The General Data Protection Regulation (“GDPR”), effective from May 25, 2018, applies to every EU-based controller or processor of personal
data. The GDPR aims to ensure a higher degree of data harmonization across EU nations. Non-compliant data processors and controllers risk
significant fines and penalties, up to the higher of 4% of global business turnover or Euro 20 million, depending on the nature of the breach.
Complying with the GDPR is a significant challenge for businesses across the EU. This is due to the potential impact of non-compliance fines
and sanctions, as well as the long-lasting nature and high complexity of the project. In response to this, Legal Partners is dedicated to
developing and delivering the best data privacy management solutions.
The deep Privacy team’s expertise and methodology addresses the following needs:
- Planning and implementation of personal data protection policies and intra-company/intra-group processes related to the collection, management and breach of personal data.
- Planning and implementation of a Code of Conduct regulating personal data protection.
- Appointment of a Data Protection Officer ("DPO"), mandatorily required under the GDPR.
- Review/reform of the business' current status of consent on data processing in order to adopt the GDPR's enhanced requirements for obtaining data subject consent.
- Redesigning and customizing information technology (IT) systems in order to accommodate and support the GDPR's requirements on data collection, management and breach notification.
- Maintaining a Record of Data Processing Activities ("RDPA").
- Ongoing personnel training on the GDPR.