Why register with us?

Users are suspicious.

Most Internet users are hesitant when arriving at the point of sharing their personal data - name, address, credit card, preferences, etc. This costs engagement and permanently taints the relationship with suspicion. Users hold back.

Users are right. There's been major security breaches, users are intensely tracked and targeted (even persecution) and big companies make money from profiling from which users see a disproportionate benefit. This is expected behaviour. Beyond direct harms (identity theft, privacy invasion, persecution), there's a question of decency, respect and even human rights. People are entitled to their Privacy.

Two types of organisations

We see two types of organisations. One type of organisation uses personal data because they need -- for example, they need the address to send a package. This is as planned.

Another type is companies for which the user is the product. They need the address to send a package but then they ask for much more and reuse that information. Their key expertise is data mining and tracking. Most of these companies are not even known (sometimes called shadow hubs). In order to operate, they either exploit a void in the law or lack of enforcement from authorities.

For ethical organisations, Data Protection is a liability and a maze of dangerous regulations. They do not do anything illegal or unethical, but they are still liable if a breach happens or if they receive Subject Data Requests (SAR). Processing an erasure, for example, can cost at least £50 in time just for a single user.

The power of receipts

PrivDash is rooted in academic research in Cyber Security and Privacy. It's incredible how such a simple and familiar concept (a receipt) can be so powerful: users send personal data and get a receipt back. Organisation also get a receipt which protects them from future litigation.

If all organisations did this, users could confidently share personal data with no further consideration: once in a while, they would look at their receipts and decide which to request erasure. Organisations delete the data, and users get a new life. It can be this simple.

This is risk free for all. More than compliant, organisations become ethical and lightweight. Data collection (and retention) should be minimal, and should only be kept until not needed or the user requests erasure.

Receipts directly address three requirements of Data Protection regulations:

  • ability to demonstrate that consent was valid and lawful
  • direct address of User's Rights
  • they can request Erasures as easy as they gave Consent


Organisations become truly compliant with Data Protection and Users trust you.

When you enroll with PrivDash, you automatically get:

  • ability to generate receipts in our cloud-based service
  • support to integrate our cloud-based service with your websites or apps (usually about 10 lines of code)
  • a Data Protection assessment (UK or EU GDPR)
  • cyber security advice
  • user-friendly Privacy Policies (like ours) with archivals for Compliance proof