Cyber Security Training & Software for Companies | MetaCompliance


Discover our suite of personalised Security Awareness Training solutions, designed to empower and educate your team against modern cyber threats. From policy management to phishing simulations, our platform equips your workforce with the knowledge and skills needed to safeguard your organisation.

Cyber Security eLearning

Cyber Security eLearning to Explore our Award-Winning eLearning Library, Tailored for Every Department

Security Awareness Automation

Schedule Your Annual Awareness Campaign In A Few Clicks

Phishing Simulation

Stop Phishing Attacks In Their Tracks With Award-Winning Phishing Software

Policy Management

Centralise Your Policies In One Place And Effortlessly Manage Policy Lifecycles

Privacy Management

Control, Monitor, and Manage Compliance with Ease

Incident Management

Take Control Of Internal Incidents And Remediate What Matters



Explore the versatility of our solutions across diverse industries. From the dynamic tech sector to healthcare, delve into how our solutions are making waves across multiple sectors. 

Financial Services

Creating A First Line Of Defence For Financial Service Organisations


A Go-To Security Awareness Solution For Governments


A Security Awareness Training Solution For Large Enterprises

Remote Workers

Embed A Culture Of Security Awareness - Even At Home

Education Sector

Engaging Security Awareness Training For The Education Sector

Healthcare Workers

See Our Tailored Security Awareness For Healthcare Workers

Tech Industry

Transforming Security Awareness Training In The Tech Industry

NIS2 Compliance

Support Your Nis2 Compliance Requirements With Cyber Security Awareness Initiatives



From posters and policies to ultimate guides and case studies, our free awareness assets can be used to help improve cyber security awareness within your organisation.

Cyber Security Awareness For Dummies

An Indispensable Resource For Creating A Culture Of Cyber Awareness

Dummies Guide To Cyber Security Elearning

The Ultimate Guide To Implementing Effective Cyber Security Elearning

Ultimate Guide To Phishing

Educate Employees About How To Detect And Prevent Phishing Attacks

Free Awareness Posters

Download These Complimentary Posters To Enhance Employee Vigilance

Anti Phishing Policy

Create A Security-Conscious Culture And Promote Awareness Of Cyber Security Threats

Case Studies

Hear How We’re Helping Our Customers Drive Positive Behaviour In Their Organisations

A-Z Cyber Security Terminology

A Glossary Of Must-Know Cyber Security Terms

Cyber Security Behavioural Maturity Model

Audit Your Awareness Training And Benchmark Your Organisation Against Best Practice

Free Stuff

Download Our Free Awareness Assets To Improve Cyber Security Awareness In Your Organisation

MetaCompliance | Cyber Security Training & Software for Employees


With 18+ years of experience in the Cyber Security and Compliance market, MetaCompliance provides an innovative solution for staff information security awareness and incident management automation. The MetaCompliance platform was created to meet customer needs for a single, comprehensive solution to manage the people risks surrounding Cyber Security, Data Protection and Compliance.

Why Choose Us

Learn Why Metacompliance Is The Trusted Partner For Security Awareness Training

Employee Engagement Specialists

We Make It Easier To Engage Employees And Create a Culture of Cyber Awareness

Security Awareness Automation

Easily Automate Security Awareness Training, Phishing And Policies In Minutes


Meet the MetaCompliance Leadership Team


Stay informed about cyber awareness training topics and mitigate risk in your organisation.

Brexit / GDPR – Keep Calm and Carry On? #2


about the author

Share this post

This final installment of the two-part blog on Brexit and GDPR will look at compliance and accountability, what Brexit means for businesses in the UK and where we are now with GDPR.

Read the first installment here.  

GDPR – Delivering Compliance & Accountability

Compliance with GDPR requires definitive identification of all personal data held, confidence in stating how and why said data is being collected, and the ability to state precisely where the collected data is being stored. In order for a data controller organisation to achieve GDPR compliance, they first of all need to perform an assessment of their current standing to identify compliance gaps. Through the prioritisation of remediation measures, an organisation can then forge a path towards GDPR compliance.

Data Controllers should also be mindful that they are ultimately responsible for ensuring compliance and therefore can be held liable for the processing activities of any data processors (e.g. cloud service providers) that they engage. This requires careful consideration when establishing or reviewing  contracts that extend beyond the 25th of May 2018.

A recurring theme of GDPR is accountability. Organisations need to be capable of proving to both data subjects and regulators that the right path has been taken, often years after the initial decision has been made. Data Protection Officers (DPOs) are mandated for some categories of organisations such as public authorities and those involved in high risk processing. The DPO must have “expert knowledge” of data protection law and it is their duty to inform and advise on compliance. The GDPR also states the need for a Data Protection by Design and by Default approach for their processing of personal data. This requires organisations to adopt a mindset based on proactive rather than reactive and preventative rather than remedial. The use of Privacy Impact Assessments (PIAs) is recommended, and in some cases mandated, to assist in this regard.

Brexit in, Big Business out?

This is an age where data naturally moves across borders. Should the UK not be regarded as having an adequate level of protection, then legally, any transfers to the UK would have to be via EU model clauses, a very administrative-heavy task.

Model clauses are used to allow the transfer of data to non-EU countries and are regulated by Supervisory Authorities. Binding Corporate Rules (BCRs) may also be needed. These are basically the same instrument as model clauses but are set up by the enterprise itself for intra-company transfers. This will add expense and may lead to some companies to move a part of their operations to the EU, at least until things become clearer. Other UK firms will likely create EU shadow companies to demarcate data for the sake of simplicity, a complicated and expensive solution designed to make data handling easier. Firms from beyond the EU may simply avoid setting up in the UK at all.

GDPR – Where are we now?

The Secretary of State Karen Bradley MP confirmed at the Culture, Media and Sports Select Committee meeting on 24th October 2016: “We will be members of the EU in 2018 and therefore it would be expected and quite normal for us to opt into the GDPR and then look later at how best we might be able to help British business with data protection while maintaining high levels of protection for members of the public.” 

For several years it was in fact the ICO and the UK government who have pushed for the reform of EU law in aspiration of a continued evolution of the UK’s digital economy. The Information Commissioner Elizabeth Denham commented:

“Growth in the digital economy requires public confidence in the protection of (personal data) … The ICO is committed to assisting businesses and public bodies to prepare to meet the requirements of the GDPR ahead of May 2018 and beyond.”

Ms Denham also acknowledges that questions on how GDPR would work on the UK leaving the EU will still be asked, but this should not distract from the task of compliance with GDPR by May 2018.

To ensure your staff are fully aware of GDPR and how it will apply to your organisation, contact us for more information or request a demo on our eLearning course on GDPR.

Other Articles on Cyber Security Awareness Training You Might Find Interesting