CIPHER Distinguished as a Top 15, American-Based GDPR Advisor

As the European Union implements the much-awaited General Data Protection Regulation (GDPR) to synchronize data privacy laws for its citizens, most U.S. firms, including healthcare companies, are still working to comply with the rigorous regulation. 

GDPR, which containing 99 articles and 173 recitals, has key requirements that directly impact the way organizations implement IT security, thus addressing the key security tenets of confidentiality, integrity and availability of data.

Top 15 American GDPR Consultants Black Book Research

According to the latest forensic data analytics survey, only 48 percent of all industries have a plan to comply with GDPR and only 25 percent of U.S. healthcare industry firms.

"It is imperative for U.S. firms to plan and continue their efforts towards compliance to safeguard the continuity of business within the EU and avoid substantial penalties because of non-compliance," Doug Brown, founder of Black Book Market Research LLC.

For North American companies with operations in the EU, data security measures will now have to work alongside legal and compliance teams to ensure maximum adherence to GDPR. 

"With data privacy concerns, particularly medical information on the rise and stringent regulatory requirements like GDPR coming into force, organizations have no choice but to redefine the way they approach data management," said Brown.

Non-compliance with GDPR can result in heavy fines and increased regulatory actions. Organizations that collect personal data must be able to prove that they consistently and reliably comply with GDPR privacy and security principles.

A new study from Black Book Market Research LLC reveals that only 29 percent of U.S. organizations surveyed are embracing the GDPR globally as an opportunity to improve privacy, security, data management or as a catalyst for new business models, rather than simply a compliance issue or impediment. 

GDPR is a fairly complex piece of legislation with far-reaching impact not just within the European Union but the United States and the world as well. 

U.S. companies operating in the EU will have to change the way they capture, process and use data of EU nationals. "It is a complicated process involving in-depth understanding of healthcare data privacy laws and policies in particular."

GDPR applies to all the personal data of any employee, consumer, patient and/or customer who are in Europe. 

"With strong data protection strategies in place, consumers will place greater confidence in businesses and businesses will minimize the financial fall-out of a breach," said Brown.

From a survey of nearly 380 U.S. companies, Black Book reports the top 15 GDPR solutions and services rated on 20 key performance indicators of consultant and client satisfaction.

The U.S.-based advisory firms receiving the top honors from North American clients on GDPR assessment, risk mitigation, readiness, compliance and response actions include (with U.S. headquarters location identified):

  • Data443 Risk Mitigation (North Carolina)
  • SailPoint (Texas)
  • CIPHER (Florida)
  • TrustArc (California)
  • DXC Technology (Virginia)
  • Caserta (New York)
  • Trustwave (Illinois)
  • SysArc (Maryland)
  • FTI Consulting (Maryland)
  • Templar Shield (California)
  • TBG Security (Massachusetts)
  • SecureWorks (Texas)
  • Microsoft (Washington)
  • HPE (California)
  • IBM (New York)

About Black Book Market Research LLC and Black Book Security

Black Book Market Research LLC, its founder, management and staff do not own or hold any financial interest in any of the vendors or public relations firms covered and encompassed in the surveys it conducts. Additionally, Black Book does not contract for, barter, exchange or accept direct services from any public relations firm mentioned in the rankings. Black Book reports the results of the collected satisfaction and client experience rankings in publication and to media prior to vendor/firm notification of rating results and does not solicit vendor/agency participation fees, review fees, inclusion or briefing charges, consultation requirements and/or vendor collaboration as Black Book polls clients.

For methodology, auditing, resources, comprehensive research, see or

Since 2010, Black Book Market Research LLC has polled the vendor and service firm satisfaction in the software/technology and managed services sectors around the globe. 

Detailed results on the cybersecurity rankings, see: or

Did you enjoy this blog article? Share it with your friends or comment below.



Founded in 2000, CIPHER is a global cybersecurity company that delivers highly accredited SOC I & SOC II Type 2 and ISO 20000 & ISO 27001 certified Managed Security Services and Security Consulting Services with expertise across PCI DSS holding the PCI QSA and PCI ASV certifications. We have received many awards including Best MSSP from Frost & Sullivan for the past six years. These services are supported by the best-in-class security intelligence lab: CIPHER Intelligence. Our offices are located in North America, Europe, and Latin America with 24×7×365 Security Operations Centers and complemented by strategic partners around the globe.

Our clients consist of Fortune 500 companies, world-renowned enterprises, and government agencies with countless success stories. CIPHER provides organizations with proprietary technologies and specialized services to defend against advanced threats while managing risk and ensuring compliance through innovative solutions.

Recent Security Posts


Twitter Feed