Guides & insights
Plain-English UK compliance guides for UK SMEs.
A plain-English guide to UK GDPR for Shopify store owners — the obligations that actually apply to you, why a cookie banner isn't enough, and how to check where you stand in about 30 seconds.
A data-protection complaint isn't just an awkward email — the ICO expects organisations to have a process for handling one. Here's what a complaint really is, what a good process looks like, and why the evidence matters.
If a third-party app touches your customers' data, UK GDPR Article 28 says you need a Data Processing Agreement with it. Here's which apps count, why it matters, and how to find the gaps.
A privacy notice is accurate on launch day and slowly stops matching reality as your business changes. Here's why compliance drifts, why it's the risk nobody schedules, and how to catch it.
A cookie banner is one obligation, not the finish line. Here's what UK cookie law (PECR) actually requires, the common ways banners fail, and what compliance covers beyond cookies.
A subject access request gives your customer the right to a copy of the data you hold on them, and you have one month to respond. Here's what a DSAR is, what you must provide, and how to be ready.
Most compliance AI is a black box that can confidently make things up. Here's the alternative — a Glass Box that shows its working, cites the rule, and uses deterministic checks so answers can be verified, not just believed.
No articles match “”. Clear search
See where your store actually stands
Free outside-in compliance check — no login, results in 30 seconds.