We experience an increasing interest for advice concerning data protection and data privacy. This tendency is understandable as there is good reason to be at the forefront of the applicable rules and the upcoming personal data regulation. In our opinion, the focus on proper processing of personal data in general is already increasing – and the increased focus is found among both employees, customers and other business partners. This means that a fair and secure processing of personal data has become an important element in corporate branding.
The EU regulation on personal data (“GDPR”) comes into force on 25 May 2018. Among other things, the GDPR places increased demands on the companies’ documentation for the processing of data and further includes a substantially increased level of sanctions.
Our experts in compliance and data protection law customize their advice to the individual client. For some companies it may be relevant to do a compliance audit. Often, such audit will be determined on the basis of a preliminary risk assessment in order to ensure that the work measures up to the potential value created for the company.
We provide advice to both private companies and public authorities.
We offer advice on subject matters such as – but not exclusively:
- Fundamental principles for personal data processing
- General requirements for collection, processing, preservation and passing on of personal data
- Data protection concerning employees
- Processing of personal data of customers and other business associates
- Data transfer outside of EU
- Agreements between data controllers and data processors
- IT safety policies
- Directions to employees who handle personal data
- Personal data policies or other information to data subjects
- The rights of data subjects
- Requirements for consent
- Requirements for documentation
- Identification of data flows
- Data protection compliance audit
- Data Protection Officer