🇪🇺 GDPR (EU & UK)

GDPR — GDPR Compliance & Certification

GDPR compliance assessment and ISO 27701 certification in Portugal. Gap analysis, DPO advisory, documentation, formal certificate. Avoid fines up to €20M. Free quote.

Request a quote → ✉ info@bcert.org
Key benefits

GDPR — key benefits

Internationally recognised in 100+ countries via IAF MLA-registered partners

Required by EU, UK and US government procurement

Supports NIS2, DORA and GDPR compliance frameworks

Expert bilingual team (EN/PT) with proprietary BALTUM tools

Competitive, predictable pricing with fixed-milestone project plan

IAF-registered certificates

All GDPR certificates issued via BALTUM's partner network are registered in the IAF MLA (International Accreditation Forum Multilateral Recognition Arrangement) — recognised by accreditation bodies, regulators, and enterprise procurement in 100+ countries.

Our 4-step process

How BALTUM delivers certification

01

Scoping & gap analysis

Boundary definition, current-state assessment, and tailored project roadmap with fixed milestones.

02

Documentation & controls

Policy and procedure development, evidence framework mapped to the standard's control set.

03

Stage 1 & Stage 2 audit

Document review then operational audit, findings report, and formal nonconformity register.

04

Certification & surveillance

Remediation support, certificate issuance via IAF-registered partner, and surveillance planning.

Frequently asked questions

Common questions about GDPR

Does GDPR apply to companies in Portugal?+
Yes. GDPR applies to all EU-established organisations and globally to any organisation processing personal data of EU residents. Non-compliance risks fines up to €20M or 4% of global annual turnover.
What formal GDPR certification is available?+
ISO/IEC 27701 is the most recognised formal GDPR certification route, explicitly referenced in GDPR Article 42. BALTUM delivers ISO 27701 programmes with full GDPR mapping.
What is a DPO?+
A Data Protection Officer (DPO) is required under GDPR for public authorities, organisations conducting large-scale systematic monitoring, and those processing special category data. BALTUM provides DPO advisory services.
🇪🇺

Who needs it?

Yes. GDPR applies to all EU-established organisations and globally to any organisation processing personal data of EU residents. Non-compliance risks fines up to €20M or 4% of global annual turnover.

💡

Expert team. Competitive pricing.

Our team includes qualified lead auditors fluent in English and Portuguese with expertise in information security, AI governance, and privacy. Proprietary BALTUM tools streamline certification — making it cost-competitive and predictable.

📋 Request a free quote

Related standards
🇨🇦
PIPEDAPIPEDA Compliance
🇦🇪
UAE PDPLUAE Data Protection Law
🇧🇷
LGPDLGPD Compliance — Brazil
DORADORA Compliance