Hi all —
I’m the founder of CSAS, a small cybersecurity advisory we launched two months ago out of New Zealand. We’re a team of three directors, focused on helping solopreneurs and small teams move beyond DIY setups toward infrastructure that respects privacy from the start.
We don’t build our own privacy tools, but we implement vetted third-party solutions — things like cookie consent, policy management, and secure email. Our work aligns with GDPR, UK GDPR, and the NZ Privacy Act, with a strong emphasis on enablement over legal interpretation.
We’d love to hear from others here:
- How are you helping individuals or smaller orgs put privacy into practice?
- Are there frameworks or tools you rely on — or avoid?
- What do you see as the biggest gaps between privacy regulations and how things get implemented?
Happy to share what we’re seeing on the ground, and very open to learning from others working at this intersection.
— Philip