About Aegis

Built by practitioners.
For practitioners.

Aegis DPO was not designed in a vacuum. It was built from years of real DPO engagements across Caribbean organisations — from the frustration of doing serious compliance work with tools that were never designed for it, and from a region that has been underserved by the global privacy software market for too long.

Every module in Aegis started as a manual process I was running for clients. Data flow maps in Word. Breach logs in spreadsheets. DSR deadlines tracked in calendars. At some point I stopped asking why no purpose-built tool existed for the Caribbean — and started building one.

S

Steven

Founder, DPMAS · Creator of Aegis DPO

Why Aegis Exists

The Caribbean privacy market has been ignored long enough.

The global data protection software market is built for GDPR. Every product, every template, every framework assumes a European context — European regulators, European enforcement timescales, European legal culture. Caribbean organisations are expected to adapt tools designed for a different jurisdiction and hope for the best.

That's not good enough. The Barbados Data Protection Act 2019 has its own structure, its own deadlines, its own enforcement mechanisms, and its own sector-specific overlays — from the FSC's 4-hour major incident rule to the 30-day DSR deadline triggered from identity verification, not receipt. These are not GDPR rules. Generic tools get them wrong.

Aegis is the first platform built specifically for this regulatory environment. Every rule, every deadline, every gap analysis flag, every document template is grounded in Caribbean law — not adapted from somewhere else.

Caribbean-specific by design Every rule is grounded in the Barbados DPA 2019, Jamaica DPA 2020, and Grenada PDPA 2023 — not adapted from GDPR.
Regulator-ready outputs Every module generates professional Word documents — not dashboards that only exist inside the platform.
Built from real engagements Every module maps to a workflow DPMAS already runs for clients — tested in practice, not designed in theory.
Precision over generality The 72-hour breach clock, 30-day DSR from verified identity, multi-select legal basis — the details that matter are exact.
Scalable across the region Built to expand — Barbados, Jamaica, and Grenada today. Every CARICOM jurisdiction with a data protection law, tomorrow.
About DPMAS

The consultancy behind the platform.

DPMAS — Data Privacy & Management Advisory Services — is a Barbados-based data protection consultancy providing DPO retainer services, compliance programme development, training, and cybersecurity advisory to clients across financial services, government, healthcare, and SMBs in the Caribbean.

Founded by Steven, DPMAS was built on the conviction that Caribbean organisations deserve the same quality of structured data protection advice that larger markets take for granted — delivered by practitioners who understand the local regulatory environment, not consultants applying a foreign template.

Aegis DPO is the product of that experience — the platform we wished existed when we started, now made available to every organisation that needs it.

DPO Retainer Services Outsourced Data Protection Officer for organisations without in-house expertise.
Compliance Programmes End-to-end DPA compliance implementation across all sectors and sizes.
Training & Awareness Staff training programmes tailored to Caribbean data protection law.
Privacy Assessments PIAs, DPIAs, vendor risk assessments, and data security reviews.
Caribbean Coverage Barbados, Jamaica, Grenada — and expanding across CARICOM.
Cybersecurity Advisory Data security assessments and incident response planning.

Platform Vision

Where Aegis is going.

We are launching Aegis DPO with eleven modules covering the core compliance lifecycle. But the vision is larger — a complete Caribbean data governance platform that expands as the region's regulatory landscape evolves, as AI governance obligations emerge, and as Caribbean organisations grow their own sophistication around privacy as a business discipline.


Early access participants will directly shape what gets built next. The modules DPOs engage with most will inform our V2 roadmap. That's not marketing language — it's how we intend to build.

Launch — May 2026 11 core modules · Early access cohort · Barbados DPA 2019 baseline
Now
V2 — Q3/Q4 2026 Client portal access · Staff self-service · Extended jurisdiction support
Next
Caribbean Expansion Full CARICOM coverage · Jamaica · Grenada · Trinidad & Tobago
Roadmap
AI Governance Module As regional AI accountability frameworks are formalised
Future

Be part of what we're building.

We're inviting a select group of Caribbean DPO professionals and organisations to join us at launch. Early access participants shape the product, help validate the platform, and get priority access as we grow.

Request Early Access Contact DPMAS directly