Revolutionary data compliance manager | Fieldfisher
Skip to main content
Select location
Simple. Compliant. Secure.

Revolutionary data compliance manager

Simplify and strengthen your data compliance with our cloud-based solution—offering 24/7 protection, automated workflows and expert legal guidance to navigate GDPR, UK GDPR and NIS 2 requirements
Request a demo Watch our video
Hide

Request a demo

Get in touch with the team through the form below to receive a free demo

GB
AD
AE
AF
AG
AI
AL
AM
AN
AO
AQ
AR
AS
AT
AU
AW
AZ
BA
BB
BD
BE
BF
BG
BH
BI
BJ
BL
BM
BN
BO
BR
BS
BT
BW
BY
BZ
CA
CC
CD
CF
CG
CH
CI
CK
CL
CM
CN
CO
CR
CU
CV
CX
CY
CZ
DE
DJ
DK
DM
DO
DZ
EC
EE
EG
ER
ES
ET
FI
FJ
FK
FM
FO
FR
GA
GB
GD
GE
GF
GG
GH
GI
GL
GM
GN
GP
GQ
GR
GS
GT
GU
GW
GY
HK
HN
HR
HT
HU
ID
IE
IL
IM
IN
IO
IQ
IR
IS
IT
JE
JM
JO
JP
KE
KG
KH
KI
KM
KN
KP
KR
KW
KY
KZ
LA
LB
LC
LI
LK
LR
LS
LT
LU
LV
LY
MA
MC
MD
ME
MF
MG
MH
MK
ML
MM
MN
MO
MP
MQ
MR
MS
MT
MU
MV
MW
MX
MY
MZ
NA
NC
NE
NF
NG
NI
NL
NO
NP
NR
NU
NZ
OM
PA
PE
PF
PG
PH
PK
PL
PM
PN
PR
PS
PT
PW
PY
QA
RE
RO
RS
RU
RW
SA
SB
SC
SD
SE
SG
SH
SI
SJ
SK
SL
SM
SN
SO
SR
SS
ST
SV
SY
SZ
TC
TD
TG
TH
TJ
TK
TL
TM
TN
TO
TR
TT
TV
TW
TZ
UA
UG
US
UY
UZ
VA
VC
VE
VG
VI
VN
VU
WF
WS
YE
YT
ZA
ZM
ZW
US
Confidently take control of data compliance
Staying ahead of data compliance and cybersecurity regulations is complex — but it doesn’t have to be. The Fieldfisher Data Compliance Manager is your all-in-one cloud-based solution to simplify compliance, reduce risk and ensure robust regulatory alignment. The tool brings together a powerful suite of compliance modules designed to help organisations manage complex data protection and cybersecurity requirements.
Easily conduct incident notifiability assessments under GDPR, UK GDPR and NIS 2
Collaborate across the business to ensure comprehensive conduct of risk assessments
Track compliance activities
Maintain a defensible record of assessments
A laptop displays a data breach manager reporting dashboard with bar, line, and pie charts, showing statistics like total breaches, open investigations, and notifications, branded with the fieldfisher logo.
Key features that keep your business secure
Developed in collaboration with legal tech specialists Lawcadia, our platform gives clients secure 24/7 access to Fieldfisher’s market-leading assessment methodologies, expert guidance and professional legal advice.
A structured, defensible framework
Proven assessment methodologies are digitised and built-in to guide and help provide a robust defensible position for decision making.
Independence from enterprise systems
Modules are deployed using a secure, fit-for-purpose legal technology platform that is ISO 27001 certified with data hosted in the UK.
Automated workflows & auditable records
The two-sided workflows combine efficiency and automation with the right expertise and advice to deliver the best outcomes within the regulatory timeframes.
Real-time insights
Configurable reporting dashboards automatically capture and visualise key metrics for internal stakeholders
Our Modules
Comprehensive compliance modules include:
Data Breach & Data Mapping Manager
Data Protection Impact Assessment & Transfer Impact Assessment
Data Subject Access Request Manager
NIS2 Incident Assessment
A person types on a laptop displaying various colorful graphs and charts under the heading "fieldfisher." The screen shows bar graphs, a line graph, and a pie chart, emphasizing data analysis. The person's face is not visible.
The Fieldfisher Data Compliance Manager – FAQs
Is the Fieldfisher Data Compliance Manager risk assessment customisable?

