Now with a 3-month satisfaction guarantee

Data Protection without
any hassle.

Completely transparent with our packets


Choose Packet
Change your plan at any time


Choose Packet
Change your plan at any time


Choose Packet
Change your plan at any time

Number of request processing from data subjects

Processing of data protection-relevant inquiries to the responsible employees

Communication with the supervisory authority

Provision and maintenance of forms and templates

Preparation of annual activity reports

Provision of training documents

Participation in the impact assessment

Participation in the preparation of operational instructions and guidelines

Activities in the event of violations of personal data protection, including preventive measures

Answering inquiries about data protection beyond the day-to-day business

Evaluation of concrete marketing or sales measures in terms of data protection law

Development and evaluation of a data protection management system

Was Kunden sagen

"Our cooperation with heyData turned out to be highly recommendable. Not only are the approaches to our requirements carried out considerately and thoroughly, but also the support as soon as the data protection measures are put into effect."

Robin from November

"The cooperation with heyData has clearly reflected the principle of data protection - trusting, reliable and transparent. It quickly became clear that heyData works competently and that the criteria are taken into account in a detailed manner.”

Konrad from Lendis

"At heyData, we have a personal contact person, quick help and above all a clear price structure. Thus, they offer an optimal price-performance ratio, which is especially important to us as a Fintech Start-Up. The total package simply fits."

Kurosch from Carl Finance

Frequently Asked Questions 

Do I need a data protection officer?

A data protection officer must be appointed by companies with at least 20 employees who are regularly involved in the automated processing of data. A data protection officer is also necessary if special categories of personal data are processed that provide information about a person's race, ethnic origin, political opinion, religious beliefs, health or sex life. The same applies if personal data are transferred, collected, processed or used in a businesslike manner which constitutes the core activity of the company. In these two cases, the number of employees is irrelevant.

What are personal data?

According to GDPR, personal data is all information relating to an identifiable person. Subjects can be identified directly or indirectly, in particular by means of association with an identifier such as name, an identification number, a location or other characteristics. In practice, this includes all data that can be attributed to a person in any way. Examples include telephone numbers, ID numbers, account data, license plates, customer numbers, e-mail addresses or postal addresses.

How do the commissions at heyData work?

As soon as you have decided to cooperate with heyData, we will carry out a data protection audit with your company after an initial needs analysis in order to understand the processes of your company holistically - this process will be digitally accompanied and supervised by the data protection consultant. Thereupon we will prepare the necessary documentation together with you and if necessary, we will adapt the web presence of your company according to our instructions in case there is a need for changes in order to achieve conformity. Depending on the package, we are then involved in various processes of your company, which require the expertise of a data protection officer to protect you in all respects, this usually extends to HR, marketing, product, but also business development processes.

How long is the contract period?

The regular contract period is 24 months.

What is done in the data protection audit?

The data protection audit is intended to examine the processes of your company and to identify the essential points of data processing. You will then receive a documentation of this so that you have the locations, the type of data processed and the people responsible as a diagram available at any time.