Who We Are

 Your Trusted Advisory Service

At iSTORM we believe that the regulations, standards and frameworks that underpin good data protection and information security practices can be beneficial to every organisation.

We take a pragmatic, risk based approach to help our clients create real world, workable frameworks that can deal with a wide range of information security and data protection related challenges.

Our management team has more than 2 decades of  experience, covering information security, cyber security, ISO 27001, information governance and data protection.

We have worked within organisations from across the world in sectors as diverse as charities/not for profits, pharmaceuticals, healthcare, automotive, space exploration and financial services.

We understand the issues that 21stcentury businesses face and our hand picked team of experts are here to provide pragmatic support to cover all your governance, risk management and compliance needs.


Culture is key!

We believe that people and processes are two of the most important factors when creating a sustainable compliance framework.

Engaging and empowering the people within your organisation is essential if you want to create a culture that people want to be part of. 

We have created a brand that inspires, and our clients trust us to deliver.

Success – We believe in working in partnership to achieve your goals in a sustainable way, and that success should be celebrated. We really know how to celebrate! We want our people to succeed too and we are proud that they want to be part of our journey.

Passion – our people love what they do and they look forward to doing it! They want to share their knowledge with you and help you be the best you can be.

Integrity – We believe in open and honest two-way communication. We are not afraid to tell it how it is and we like to continuously improve. We will always ensure you get maximum value from working with us.

Agility – We are always one step ahead – the bad guys don’t stand still, so neither do we. Our solutions are flexible and tailored to meet the needs of your business and aligned to your appetite for risk. One size does not fit all!

Richard Merrygold

Richard Merrygold

Co- founder & Managing Consultant

“This subject doesn’t have to be boring and it doesn’t have to be complicated. It can be the key to better customer relationships, increased levels of trust and a greater understanding of your people.”

An experienced Data Protection leader, Richard has spent the majority of his professional career working in privacy. He has travelled globally supporting organisations across healthcare, pharmaceutical, technology and financial service sectors.

Throughout his career Richard has gained the ISEB/BCS Data Protection Certificate, become a qualified internal auditor and delivered NHS secure network N3 connection to pharmaceutical companies.

Richard is a firm believer in engaging on an operational level and taking a risk based, pragmatic approach. He takes pride in building sustainable privacy frameworks, providing real world, workable solutions to a wide range of challenges.

Richard is a regular keynote speaker and commentator on data protection and privacy matters and sits on a number of advisory panels. He has produced training videos for Thomson Reuters and the DMA (Direct Marketing Association) and was voted in the 2018 Data IQ Top 100 as one of the most influential people.

He is also a committee member for the Data Protection Forum, a specialist data protection organisation based in London.         

Talk to me about watches, travel, socialising, cars and anything you are passionate about!

Experienced in providing advice and guidance on a variety of standards, frameworks and regulations from helping global organisations to complete multi-million pound projects through to supporting SME’s to implement basic security and privacy controls.

James helps to identify the most effective and sustainable solutions for any risk management challenge.

Throughout his career, James has worked across multiple sectors including automotive, aerospace and defence, healthcare and retail. He has helped to deliver complex penetration testing programmes, multi-standard implementations (including ISO27001, NIST, SOC2 & ISO22301) and data privacy solutions, including GDPR compliance and outsourced Data Protection Officers.

James is an ISO 27001 Lead Implementer, a GDPR Practitioner and holds certificates in Managing Cyber Security Risk, PCI DSS and ISO 22301.

James is well travelled both professionally and personally, with his career taking him to Venezuela, Mexico, Hong Kong and the Middle East.

Talk to me about travel, sport, wine and great food!

James Pearson

James Pearson

Co founder & Client Services Director

“I pride myself on providing the best customer experience possible. This is the key to ensuring success for both iSTORM and our customers. I’ll always go the extra mile to make sure that the service we provide is second to none”

The support received by iSTORM solutions over the past 18 months has been excellent. As well as delivering on the contractual requirements, they have gone above and beyond expectations to provide an outstanding service which is fully supporting all our data protection requirements.

Sally Woolston

Director of Quality Assurance (Group), Bionical Solutions





Privacy - Security - Penetration Testing : Your Trusted Advisory Service



Head Office
Elizabeth Court
Church Street
Stratford Upon Avon
CV37 6HX

Tel: +44 (0)1789 608708


Company Registration Number

Company VAT Number
297 9625 30