Data Processor Audit Service  
Digital control of your data processors

DPA Service because...

Danish Data Protection Agency

A control will be carried out according to the Danish Data Protection Agency's guide about data processors. Unlike other auditing products, DPA Service audits regarding to the current legislation.

High data security

Data and reports for your control of data processors are safely stored and can continuously be downloaded.

Protection of documentation

With DPA Service, you are ensured documentation for compliance with requirements about control of your data processors.

Professional control

You employ a professional approach to control of your data processors which does not load your data processors unnecessary.

A competitive price

Compared to alternative audit-methods, DPA Service is offered to a competitive price which save you both time and resources.

More stringent documentation requirements

As data management company or authority, you are required to continuously your data processors, and you must be able to document compliance with the Danish Data Protection Agency at all times.

Fines and loss of reputation

Costs can be huge for organisations that do not comply with the rules. In addition to a possible fine of up to 4 percent of the organisation's annual turnover or EUR 20 million, lack of control could cause serious data breach as well as loss of reputation.

A resource-demanding task

Continuous control of all your data processors are often an administrative heavy and time-consuming task. Similarly, it requires that your employees are continuosly updated on the current rules regarding processing of personal information. 

With DPA Service you get...

The audit reports give you documentation for systematic and consistent control of your data processors.

The reports contain concrete recommendations to help you make decisions for systematically and consistent control of your data processors.

An operational management report gives you a general idea over all your data processors' compliance-level.

Price model

Fixed annual payment based on the number of controls which should be completed.

Already completed controls can be repeated without additional costs in the contract period.

Some of our  customers

The 6 steps of the control

02. Questionnaire sent

.legal sends an information mail and guide to the data processors. Subsequently, link and log-in information to the DPA Service questionnaire is sent,

04. Analysis and scores

.legal continuously follows the answers and sends a progress report to the data controller. The final answers are processed based on a score model.

06. Follow-up

Finally, the data controller, perhaps together with an adviser, assesses whether a follow-up is needed based on the reports.

01. Mapping

Together, the data controller and .legal prepare a time schedule for the process. Accordingly, the data controller inform which data processors should be controlled in DPA Service.

03. Questionnaire answered

The questionnaire can now be answered. If any trouble occurs, helping texts are prepared by Bech-Bruun's legal experts, and there is the opportunity for contacting .legal.

05. Operational Report

The data controller receives both individual audit reports and a general management report which gives an overview of all the data processors compliance level.


Questions and weighting of answers are developed by Bech-Bruun's legal experts.

For more information about DPA Service, please contact us through the contact form below or telephone +45 3211 6660


.legal A/S

Inge Lehmanns Gade 10

8000 Aarhus C

CVR: 40888888

+45 3211 6660

Cookie policy

Privacy policy

.legal is not a law firm and is therefore not under the supervision of Advokatrådet.