Services · Assessment

GDPR assessment: see where you actually stand

A structured gap analysis of how your business handles personal data — from your website and tracking pixels to routines and documentation. You get a risk-ranked report of 10–20 pages and a concrete 90-day plan, not a list of legal clauses. For businesses that want to clean up before anyone else asks them to.

Assessment

Price

NOK 25,000–60,000

excl. VAT · website and pixel check NOK 8,000–15,000

All prices excl. VAT.


What’s included

  • Mapping of processing activities, systems and data flows — what you have, where it lives, who has access
  • A technical check of your website: cookies, tracking pixels and consent
  • A review of your documentation: records of processing, privacy policy, data processing agreements
  • A risk-ranked gap report of 10–20 pages — every finding with a severity and a recommended action
  • A 90-day plan with priorities, owners and estimated effort
  • Templates you can keep using: records of processing, breach routine and data processing agreement
  • A review meeting where we go through the report together — in plain language, no legalese

How we work

  1. 01

    Free intro call

    A 30-minute conversation about your business, where we define the scope. You get a fixed price before anything starts.

  2. 02

    Mapping

    An interview with whoever knows the systems, a technical check of the website and pixels, and a review of existing documentation.

  3. 03

    Analysis and report

    We rank the findings by risk and write the report so both the manager and the person doing the work understand it.

  4. 04

    Review and plan

    We present the report, answer questions and hand over the 90-day plan and the templates. After that it’s up to you — no lock-in.


A fit for you if

  • have never done a proper GDPR review and want to know where you stand
  • have tracking pixels or analytics on your website and aren’t sure the setup holds up
  • get privacy questions from customers or tenders and need documentation that answers them
  • want a prioritized plan — not an 80-page legal memo

Common questions

What does a GDPR assessment cost?

A full gap analysis costs NOK 25,000–60,000 excl. VAT, depending on the number of systems and processing activities. Want to start smaller? A website and pixel check costs NOK 8,000–15,000 excl. VAT. You get a fixed price after a short call — before anything starts.

How long does it take?

Usually 2–4 weeks from kickoff to delivered report, depending on scope and how quickly we get access to people and systems. The pixel check is faster — normally within a week.

Are we “GDPR certified” after this?

No — no one can certify GDPR compliance, and you should be skeptical of anyone who promises it. This is an assessment and gap analysis with a clearly defined scope. The report shows where you stand and what to do; legal questions are referred to a lawyer.

Is this relevant for a small business?

Yes. Datatilsynet — the Norwegian data protection authority — fines small and medium-sized businesses too, and tracking pixels on websites are a real enforcement topic: the municipality of Kristiansand was fined NOK 250,000 for pixels on one of its websites. The point isn’t fear — it’s that the cleanup is manageable once you know where to start.

What do you need from us along the way?

One contact person who knows the systems, access to the website and existing documentation, and a 1–2 hour interview. We do the rest.

What happens after the 90-day plan?

You can implement the actions yourself using the templates, or get help from us with individual items — for example cookie setup or routines via the GDPR starter package. No lock-in, no automatic follow-up you didn’t ask for.



Not sure where you stand? Let’s find out.