Compliance Scorecard Acquires Privacy MSP To Strengthen Governance, Compliance Services: Exclusive
‘Compliance is no longer just about ticking boxes, it’s about adding value and differentiating yourself in the marketplace,’ says Tim Golden, founder and CEO of Compliance Scorecard.
Compliance-as-a-Service company Compliance Scorecard has acquired consulting firm Privacy MSP to expand its offerings in the compliance and governance space, further reduce clients’ risk and meet privacy regulations.
The acquisition aims to provide MSPs with the expertise and tools needed to navigate the complex world of compliance, privacy and risk management, according to Tim Golden, founder and CEO of Dover, N.H.-based Compliance Scorecard.
"We’ve always known that the next step in scaling Compliance Scorecard was to bring on a team with deep expertise in privacy and risk management," Golden told CRN in an exclusive interview. “One of our big goals for 2025 is to help MSPs market compliance services to their own customers. We’re developing a series of resources, including webinars and sales enablement tools, to make it easier for MSPs to sell compliance as a service and drive business growth.”
About five employees from Phoenix-based Privacy MSP will join Compliance Scorecard. Terms of the deal were not disclosed.
As part of the acquisition, Privacy MSP founder Brian Blakley will join Compliance Scorecard as chief risk officer and lead a newly formed professional services division.
"Brian and his team at Privacy MSP have built a proven, scalable model for delivering professional services that will complement our Compliance-as-a-Service platform,” Golden said. “It’s a perfect fit, the peanut butter to our jelly.”
The professional services division will offer MSPs a range of customized service packages through three models: managed services, which will implement and manage compliance initiatives on behalf of the MSP; self-guided solutions where MSPs will receive tools and guidance to independently manage their compliance programs; and a partnership model, which is a hybrid approach where Compliance Scorecard works alongside MSPs to co-manage compliance programs through internal and external resources.
“We know compliance can feel overwhelming and it’s easy to think of it as just another box to check. But we’ve seen firsthand how, when done right, governance and compliance can transform how MSPs operate and engage with their clients,” Blakely told CRN. “By bringing together the platform and professional services, we’re giving MSPs the tools and support they need to not just meet compliance requirements but to use them as a way to build trust, improve security and even uncover new business opportunities.
“As former MSP owners, Tim and I understand the day-to-day struggles of juggling clients, managing operations and trying to stay ahead of evolving regulations,” he added. “This partnership is about meeting MSPs where they are, making governance and compliance approachable and helping them move forward confidently at every step.”
The acquisition also highlights an emerging trend in the industry: compliance as a potential revenue driver. With increasing regulatory pressure from sectors like health care, finance and government, MSPs are finding that compliance services can be a key differentiator and a valuable offering to their clients, according to Golden.
“Our goal is to help MSPs double their revenue by offering compliance services,” he said. “This isn’t just about reducing risk, it’s about opening up new business opportunities.”
By combining the two companies, MSPs can now navigate the challenging landscape of compliance and better serve their clients, said Josh Hohbein, information security lead at Poway, Calif.-based MSP CentrexIT.
“This acquisition marks a significant step forward as now Compliance Scorecard provides a comprehensive solution that addresses both the technological and human aspects of compliance,” he told CRN.
Golden said the acquisition of Privacy MSP and the launch of the professional services division sends a clear message to MSPs: Compliance is no longer optional, it’s essential for success.
“We want MSPs to understand that compliance is a strategic advantage,” Golden said. “By adding compliance services to their portfolio, MSPs can reduce risks, increase revenue and become trusted advisers for their customers. Compliance is no longer just about ticking boxes, it’s about adding value and differentiating yourself in the marketplace.”