As many of you may already know, Regulation (EU) 2016/679 of the European Parliament and of the Council, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), will enter into force on May the 25th 2018. This regulation is presently a popular topic of discussion and it is normally referred to as the regulation GDPR.
We would like to inform you that our law office has been intensively dealing with the issues regarding the implementation of the GDPR (i.e. how to comply with the duties provided for therein), participating at various conferences and seminars in relation to it, and preparing the necessary legal documentation therefor; we are doing all this for the purpose of helping our clients to experience a smooth and correct implementation of regulation GDPR in their internal processes.
The foundation of the implementation should be an audit of the current situation regarding the management of privacy related aspects in our client’s businesses (risk assessment, GAP analysis, assessment of the measures to be taken, assessment of the documentation currently used in the field of personal data protection and management of the risks on the grounds of the GDPR) and, afterwards, adopting the required measures. We are ready to assist you in this process.
We currently await the adoption of further national execution rules, which means that there is still some spare time to deal more intensively with the questions regarding the GDPR. Nevertheless, given that the infringements of some of the duties stated in the provisions of the GDPR can bring about high administrative fines – it is advisable to begin as soon as possible with the first steps in preparing the implementation of the GDPR.