Show me desktop version
CALL US +44 1502 449001

  • Optimised for small and medium-sized companies
  • Costs up to 80% less than using consultants
  • Expert consultations and unlimited email support available
  • Created by Advisera, the leading website for compliance

EU GDPR & ISO 27001 Integrated Documentation Toolkit

Comply with EU GDPR and ISO 27001 simultaneously, do it yourself, and do it easily and efficiently with our Documentation Toolkit.


  • 71 document templates – all documents required by EU GDPR and ISO 27001, plus commonly used non-mandatory documents
  • Access to video tutorials
  • Unlimited email support
  • Expert review of any document
  • One hour of live one-on-one online consultations with an EU GDPR expert

997 EUR*

*Note on VAT for customers from the European Union

100% secure online billing
AES-128bit SSL safe

How does expert support work?

  1. Our EU GDPR & ISO 27001 expert will meet with you regularly – he will tell you where to start, what the next steps are, and how to resolve any issues you may face. You can meet via Skype, over the telephone, or through any other means at your convenience.
  2. Reach out to us at any time during your implementation project with unlimited email support, and have your questions answered by our experts within 24 hours.
  3. Once you complete your documents, let our experts review them – they’ll provide you with feedback and indicate what needs to be improved.


Our team includes some of the most experienced consultants, legal experts and trainers for the EU GDPR, other privacy laws and regulations, and ISO 27001 (the information security standard). In addition, we pride ourselves on the communication skills of our expert team, which helps us to establish stable and personal relationships with our clients.

Jonas Anderson
Lead EU GDPR Expert

Dejan Kosutic
Lead Information Security / ISO 27001 Expert

Andrei Hanganu
EU GDPR Expert
We used your templates to augment our documentation, and our ISO 27001 certification process went well! We have now passed, and are certified.
Joe Raschke

Toolkit Features

Toolkit Documents

Look at EVERY template in the EU GDPR & ISO 27001 Integrated Documentation Toolkit – for free! – before making a purchase

Note: Documents are available individually, or as part of the Toolkit.
  1. EU GDPR Readiness Assessment PreviewDetails & purchase
  2. Personal Data Protection Policy PreviewDetails & purchase
  3. Employee Personal Data Protection Policy PreviewDetails & purchase
  4. Privacy Notice PreviewDetails & purchase
  5. Register of Privacy Notices PreviewDetails & purchase
  6. Data Retention Policy PreviewDetails & purchase
  7. Data Retention Schedule PreviewDetails & purchase
  8. Data Protection Officer Job Description PreviewDetails & purchase
  1. Guidelines for Data Inventory and Processing Activities Mapping PreviewDetails & purchase
  2. Inventory of Processing Activities PreviewDetails & purchase
  3. Data Protection Impact Assessment Methodology PreviewDetails & purchase
  4. DPIA Register PreviewDetails & purchase
  1. Data Subject Consent Form PreviewDetails & purchase
  2. Data Subject Consent Withdrawal Form PreviewDetails & purchase
  3. Parental Consent Form PreviewDetails & purchase
  4. Parental Consent Withdrawal Form PreviewDetails & purchase
  5. Data Subject Access Request Procedure PreviewDetails & purchase
  6. Data Subject Access Request Form PreviewDetails & purchase
  7. Data Subject Disclosure Form PreviewDetails & purchase
  1. Cross Border Personal Data Transfer Procedure PreviewDetails & purchase
  2. Processor GDPR Compliance Questionnaire PreviewDetails & purchase
  3. Supplier Data Processing Agreement PreviewDetails & purchase
  1. IT Security Policy PreviewDetails & purchase
  2. Access Control Policy PreviewDetails & purchase
  3. Security Procedures for IT Department PreviewDetails & purchase
  4. Bring Your Own Device (BYOD) Policy PreviewDetails & purchase
  5. Mobile Device and Teleworking Policy PreviewDetails & purchase
  6. Clear Desk and Clear Screen Policy PreviewDetails & purchase
  7. Information Classification Policy PreviewDetails & purchase
  8. Anonymization and Pseudonymization Policy PreviewDetails & purchase
  9. Policy on the Use of Encryption PreviewDetails & purchase
  10. Disaster Recovery Plan PreviewDetails & purchase
  11. Internal Audit Procedure PreviewDetails & purchase
  12. ISO 27001 Internal Audit Checklist PreviewDetails & purchase
  13. Confidentiality Statement PreviewDetails & purchase
  14. Statement of Acceptance of ISMS Documents PreviewDetails & purchase
  15. Inventory of Assets PreviewDetails & purchase
  16. Password Policy PreviewDetails & purchase
  17. Disposal and Destruction Policy PreviewDetails & purchase
  18. Procedures for Working in Secure Areas PreviewDetails & purchase
  19. Change Management Policy PreviewDetails & purchase
  20. Backup Policy PreviewDetails & purchase
  21. Secure Development Policy PreviewDetails & purchase
  22. Specification of Information System Requirements PreviewDetails & purchase
  23. Supplier Security Policy PreviewDetails & purchase
  24. Security Clauses for Suppliers and Partners PreviewDetails & purchase
  1. Data Breach Response and Notification Procedure PreviewDetails & purchase
  2. Data Breach Register PreviewDetails & purchase
  3. Data Breach Notification Form to the Supervisory Authority PreviewDetails & purchase
  4. Data Breach Notification Form to Data Subjects PreviewDetails & purchase
  1. Procedure for Document and Record Control PreviewDetails & purchase
  2. Procedure for Identification of Requirements PreviewDetails & purchase
  3. List of Legal, Regulatory, Contractual and Other Requirements PreviewDetails & purchase
  4. ISMS Scope Document PreviewDetails & purchase
  5. Information Security Policy PreviewDetails & purchase
  6. Training and Awareness Plan PreviewDetails & purchase
  7. Measurement Report PreviewDetails & purchase
  8. Management Review Minutes PreviewDetails & purchase
  9. Procedure for Corrective Action PreviewDetails & purchase
  10. Corrective Action Form PreviewDetails & purchase
  1. Risk Assessment and Risk Treatment Methodology PreviewDetails & purchase
  2. Risk Assessment Table PreviewDetails & purchase
  3. Risk Treatment Table PreviewDetails & purchase
  4. Risk Assessment and Treatment Report PreviewDetails & purchase
  5. Statement of Applicability PreviewDetails & purchase
  6. Risk Treatment Plan PreviewDetails & purchase
  1. Internal Audit Procedure PreviewDetails & purchase
  2. Annual Internal Audit Program PreviewDetails & purchase
  3. Internal Audit Report PreviewDetails & purchase
  4. ISO 27001 Internal Audit Checklist PreviewDetails & purchase

