Welcome to

GDPR Consultants

At Seven Step Consulting Pvt. Ltd.(7 Step ) the singular focus of our firm is to assist our clients meet their strategic business objectives and to give companies the power to delight their customers, employees, and shareholders ,to ensure success by relentless application of best practices in process ,people and technology and a continual pursuit of excellence. Everything we do has one goal—to help our customers achieve their goals.

AS GDPR compliances will be Law from May 25th 2018 , our team of experienced and certified GDPR implementers are assisting various SMEs in implementing GDPR compliance.

We have served business leaders including Fortune 500 companies within the country and internationally serving a broad array of industries, from Airlines, Banking Financial Services & Insurance (BFSI),Business Process Outsourcing (BPO), Consumer Durables ,IT / ITES ,& Telecom and Real Estate and Retail Services. Our cross-industry experience and competencies spread across business, process, quality and technology enable to deliver to our clients honest, objective, thoughtful, and experienced advice that helps them stay one step ahead Read more

Find out how we can help transform your company with our world class services

Our Services

GDPR readiness review

It is important to understand till what level organization is ready for GDPR. Our GDPR review program assist organization to understand impact on any and all sections of organization.
Read more

Data protection officer services

A data protection officer (DPO) is an enterprise security leadership role required by the General Data Protection Regulation (GDPR). Data protection officers are responsible for overseeing data protection strategy
Read more

Contract review

If your business outsources any function to a third party, it is quite likely that third party will be a data processor. The outsourcing contract might be a HR function, a marketing service or you might have engaged
Read more


DPIA is a process which assist organizations in identifying and minimizing the privacy risks of projects and policies. DPIA is now mandated. Before GDPR DPIAs were best practice
Read more

New requirements for Data processors under the GDPR

“Where processing is to be carried out on behalf of a controller, the controller shall use only processors providing sufficient guarantees to implement appropriate technical and organisational measures in such a manner that processing will meet the requirements of this Regulation and ensure the protection of the rights of the data subject.”

In other words, data controllers, i.e. customers of data processors, shall only choose processors that comply with the GDPR, or risk penalties themselves. As supervisory authorities enforce penalties on controllers for a lack of proper vetting, processors may find themselves obligated to obtain independent compliance certifications to reassure their would be customers.? Read more

Latest News

Meerderheid websites overtreedt privacywet

The Dutch consumer protection agency consumentenbond (consumer union) has labeled Reddit as non compliant after the discovery that Reddit places 45 commercial tracking cookies without permission and gives no option to disable them.

DPA penalties cases

WhatsApp Inc.

WhatsApp Inc. has signed an undertaking with the Information Commissioner.

Goody Market UK Ltd EN

Goody Market UK Ltd issued with an enforcement notice after they failed to ensure that texts were sent to individuals who had consented to receive marketing.
Request A Call Back

Request A Call Back