• Data Privacy Experts Providing Complete GDPR Article 27 Services

    We are experienced IAPP certified professionals working with international organizations to operationalize Article 27 of the GDPR
    Read More

We Are The Best Choice For:


Established in the UK, Lionheart Squared provides 24/7 Representative Services to organisations that need to:

Offer goods or services to UK-based individuals
Monitor the behaviours of individuals within the UK

For Organisations Outside The UK

To Learn about designating an experienced UK Representative to comply with your business activities in the UK

If you would like to discuss what we can do for you then give us a call

+44 753 414 7975

Our Services

Traditional data protection solutions.
Interim DPO
Schedule Interim DPO coverage during transition periods or for your DPO’s planned absences
Maturity Assessment
Get an independent view of your organisation’s privacy compliance maturity level
Training & Awareness
Get help developing custom data privacy training for all your staff and customer-facing support services
Article 27
Our Experienced Representatives can assist Organisations located outside the UK
Article 30
Get help creating your obligatory data controller and processor ‘Records of Processing Activities’ relating to personal data of UK individuals
Get help with conducting Data Protection Impact Assessments (DPIA) and Legitimate Interests Assessments (LIA) to meet fundamental rights of UK individuals

How is a GDPR Representative Designated

GDPR Representatives are designated in writing.

We enter into a written agreement that outlines the practical aspects of the relationship, including:

  • Naming the person to serve as client’s GDPR Art. 27 Representative
  • Indicating which languages will apply
  • Agreeing on responses the GDPR Art. 27 Representative is permitted to communicate on client’s behalf to data subjects and supervisory authorities
  • Providing the GDPR Art. 27 Representative’s contact details to facilitate timely communications with UK  data subjects and supervisory authorities
  • Permitting inclusion of the GDPR Art. 27 Rep’s contact details in client’s online privacy policy, cross-border data transfer agreements
  • Coordinating client’s GDPR Article 30 ‘Records of Processing Activities’ in response to requests from UK supervisory authorities
  • Cooperating with UK supervisory authorities, client’s legal counsel and related parties when responding to official letters or notices

Our Experienced Representatives can assist Organisations located outside the UK to:

  • Comply with their obligations to nominate GDPR Representatives
  • Use their brand’s voice when communicating with UK based customers
  • Preserve their brand’s reputation with UK data protection authorities
  • Rely on knowledgeable data privacy professionals
  • Enhance compliance with their existing GDPR programmes
  • Leverage their existing cyber security and breach response capabilities
  • Supplement their cross border data transfer safeguard commitments
  • Disclose the name and contact details of your GDPR Representative in your privacy policies
  • Benefit from the convenience of the English language
  • Interact with a globally respected Information Commissionser’s Office with expertise in handling complex issues
  • Connect with a global network of trusted specialists in data protection and privacy.