Step-by-step guidance for your implementation

The Toolkit documents are organised to guide you on your implementation path. They’re structured in clearly numbered folders, so that you know where to start, and – after each document is completed – where to go next.

80% complete – guidance for the remaining 20%

We’ve done 80% of the work a consultant would charge you for. Anything that can be prefilled in the documents is already done, and the remaining adaptation you need to do is clearly marked with comments and instructions.

Placeholders guide you where editing is needed

Simply move through the documents, filling in the specifics for your company as instructed. Our experts have even added some instructions on what to enter, to help you move through the implementation as efficiently as possible.

Additional instructions for more specific tasks

Completing some parts of a document might be a challenge for you if you’ve never done this before. In these cases, we’ve added detailed instructions and, where needed, links to articles and video tutorials that will help you understand and complete these sections.

Fully customisable documents

Most companies have a specific design and structure for their official documents. There’s header information, confidentiality level, even prescribed graphic design and fonts. All of our documents are fully customisable, so that you can make them look just the way they should.

All the support you need

EU GDPR & ISO 27001 compliance is much more than just documentation. The implementation of this regulation needs to be appropriate to your company, and you need to deal with your employees, your management, and your existing processes in an appropriate way.

This is why our experts are on hand with live online support to answer any difficult questions – we can set up a call via Skype, over the telephone, or through any other method convenient for you; or, we can answer your questions via email – whatever suits you best.

Highlights and advantages of the EU GDPR & ISO 27001 Integrated Documentation Toolkit

71 templates, includes every document required

The EU GDPR & ISO 27001 Integrated Documentation Toolkit comes in English, with many other languages to be published soon. Amongst other documents, it contains these templates: EU GDPR Readiness Assessment, Personal Data Protection Policy, Data Retention Policy, Data Subject Consent Form, Data Protection Impact Assessment Methodology, Cross Border Personal Data Transfer Procedure, IT Security Policy, Anonymisation and Pseudonymisation Policy, Data Breach Response and Notification Procedure, Risk Assessment Methodology, Classification Policy, Statement of Applicability, and many more – click here for a full list of EU GDPR & ISO 27001 documents.

Acceptable for supervisory authorities & certification bodies

Our Toolkit contains templates for every document required for compliance with EU GDPR and ISO 27001 – and each is completely adequate for supervisory authorities and certification bodies. Also included are additional templates for policies and procedures that are optional, but are commonly used for GDPR/ISO 27001 compliance. We also include a full list of the documents contained in the Toolkit, with clear indication of which documents are mandatory, and which are optional. This list comes in handy as a completion checklist.

We’ve done most of the work for you – templates are 90% complete

We’ve already filled in the majority of the templates already, so you only have a tiny fraction to complete. On most documents, all you have to do is fill in your company details, like business name, responsible parties, and other specifics. Each template provides guided support, and even spells out which portions are mandatory, and which ones are just helpful.

We’ve taken the stress and the headache out of your EU GDPR & ISO 27001 compliance, and you can trust that your documentation will be complete and totally accurate.


Created by industry experts

EUGDPRAcademy is known worldwide for our high-quality, accurate products and services. For this reason, you can be sure that each of our templates was designed and double-checked by GDPR and ISO 27001 top experts. This Toolkit, and the documentation templates inside, were developed specifically to eliminate your stress during implementation.