Yes, it is.

When we demonstrate the Fieldfisher Data Compliance Manager to clients, we will talk through the basics of the standard platform, which may suit your particular needs without further development.

If clients want a fully customised solution, then we will work with you to modify the platform, based on the risk assessment criteria and decision-making mechanisms you may already have in your system, and your preferred reporting processes.

Will clients be offered help to complete the data breach form?

Yes, the client can start a workflow and then call their contact at Fieldfisher if they find they need assistance. A specialist Fieldfisher data lawyer will be able to go through the form with you.

If the lawyer needs to complete part of the form on the client's behalf, this will be sent back to the you once completed and will automatically be recorded on the Fieldfisher Data Compliance Manager system.

Clients can also complete a risk assessment and send it to Fieldfisher via the platform to check Fieldfisher's data specialists agree with the assessment.

Lawcadia will also provide support to clients via a chatbot and helpdesk.

Can I use the Fieldfisher Data Compliance Manager for minor incidents or just major breaches?

It can be used to document any incident, including near misses, and help clients assess the seriousness of that incident. 

All personal data breaches must be recorded and logged in a personal data breach register to comply with the GDPR. 

Depending on the circumstances, a mis-sent email or a successful phishing attack on a mailbox may not qualify as a major incident, but the Fieldfisher Data Compliance Manager allows clients to document and assess every potential breach, creating a full breach log.

This makes it easier to report an incident to the regulator if the need arises and helps the client's legal advisers to quickly analyse the situation and advise the client on the next steps.

By using the Data Compliance Manager or all incidents, you will be able to satisfy your obligations in an accountable way, and obtain the addition benefits of having automated business intelligence (BI) reporting for your internal stakeholders.

How does Fieldfisher interact with clients via the platform?

When completing a risk assessment, clients have the option to send them to Fieldfisher via the platform to complete in the first instance, or for a second opinion.

Fieldfisher's specialist data lawyers can review the data input into the questionnaire via the platform and make any necessary amendments directly in the platform itself.

The platform allows the client to easily see what changes have been made, removing the need for clients to save down separate versions of word documents and run comparisons.

If either side (client or lawyer) notices anything that needs to be brought to the other side's (client's or lawyer's) attention urgently, the platform can be used to send an email or, depending on the workflow stage, an SMS notification that will prompt the client or lawyer to look at the platform.

How do I send information from the platform to regulators?

Once an assessment is approved, the assessment can be easily converted to PDF and copied and pasted into other document formats required for reporting to regulators.

This is particularly useful if clients find they have to deal with an incident across multiple jurisdictions with multiple regulators to notify.

Notifications and other documents can be saved down onto the system to keep a record in a single location of documents relevant to the incident.

Is the information stored on the Fieldfisher Data Compliance Manager privileged?

Fieldfisher will be engaged to provide legal advice when you need it using the platform. 

As a matter of English law, given that data will be put onto the platform in anticipation of legal advice, the platform gives you a better chance of maintaining legal privilege than most clients currently have using their own internal systems. 

By reducing email traffic regarding an incident, the risk of waiving privilege over key documents like forensic reports can be reduced significantly. 

How can I use the platform to manage reporting to multiple regulators?

When there is a need to notify more than one regulator, the client can set up tasks for the date by which each regulatory needs to be notified.

The platform will organise this information into a chart to help you see which notifications you need to prioritise for each jurisdiction where notification is required.

The platform enables document sharing and communications to ensure that notifications can be made in an agreed form using the data that is ingested and recorded on the Data Compliance Manager platform.

