Search Ocorian

Data Protection Services

Ocorian can help implement clear and practical frameworks to help identify and manage data-related risk.

Safeguard your client data

Businesses are increasingly reliant on valuable and high-quality data.

Protecting both internal and client data is the cornerstone of an efficient, proactive and compliant organisation.

Since the introduction of the General Data Protection Regulations (GDPR) in 2018, Ocorian’s compliance specialist subsidiary, Newgate Compliance, have been assisting clients globally with implementing clear and practical frameworks to help identify and manage risks to data protection.

Our wide experience across compliance, financial crime, risk monitoring and technology make us the ideal data protection services partner – we understand not only the internal workings of firms in this space, but also the inherent and emerging risks in the sector itself.

How we help

Accessible Slider title

  • Identify standing risks

    A Data Protection Impact Assessment (DPIA) is a process to help you identify and minimise the data protection risks of a project. You must conduct a DPIA for projects that are likely to result in a high risk to individuals’ data. We can assist.

  • Operate with full confidence

    Having assessed your data protection systems, policies and processes, we can work on improving the areas in need of attention.

  • Meet industry standards, fast

    We assist with the registration and reporting to the relevant Data Protection Commissioners. This includes drafting and oversight of GDPR manuals, EU model clause agreements, safe harbour arrangements, privacy notices and GDPR assistance.

  • Maintain best practice

    The rules governing data management and handling can be complex and may require clients to dispose of older data. Our experts can quickly identify where you may be keeping data beyond the legal limit.

  • Flexible and cost-effective pricing

    We understand that each business will have unique needs, so our flexible pricing model scales up or down to meet your requirements.

Why Ocorian?

  • Expertise in data protection

    We can help you draft a data protection policy, drawing on expertise from Newgate and across the Ocorian Group.

    Expertise in data protection
  • A client-centred approach

    We understand that while data protection regulations apply across the board, each organisation has unique risks and needs. We go the extra mile to understand your specific needs.

    A client-centred approach
  • Timely, ongoing reporting

    Regulators are increasingly focused on how firms are maintaining their data resources. We work closely with you to demonstrate your continued commitment to compliance through reporting.

    Timely, ongoing reporting

Data protection services

We will register and report to the relevant Data Protection Commissioner.

We provide drafting and oversight of

  • GDPR Manuals (Jersey)
  • EU Model Clause Agreements
  • Safe Harbour Arrangements 
  • Privacy Notices
  • GDPR assistance.                                

We conduct data protection impact assessments (DPIA), data risk assessments and legitimate interest assessments around your firm’s data processing.

We undertake a mapping process to ascertain what personal data you hold, why you hold it, where and how you hold it, how the data is accessed and who can access the data.

We assist with the development of an efficient monitoring programme to ensure compliance with data protection.  In addition, undertaking periodic gap analysis reviews to ensure you remain compliant.

We conduct annual independent data audits for your firms and its counterparties.

We assist with the implementation or review of appropriate technical and organisational measures to ensure compliance.

We provide staff training around data protection, cyber security and fraud.

We help to identify, assess and mitigate privacy risks in relation to data processing activity, particularly relevant prior to the introduction of new processes, systems or technology. 

Data protection requires transparency and the provision of accessible information to individuals about how their personal data is being used. We can help you to write a privacy notice to provide this information.

The DPO must have the freedom to act independently or in an independent manner. We can provide you with an outsourced DPO to develop, coordinate and manage your data protection requirements.

We advise entities of their obligations under the Bermuda or Cayman Islands data protection regime including preparing or reviewing privacy notices/policies.

What you say

What you say

  • "Newgate were able to prepare our application very quickly and assisted us in all correspondance with the FCA. I truly believe that without Newgate the process would have taken a lot longer."

    Broking firm based in the City of London

    Managing Director

Let’s talk

Contact us and a member of our team will be in touch.