← All kits
For software companies selling to enterprise · GDPR

The full GDPR set procurement asks for.

An enterprise buyer sends a 40-question data-and-security form, and the deal stalls while you scramble to answer it.

A complete, deployable programme — the guide, the working registers, a build tool and every document an enterprise buyer wants before they sign. Answer the form in an afternoon instead of a fortnight.

NEW · JULY 2026v1.1 — EU & UK Representative Decision Aid: Article 27, answered for non-EU companies.

✓ 14-day money-back guarantee. one-off €690 · instant download · fully editable · single-business licence

What’s inside

Everything you deploy, in one download.

Editable source files — not locked PDFs. Built to a single standard and cross-referenced where it counts.

1 playbook · 9pp1 RoPA/DPIA builder3 Excel files7 core documents3 assessment templates

Guide & tools

  • GDPR Readiness Playbook — 9 pages
  • RoPA / DPIA Builder

Working files (Excel)

  • RoPA register
  • Operational logs
  • Retention schedule

Core documents

  • Data Protection Policy
  • Privacy Notice
  • DPA with SCCs & IDTA
  • Sub-processor list
  • DSAR procedure
  • Breach runbook
  • Security measures (Art 32)

Assessment templates

  • Legitimate Interests Assessment
  • DPIA screening + template
  • Transfer Impact Assessment
Proof, not promises

See the quality before you pay.

No unknown-brand leap of faith. Try the free tool first — the paid kit is the same standard, deployable.

free · no sign-up

Don’t take our word for it — try the thinking.

The free GDPR Readiness Scorecard runs on the same senior expertise that built this kit — a live read of your own position, not a teaser. If the free tool is this sharp, you can see what the paid kit is.

Run the free GDPR Readiness Scorecard →

A real sample page of the kit documents is available on request.

A full GDPR programme, built bespoke, runs into the thousands.

RoPA, DPA, privacy notice, breach runbook and the assessments — assembled and cross-referenced by someone who has done it at scale. The same set, yours to deploy now, for €690.

Why you can rely on it
EXPERT
BUILT

Built and field-tested by a senior compliance and contracts practitioner with 15 years across contracts, GDPR, IP and the EU AI Act — 10,000+ contracts and corporate documents reviewed, both sides of M&A, and a recent USD 40M+ software exit, expertly managed. Not generated and abandoned — engineered, then proven.

Cited to source · version-dated · current as of July 2026

Want it done for you, or scoped to a large data estate? See the GDPR Gap Assessment.

See the assessment
The GDPR menu

Wherever you are with GDPR, here’s what fits.

Pick the one that matches where you are — each stands alone, buy in any order or on its own. Your team does the work with our templates; that’s why this costs a fraction of a consultancy.

Check yourself — free
GDPR Readiness ScorecardA dynamic read across your bases and transfers in minutes.Open ›
Get assessed
GDPR Gap Assessment · €3,500Nine domains scored, gaps rated, a prioritised roadmap.Open ›
Get the documentsyou’re here
GDPR Readiness Kit · €690The full policy, notice, DPA and register set — deployable.On this page
Get it done, keep it current
Enterprise · Fractional · Founder on CallHands-on remediation, ongoing upkeep, or a briefing call.Open ›
A specific DPA on the table?
Expert Contract ReviewSenior review and negotiation of the contract in front of you.Open ›
Questions

Before you buy.

We already have a privacy policy — isn’t that enough?

A privacy notice is one document of many. Procurement and DPAs ask for your RoPA, your Art 32 security measures, your sub-processor list, your breach process and your transfer safeguards. The kit is the whole set, cross-referenced — not one document doing the work of ten.

Is it current?

Yes. Every document cites its Articles and is version-dated, and reflects the post-Schrems II transfer position (SCCs + IDTA). You receive the version current at purchase.

Can I edit everything?

Yes — working Word and Excel files, not locked PDFs. The RoPA and logs are live registers you keep using.

Isn’t this just legal advice in a box?

No — it’s a set of expert-built template documents and guidance you deploy yourself, not legal advice and not a review of your business. The documents are drafted to market-standard positions for a typical software company and are yours to adapt. Buying them creates no lawyer–client relationship or privilege, and Xprofesso LLC is not a law firm.

What you’re buying: deployable, editable source documents — policies, privacy notice, DPA and the RoPA/register set — plus guidance to implement them, built by a senior practitioner.

What it isn’t: a check of your specific setup, confirmation the documents are sufficient for your facts or jurisdiction, or an opinion on enforceability. Want your actual position checked? That’s the GDPR Gap Assessment. Need a formal opinion or a filing? That’s a licensed lawyer.

Answer the security review in an afternoon.

€690, one-off. Instant download, fully editable, backed by a 14-day money-back guarantee.