London – 020 305 68855         Cornwall – 01726 247047


Meet the team

Kristy Gouldsmith

Managing Director / consultant

Kristy has an extensive legal background, having spent ten years as a barrister and five years as law lecturer. She has three university degrees including two law degrees (LLB and LLM) and a teaching qualification (PGCE). Kristy is also a Certified Information Privacy Professional for Europe (CIPP/E).  Along with data protection law, Kristy is a legal specialist in employment law, contracts, torts and human rights.  Kristy is a non-executive director for Obsequio Software.

Capt David Gouldsmith

General manager

For the last 35 years, David has been captain on numerous multi-million dollar assets, ensuring cost-effective, stream-lined and compliant operations. David is a Master Mariner in both the UK and Canada with a proven track record of auditing in shipping, ferries and off-shore oil and gas sectors.    

Jonathan Small


Jonathan has an extensive technology and risk career in Telecoms and Financial Services, ranging from Application Development and Unix Server Administration into Information Security, Data Protection and Risk Management.  Jonathan delivers great results by building proactive partnerships using an easy and open communication style.  He brings four stripes to his engagements – Technology Knowledge, Risk Knowledge, Be an Educator/Translator and finally a Referee.

Chris Richardson


Chris has spent most of his 15 year career in the hospitality industry, with dabbles in insurance and recruitment along the way. He worked as a Data Manager for one of the Hospitality industry’s most well-known, market leading suppliers and is CFSP certified. Chris is experienced in carrying out GDPR audits, and has helped numerous companies along the road to becoming compliant. As well as auditing, Chris also owns a successful data privacy software company.

Helen Nicholl


Educated to degree level, Helen has over 20 years of experience within major corporate service industries. She has a proven record of generating and building relationships, managing projects from concept to completion and designing training strategies and coaching both individuals and teams. 

Helen previously worked for BMI Healthcare, an independent provider of private healthcare, as the Healthcare Marketing Manager. Helen was responsible for the marketing plans for the hospitals, building the client base, encouraging client and surgeon retention and positioning the hospital’s products and services favourably within the healthcare market.  She oversaw patient welfare and ensured that correct procedures were followed by all staff within clinical governance guidelines.

Paul Clifford


Paul has 15 years in Information security and is a BSI certified ISO27001 Lead Implementer with a good knowledge of Cyber Security/ Resilience in general. Paul has worked in different sectors such as the Services Industry, Investment Banking, and International Law firms with exposure to some of the largest companies in South Africa, New Zealand, and the United Kingdom. He is consistently researching and studying Data Protection as well as preparing for the CIPP/E certification.

Simon Hinks


Simon spent much of his career working for high street banks and building societies, running their data and direct marketing teams. He also spent time as a merchandising manager and as a brand manager. For the last 15 years, he has helped many different types of businesses with their marketing and data needs. Simon has delivered many presentations to SMEs about GDPR and featured on panels for the payment card industry. Simon is an advocate of the GDPR as he believes it will improve the business management of data and should create great brand empathy between customers and business in the future. He is  member of the DMA (Direct Marketing Association) and the GDPR Institute.

Nathan Heyes


Nathan has an FdSc in Law, a Level 2 Accounting qualification and is currently in the final stages of a BA (Hons) in Business, Enterprise and Leadership. 
 He has excellent communication skills and applies them effectively to ensure that a client’s journey to GDPR compliance is as smooth as possible. 
 Nathan has experience in various industries and a sound working knowledge of employment, contract and tort law. 
Sapphire Consulting Group Ltd is a limited company registered in England and Wales.

Registration number: 10427754. Registered office: Central Point, Beech Street, London EC2Y 8AD.

VAT Registration number: 285986235