Can I use the FieldfisherData Compliance Manager log for other business activities?

Yes, this is not just a platform for notifying regulators. Up to date personal data breach logs are important for accountability and the BI reporting is a useful tool for presentations to management, investors, and other stakeholders like cyber insurers who may want to understand what your instances of personal data breaches look like.

We find that clients often have out of data personal data breach logs or spend a lot of time on bespoke graphics and tables for management presentations, so when used consistently our Data Compliance Manager will save time and money within your business.

Importantly, the communications functionality allows you to use the platform to seek other legal support from us where required, whether that be in relation to other issues that may arise from an incident, including things like sector-specific notification requirements, insurance matters or customer or vendor contractual issues.

Will the Fieldfisher Data Compliance Manager still work if my systems are compromised in a cyber incident?

The Data Compliance Manager is made available by Lawcadia on a logically separate platform, giving you the best chance to have a system that you can use to manage an incident even if your normal systems are compromised.

When onboarding our clients, we will discuss what authentication methods you would like to use for the platform and what may give you better resilience in the event of ransomware or email compromise incidents.
 
Both single sign-on and SMS multi-factor authentication can be enabled.

How is the Fieldfisher Data Compliance Manager accessed?

Platform access can be set up in a way that best suits the user.

Access can be set up with either single sign-on, or two factor authentication, using email and/or SMS text messaging.

If there are multiple domains within an organisation, it is easy to obtain approval as required for different domains to ensure all users can access the platform.

As part of the implementation process, Fieldfisher and Lawcadia will go through your access requirements with you and determine the best approach.

What if I am based in a different jurisdiction to the one where the Fieldfisher Data Compliance Manager is hosted?

The Fieldfisher Data Compliance Manager is hosted in London, however it can be easily accessed out of jurisdiction using an AWS service.

Is there a limit to the number of users an organisation can have on the Fieldfisher Data Compliance Manager?

No, the platform can accommodate unlimited users for the purpose of completing factfinding questionnaires. 

On the assessor side, the platform includes up to 10 licensees (i.e. this would usually be for the legal, privacy,  compliance team or other team members who will assess the incident).

Can I control who sees what in the Fieldfisher Data Compliance Manager platform?

Yes, you can set permissions for different users and assign levels of confidentiality to matters you enter into the platform, to control who sees what.

You can change permissions quickly and easily, if you need to bring more users in on a particular matter.

Can you use the Fieldfisher Data Compliance Manager if you are a processor (rather than a controller)?

Yes, the Fieldfisher Data Compliance Manager allows you to distinguish between the roles of controller and processor, and the platform will react to that status.

As a processor, your responsibilities are to let the controller(s) know about any personal data breach incident(s) you have experienced and provide them with certain information about that incident, so they can assess the nature of the breach and decide whether they need to notify regulators.

Processors may work with multiple controllers and the Fieldfisher Data Compliance Manager allows processors to project manage incident reporting, keep track of changes and decisions in the same way as it allows controllers to monitor, record and manage breaches.

How much training do I need to use the platform?

The Fieldfisher Data Compliance Manager is simple and intuitive to use, so minimal training is required to fully upskill anyone in an organisation who needs to use it.

For a standard team training session Lawcadia advises to allow half an hour. For single user training, a 15-minute demonstration and Q&A session is generally sufficient.

The platform also has a 'help' button that will direct technical queries directly to Lawcadia

Will I receive 24/7 service?

Yes the platform is available 24/7, with in-person support during UK business hours. There are also tools within the platform to request in-person assistance from Fieldfisher outside business hours in an emergency.

The platform allows users to start logging information whenever the client needs it, with overlapping support from the Fieldfisher and Lawcadia teams.

Discover Data Compliance Manager
Stay compliant with expert guidance. Reduce risk with automated, auditable records. Gain visibility through centralised task management and real-time reporting.
View the team