Program: M&A Privacy Due Diligence
M&A Privacy Due Diligence · THB 250,000-1,250,000
M&A Privacy Due Diligence — Privacy maturity audit + ROPA review + breach history + DSAR backlog + reps & warranties drafting.
NYC Legal's Privacy Counsel team holds CIPP/E, CIPM, and ISO 27701 Lead Implementer credentials with a 24/7 breach hotline.
Coverage: Thailand PDPA Compliance Pack (PDPA B.E. 2562) · EU GDPR Compliance Pack (Regulation 2016/679) · CCPA/CPRA Compliance (California Consumer Privacy Act) · DPO Appointment Service (PDPA & GDPR) · DPIA (Data Protection Impact Assessment) · Record of Processing Activities (Art. 30 GDPR · PDPA ม.39) and more.
Coverage
How it works
- 1
Discovery + mapping
Audit data + interview owners + identify processing + data flow.
- 2
Gap analysis + DPIA
Map gaps against PDPA/GDPR/CCPA + DPIA for high-risk + risk register.
- 3
Drafting + implementation
Policy + ROPA + DPA + consent + CMP + DSAR portal + breach runbook.
- 4
Training + ongoing
Train DPO + staff awareness + quarterly review + annual audit.
Frequently asked questions
Starting cost?
THB 250,000-1,250,000, scaling with size and processing complexity.
Timeline?
21-90 working days, depending on scope (PDPA-only vs multi-jurisdiction).
Coverage?
12 jurisdictions — TH, EU, UK, US-CA, SG, AU, JP, KR, CN, BR, AE, IN.
How to maintain after launch?
DPO retainer + quarterly review + annual audit + breach drill.