Documents are completely editable

Every template comes in either Microsoft Word or Excel, making it easy to modify them to your business needs. Show off your style by using company logos and colours, and adapt headers and/or footers to match your style guide.

Clearly organised in sequence

Document templates are grouped in appropriate folders in sequential order, so you can easily follow the order and make sure nothing is forgotten, and that no mistakes are made in the implementation. A convenient diagram is also included to aid your understanding of each step in the implementation process.

Uniform structure

Each document in the toolkit maintains a consistent format and structure, keeping your documentation neat and efficient. And, to help you understand how documents are related, we cross-reference documents that relate with one another.

Created especially for small and medium companies

Our EU GDPR & ISO 27001 Integrated Documentation Toolkit is optimised specifically for small and medium-sized companies for efficient compliance – in both time and cost. You don’t need the level of documentation that a multi-national corporation requires – so our Toolkit only includes the documents YOUR company needs.


Companies in more than 100 countries have achieved compliance with our documents.

  • Toolkit guides you through the implementation
  • Expert support throughout your project
  • Expert review of some of your completed documents
  • Pre-audit expert meeting to make sure everything is in place

EU GDPR & ISO 27001 Integrated Documentation Toolkit:

Right for your business?

In order to minimise the time and costs of implementation, the EU GDPR & ISO 27001 Integrated Documentation Toolkit was developed especially for small to mid-sized businesses, for companies located in the European Union, but also for companies outside of the EU. Our Toolkit doesn’t require completion of every document that a large world-wide corporation needs. Instead, it includes only those documents YOUR business needs.

Download free demo



997 EUR
71 document templates compliant
with EU GDPR & ISO 27001
Unlimited email support
1 hour of one-on-one support
with an EU GDPR & ISO 27001 expert
Expert review of 1 completed document


1497 EUR
71 document templates compliant
with EU GDPR & ISO 27001
Unlimited email support
5 hours of one-on-one support
with an EU GDPR & ISO 27001 expert
Expert review of 5 completed documents


2497 EUR
71 document templates compliant
with EU GDPR & ISO 27001
Unlimited email support
15 hours of one-on-one support
with an EU GDPR & ISO 27001 expert
Expert review of 15 completed documents
Pre-audit check workshop (1 hour training on audit preparation with EU GDPR/ISO 27001 expert)

Can you really implement EU GDPR by yourself?

Simple and secure payment and delivery


When and how will I get the Toolkit?

Immediately after your payment is processed, you’ll receive an email that includes a link to download the templates. It’s quite simple.

What kinds of payment can you accept?

We take all major credit cards and PayPal payment, and we can accept a wire transfer from your bank account.

Are my payment details secure?

We proudly use Secure Socket Layer (SSL) technology, which is the industry standard. This technology encrypts your credit card information, keeping it secure, and sends it directly to the payment processor. We never store – or even see – your payment information.

Which currencies can I use?

We gladly accept more than 50 commonly used currencies, including the Euro, the US Dollar, the British Pound, and the Swiss Franc.

Do you offer a discount if I purchase the toolkit in multiple languages?

Yes! You can purchase a second toolkit in another language at 70% off.

I’m still not sure if this Toolkit is right for my business. Can I try it out before I decide to buy?

Please do! Click on the “DOWNLOAD FREE DEMO” button and enter your name and your email address. You can instantly access a free preview of each document template, helping you make up your mind. This is a great chance to see how each document looks, and how easy they are to complete.

Is the Toolkit compliant with the latest version of the EU GDPR?

Yes – we will update the Toolkit each time the regulation is updated, or when a new official guideline is published. You are entitled to receive free Toolkit updates for one year after your purchase date.

Jonas Anderson
Lead EU GDPR Expert


Get free expert advice to better grow your business


About EUGDPRAcademy


EUGDPRAcademy is one of the Academies of Advisera specialises in helping organisations implement top international standards and frameworks such as EU GDPRISO 27001ISO 9001ISO 13485ISO 14001OHSAS 18001IATF 16949AS9100ISO 20000 and ITIL. Over the years, Advisera has become a global leader in the provision of web-based training and documentation for ISO 27001 (information security management) and ISO 22301 (business continuity management).

Our products are of best-in-class quality. With a proven performance record of successful implementations in more than 100 countries, our world-class customer support ensures success. Read more about the EUGDPRAcademy here.

100% Secure Online Billing


We use Secure Socket Layer (SSL) technology, the industry standard and among the best available today for secure online commerce transactions. All of your personal information, including credit card number, name, and address is encrypted so it cannot be read during transmission. You are protected by your credit card company in the case of a fraudulent transaction with any purchase.


AES-128bit SSL Safe Privacy Policy

Online payment services are provided by BlueSnap and Avangate.



  • Exemplar Global (formerly RABQSA) is leading international authority in certification of training providers.
  • ITIL® is a registered trade mark of AXELOS Limited. Used under licence of AXELOS Limited. All rights reserved.
  • DNV GL Business Assurance is one of the leading providers of accredited management systems certification.
Request callback
Request callback

Or call us directly

International calls
+1 (646) 759 9933