How do you reconcile the free flow of information and the need to be open to the world with the demand to secure your data and protect employee and customer privacy? How does the law help you deal with data breaches and hackers in an ever-changing legal landscape? The EU General Data Protection Regulation (GDPR) coming into force in May 2018 is the most important reform of European data privacy laws for 20 years. Is your business prepared?
We are here to help. We can advise you on handling all types of data management issues on a daily basis, from staff member data and patients' medical records, to restrictions on outsourcing and records retention requirements, through to dealing with data leaks or cyber-attacks.
An efficient way to ensure compliance with data protection regulations, including the GDPR, and to build customer trust through transparency is to have your IT-products or IT-based services certified through the European Privacy Seal (EuroPriSe). Our admitted legal and technical experts can conduct the necessary evaluation for your certificate.
If you are a data controller or a data processor, under the GDPR you need to implement appropriate technical and organizational measures to safeguard the personal data processed in your business operation (including for human resources, marketing and commercial purposes) as well as keeping evidence of your personal data processing operations. Starting with an As Is Analysis, followed by a Gap Assessment, we can help you to identify the gaps and suggest the best options to close them; helping your firm become GDPR compliant. We have the data privacy experts to assist you in designing a data privacy programme, and even to support you in dealing with the records of processing activities, DPO related tasks, and data protection impact assessment. You benefit from the combination of our legal and technical skills allowing us to offer you comprehensive solutions for all your GDPR requirements.
Having your IT-products and IT-based services certified through an independent third party helps your business maximise transparency and build up trust. The European Privacy Seal (EuroPriSe) is a highly respected certification which is valid in all EU countries and which can be used for consumer marketing or public procurement. In addition, the fact that its awarding criteria align with the requirements of the GDPR, is an immediate indication to your customers that your business is GDPR-compliant. We have admitted EuroPriSe Legal and Technical Experts in-house. By covering both the legal and the technical side of the certification procedure you avoid having to engage two different firms, saving you both time and money.
As a response to technical developments and the ever-increasing number of data breaches, new and strict regulations are being enacted that require companies to treat privacy policies and data security as high priorities. Since these regulations are neither always clear nor uniform across different jurisdictions, ensuring compliance with data regulations and drafting the appropriate policies can be a major challenge. We can assist you in handling all types of data management issues including filing data applications with competent authorities, (cross-border) transfer of data, restrictions on outsourcing, handling data of staff members, customers, suppliers, patients etc., records retention requirements and implementation of whistleblowing hotlines.
Do you know what to do if you suffer a data loss? Many data protection laws and sector regulations provide for a notification duty in case of a data leak or data misuse. We can advise you on whom, when and how to notify, as well as represent you against potential claims for damages or administrative fines following data security breaches. Better still, we can advise you on the implementation of the best data loss prevention software to protect your business.
IT Remediation and Review
Take advantage of our tailor-made legal "incident response" service focusing on the first steps to be taken after a security breach is detected (detection, containment, eradication, recovery, follow-up). Depending on your preference, we work together with international and local IT security specialists to recover your systems, whilst preserving evidence for possible criminal and civil actions.
The internet and e-communication have brought unparalleled opportunities; unfortunately, not just for business. Cybercrime is one of the fastest growing areas of criminal law with more and more criminals exploiting the anonymity and speed of the electronic world to commit an ever-growing number of crimes. With offenders ranging from individual hackers to highly complex international cybercriminal networks, you need a team which has the size, the connections, the knowledge and the partners to react immediately. The close cooperation between our Data Protection, White Collar Crime, IT and Crisis Management specialists makes us highly effective in helping you.