Services.

NWLexTech advises on EU privacy and digital regulation — GDPR across EU/EEA member states, the ePrivacy Directive (and member-state implementations), the EU AI Act, the Digital Services Act (DSA), the Digital Markets Act (DMA), and EU consumer protection law as it intersects with digital services. We also advise on UK GDPR, the Data Protection Act 2018, and PECR for UK-facing organisations. Non-EU/UK organisations with EU or UK user bases (US SaaS, global platforms) are a core part of the practice — we advise on extraterritorial GDPR exposure, EU Representative requirements, and cross-border transfer mechanisms (SCCs, adequacy, TIAs). Where matters require locally-admitted counsel in a specific member state (e.g. regulatory representation, formal legal opinions, litigation), we work alongside a partner law firm in that jurisdiction.

Discovery calls are scheduled within 48 hours of an accepted inquiry. Document Alignment Reviews are returned within 5–7 working days from receipt of all documents and intake answers. Full drafting engagements (privacy policies, DPAs, ROPAs, DPIAs, AI transparency notices) are delivered within 10–14 working days. Hourly advisory and quick-turn questions are addressed within the same working week, often same-day. AI Act classification and documentation engagements are scoped individually because timelines depend on system complexity and the documentation available. Anything urgent (regulator deadline, incident response, deal-driven) is flagged at intake and prioritised accordingly.

Yes. A standard mutual NDA can be signed before any substantive discussion — happy to use either party's template. For engagements that proceed without a separate NDA, the engagement letter contains a comprehensive confidentiality clause covering all client information, documents, and discussions, with carve-outs only for legally required disclosures.

Fixed-fee engagements (Document Alignment Reviews, drafting, AI Act consultancy) require a 50% deposit on signature of the engagement letter, with the balance due on delivery. Hourly advisory is invoiced monthly in arrears with 14-day payment terms. We accept bank transfer (SEPA, Faster Payments, SWIFT), Wise, and Stripe. Default invoicing currency is EUR; GBP and USD accepted by arrangement. VAT applied where applicable.

You'll receive an acknowledgement email within a few hours and a substantive response within 24 working hours proposing a free 15-minute discovery call. The discovery call is used to understand the regulatory framing of your problem (which regimes apply, what the actual exposure is), confirm scope fit, and identify whether what you need is a review, a drafting engagement, or hourly advisory. Within two working days of the call, you'll receive a written scoping proposal with a fixed fee and timeline. On acceptance, we send an engagement letter and the deposit invoice, and the work begins on receipt of the deposit and intake materials.

NWLexTech is a specialist privacy, AI governance, and digital regulation consultancy — not a law firm, and we do not provide regulated legal practice in any jurisdiction. The practice is led by a specialist with formal EU legal training (LL.M. in EU law) and credentials in privacy and AI governance, with a portfolio focused on GDPR, ePrivacy/PECR, the DSA, and the EU AI Act for SaaS, consumer apps, and AI products. Our deliverables — compliance reviews, drafted documentation, risk assessments, advisory memos — are consultancy work product, not regulated legal advice or formal legal opinions, and should not be relied on as a substitute for advice from a locally-admitted lawyer where one is required. For matters requiring regulated legal practice (representation before supervisory authorities, formal legal opinions for financing or M&A, court proceedings), we coordinate with locally-admitted counsel.