Our IAPP certified privacy professionals are experienced in providing quality GDPR Art. 27 EU Representative Services to non-EU organisations.


Lionheart Squared (Europe) Ltd is established in Ireland. We provide EU GDPR Article 27 Representative services to organisations that are located outside the EU that:

  1. Offer goods or services to EU-based individuals, or
  2. Monitor the behaviours of individuals within the EU

Our Experienced Representatives can
assist Organisations located outside the EU meet their obligations

  • Comply with their obligations to nominate GDPR EU Representatives
  • Use their brand’s voice when communicating with EU-based data subjects
  • Preserve their brand’s reputation with EU data protection authorities
  • Rely on knowledgeable data privacy professionals
  • Enhance compliance with their existing GDPR programme
  • Leverage their existing cyber security and breach response capabilities
  • Disclose the name and contact details of their EU Representative in their privacy policies
  • Benefit from the convenience of the English language (an official EU language)
  • Interact with a globally respected Data Protection Commission with expertise in handling complex issues
  • Connect with a global network of trusted specialists in data protection and privacy.


When providing GDPR Art. 27 EU Representative services to our qualified clients we enter into a written agreement that outlines the practical aspects of the relationship like:

  • Naming the person to serve as client’s GDPR Art. 27 EU Representative
  • Indicating which languages will apply
  • Agreeing on responses the GDPR Art. 27 EU Representative is permitted to communicate on client’s behalf to data subjects and supervisory authorities
  • Providing the GDPR Art. 27 EU Representative’s contact details to facilitate timely communications with EU data subjects and supervisory authorities
  • Permitting inclusion of the GDPR Art. 27 EU Representative’s contact details in client’s online privacy policy, cross-border data transfer agreements, and EU customer / supplier contracts
  • Coordinating the handling of client’s GDPR Article 30 ‘Records of Processing Activities’ in response to requests from EU supervisory authorities
  • Cooperating with EU supervisory authorities, client’s legal counsel and related parties when responding to official letters or notices from EU supervisory authorities


In addition to specialised EU Representative Services to meet Article 27 obligations, we provide traditional data protection solutions.

Interim DPO
Schedule an Interim DPO during transition periods or provide cover for your DPO’s planned absences

Maturity Audits
Get an independent view and benchmarking of your organisation’s privacy compliance maturity level

Get help developing bespoke data privacy training for members of staff and customer-facing support services

Help Desk
Get fast access to extra privacy resources when you subscribe to our ‘always on’ data privacy helpdesk service

Article 30 Register
Get help creating and updating obligatory data controller and processor ‘Records of Processing Activities’ relating to personal data of EU individuals

Get help with conducting Data Protection Impact Assessments (DPIA) and Legitimate Interests Assessments (LIA) to meet fundamental rights of EU individuals


We will only use your contact information to respond to your inquiry about our services. Email us any time with ‘UNSUBSCRIBE’ in the subject line if you no longer want to hear from us.


Our fees are based on a review of the client’s role as data controller or data processor, type/volume of personal data, non-EU processing locations, EU languages used to target and serve EU-based individuals, and other factors. We also consider demonstrable GDPR compliance steps taken by clients.

The following plans include use of the GDPR Art. 27 EU Representative’s contact details, inbox monitoring, and responding to data subjects and supervisory authority inquiries. Our range of monthly fees* start at:

  • € 49 to 89 ‘Essential’- Ideal for new start-ups processing limited personal data of individuals located in one or two EU member states
  • € 149 to 189 ‘Standard’ – Suitable for small companies processing personal data of individuals located in several EU member states
  • € 349 to 489 ‘Premium’- Popular with companies processing high volumes of personal data of individuals in many EU member states
  • ‘Custom’- Services are tailored for companies with complex data protection requirements including, processing large volumes of special categories of personal data, or monitoring the behaviours of individuals in EU member states

*Excludes VAT; and extraordinary services (e.g., GDPR consulting, translations, records of processing activities creation, data breach response).

Contact Us