DGxC Policy Documentation

November 2025

To support a time-sensitive RFP submission for a UK-based technology consultancy, GooseOps prepared a full suite of policy documents covering GDPR compliance, business continuity, anti-bribery, gender equality, information security, and more. These tailored statements were designed to meet UK and EU regulatory expectations while reflecting the company’s size and operational realities. The final set included both signed agreements and unsigned policy statements, formatted for easy review by procurement teams.

Challenges

Creating a suite of compliance-ready documents for a lean consultancy like DGxC involved more than just writing policies. Key challenges included:

  • Small company context: With no internal compliance function, the docs needed to be appropriately scoped. Professional, but not over-engineered.

  • Tone and perception: Policies had to sound credible to enterprise clients without pretending DGxC was a large corporation.

  • Real-world process alignment: These weren't just documents for show. Each policy required internal conversations with DGxC’s leadership about what processes actually existed or needed to exist to support the promises being made.

  • Ownership and signatures: Some docs (like the DPA) required founder signatures or formal sign-off, while others were framed as internal policies or statements of intent.

  • Third-party optics: Listing the GooseOps consultant (me) as the compliance contact gave the documents an independent, audit-ready feel without requiring an internal hire.

  • Clarity and QA: Inline annotations highlighted areas requiring review or substitution (e.g., fake email addresses), and the entire set was reviewed for coherence, broken links, and annex references using automated checks and human QA.

By combining strategic input with document drafting, this project helped DGxC confidently respond to a major RFP while laying a foundation for future compliance maturity.

Deliverables

7 compliance and governance policy documents:

  1. Custom formatting and tone tailored to a lean consultancy

  2. Inline review notes and sign-off guidance for founders

  3. Email and authorship framing for external perception

  4. QA checks for broken links, annexes, and consistency

Conclusion

GooseOps takes an editor-first approach, combining technical precision with usability-driven documentation. Every CMS element is catalogued, version-controlled, and supported with short-form video walkthroughs and workshop recordings to ensure long-term usability across teams.

GooseOps delivers structured content models and editor-ready CMS guides that scale with your platform and your team.

Let GooseOps help you demystify your content model and empower your teams.

Contact Us
Previous

Study 3