines
2 Regulatory frameworks (GDPR + FADP)
CH Swiss base, EU-wide reach

Data Observability

We instrument and monitor your data pipelines so you know when something is wrong — before it affects downstream systems or generates a compliance exposure.

  • Pipeline health monitoring and SLA alerting
  • Schema drift detection and change management
  • Data lineage mapping from source to report
  • Data quality metrics and anomaly detection
  • Observability stack assessment and tooling guidance
Full service details →

GDPR Compliance

We help organisations build a maintainable compliance posture under the General Data Protection Regulation — not a one-off exercise, but a functioning programme.

  • Data Protection Impact Assessments (Art. 35 DPIA)
  • Records of Processing Activities (Art. 30 ROPA)
  • Consent architecture review and design
  • Data Subject Request (DSR) workflow design
  • DPA appointment and supervisory authority engagement
Full service details →

FADP / revDSG

Switzerland's revised Federal Act on Data Protection (nDSG) has been in force since September 2023. We help CH-domiciled companies and those with Swiss operations meet both FADP and overlapping GDPR requirements.

  • FADP gap assessment against current programme
  • GDPR/FADP alignment mapping — where they converge and diverge
  • Swiss ROPA requirements and nDSG-specific documentation
  • FDPIC notification obligations and supervisory engagement
  • International data transfer rules under FADP
Full service details →

Data Governance

Upstream prevention: establishing the policies, classification frameworks, and architectural standards that prevent compliance gaps from arising in the first place.

  • Data classification and sensitivity labelling
  • Retention and disposal policy design
  • Privacy-by-design architectural reviews
  • Data catalog setup and metadata management
  • Internal data handling policy documentation
Full service details →

How We Engage

Two engagement models. The right one depends on where you are in your compliance programme — not on which generates a larger contract.

Project Engagement

Scoped Assessment + Remediation

A defined-scope engagement with agreed inputs, deliverables, and timeline. Suited to organisations addressing a specific compliance gap or working toward a regulatory milestone — an FDPIC notification obligation, a supervisor review, or a first ROPA build.

  • Scope defined in writing before engagement begins — no mid-project expansion
  • Deliverables reviewed and signed off at each phase gate
  • Typical duration: 6–16 weeks depending on scope and data complexity
  • Fixed-fee or time-and-materials — agreed and documented at engagement start
Ongoing Advisory

Retained Compliance Oversight

A retained arrangement for organisations that want continuous regulatory monitoring and periodic compliance posture reviews — particularly relevant as GDPR guidance evolves and FADP implementation practice develops under the FDPIC.

  • Monthly review call with written status update and any open action items
  • Regulatory change monitoring — EDPB guidelines, FDPIC circulars, DPA enforcement decisions
  • Schema and pipeline change alerting: new personal data fields trigger a compliance review prompt
  • Minimum 3-month commitment; typically 6–12 months

Discuss your compliance situation

We review every enquiry within one business day. The follow-up is a conversation about your data landscape — not a product demonstration.

Schedule Consultation How we work →