Stratia Consulting specialise in Information Assurance and Risk Management.

We have years of experience in providing information assurance and information risk management services to all kinds of businesses. It does not matter whether you run a small start-up company or a large corporation, we will ensure your assets are protected and maintained efficiently. Our aim is to find the best form of protection for your business and provide you with the means to manage risks effectively in order to minimise financial costs and prevent damage to your reputation.

Cookie Policy

A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better website by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.

You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.

Contact Info

Data Privacy

EU General Data Protection Regulation (GDPR) and UK Data Protection Act 2018

General Data Protection Regulation (GDPR)

The EU General Data Protection Regulation (GDPR) is European legislation that has been designed to try and harmonize data privacy laws across Europe, to protect and empower all EU citizens’ data privacy and to reshape the way organisations across the EU approach data privacy.

The GDPR came into force on 25 May 2018 and introduces an enhanced EU-wide data protection regime that will have direct effect in member states and affect companies established outside the EU who wish to trade with EU partners or within the EU.

The regulation gives strict guidance on how organisations can now collect, use and store data. It also provides direction on companies how to make easier access to their data held by a data subject. Here at Stratia Consultancy this means that we have investigated our own systems, procedures, working practices, polices etc. to ensure that internally we meet the requirements expected under GDPR.

GDPR GAP Analysis

Before you can undertake any form of control around the privacy information you hold, you need to know where it is, what you use it for and by whom. Most organisations have some idea, but generally this is a challenge for customer data, let alone internal information. This is further complicated if you have data from other companies, held on behalf of their customers.

Stratia provides a data mapping and gap analysis service to help a business to audit current data processing activities and assess existing data protection practices against the obligations under the GDPR. The additional obligations under GDPR are such that it will be difficult for any business to achieve full compliance at once. We advise identifying the activities that are the biggest risk by looking at different impact areas such as financial loss, effect on data subjects and reputation.


UK Data Protection Bill

The UK has replaced the Data Protection Act 1998 with a new law that provides a comprehensive and modern framework for data protection in the UK, with stronger sanctions for malpractice.

How is this going to be achieved?

  • Set new standards for protecting general data, in accordance with the GDPR, giving people more control over use of their data, and providing them with new rights to move or delete personal data.
  • Preserve existing tailored exemptions that have worked well in the Data Protection Act, carrying them over to the new law to ensure that UK businesses and organisations can continue to support world leading research, financial services, journalism and legal services.
  • Provide a bespoke framework tailored to the needs of our criminal justice agencies and the intelligence services, to protect the rights of victims, witnesses and suspects while ensuring we can tackle the changing nature of the global threats the UK faces.


The Bill is broken down into four main elements:

  • General data processing
  • Law enforcement processing
  • Nation Security processing
  • Regulation and Enforcement


How does the Bill differ from GDPR?

The Bill is a complete data protection system, so as well as governing general data covered by the GDPR, it covers all other general data, law enforcement data and national security data. Furthermore, the Bill exercises a number of agreed modifications to the GDPR to make it work for the benefit of the UK in areas such as academic research, financial services and child protection. Further information can be found here.