Companies of all sizes have to follow the data security standards put into place by the General Data Protection Regulation (GDPR).

And this requires in-depth knowledge of website data compliance. If you’re a freelance data compliance consultant, here’s our top GDPR data compliance scope of work template to use for your next proposal.

Welcome to Scope Smarter, Not Harder, a series from Wethos highlighting our services and scope of work templates from the Wethos Services Library. In this installment, we’re highlighting our GDPR Data Compliance scope of work template!

Wethos users have access to over 70 scope of work templates and 800 services ranging from brand strategy to social media and design. Our scope of work tools streamline your proposal process so you can skip the freelance pricing mistakes and get to work.

Here’s our breakdown of a GDPR Data Compliance scope of work so you know how to charge for your next project!

Please note that our pricing recommendations are powered by tens of thousands of data points, all from real studios on our platform. If you have feedback on the pricing below, please let us know! We always want our system to become smarter with your help.

GDPR Data Compliance scope of work

Phase 1: Kickoff & Audit

As a data analyst, your first step is to see what kind of system the client is currently working with. Kick off the project by auditing their data storage process. This is where you’ll analyze how the client’s data is being created, read, updated, and deleted (CRUD). Compile one dataset for this project. 

Next, to gain insight into what client stakeholders care about and what goals they want to achieve, you’ll need to conduct 5-10 interviews. Depending on how many interviews you run, this can be a time-consuming process, so take that into account when you’re building your scope of work.

Wrap up the first phase of the project with a report of your findings. The report should include insights and opportunities related to the client's category, customer, and the culture of the industry they operate in. Our scope of work template recommends pricing the report as its own deliverable.

Phase 2: Implementation

To properly implement your findings from the first phase, you’ll want to team up with a full-stack developer. 

For this phase, the developer will take the lead by implementing the GDPR data compliance requirements on the client’s website. This includes everything from a privacy policy page to cookie notices. They’ll also install a data warehouse, a critical component when it comes to maintaining compliant data. Because this is a valuable part of the scope and requires expertise, our template recommends using value-based pricing for this deliverable. 

If you want to grow your freelance business to the next stage, you’ll need to team up with independents across disciplines. When you team up with another independent freelancer, you can scope bigger, more high-quality projects — and charge accordingly.

Phase 3: Compliance Handoff

The final phase of our top GDPR data compliance scope of work is the handoff. Though this is where you’ll create a seamless process for the client to use going forward, there may also be some ongoing work involved. 

The full-stack developer will help maintain the backend and be available to address server issues and outages. Our scope of work recommends including up to two hours of monthly support for this scope. But if you want to increase the available monthly hours, be sure to increase the price, too. 

Once your proposal is accepted, you can easily turn your scope of work into an invoice using Wethos.