GDPR compliance, meaning, rights

The GDPR (General Data Protection Regulation) is a new Regulation of the EU on personal data protection.

GDPR is not just a law; the Regulation is in force in more than twenty countries and potentially extends its regulatory significance even to those outside the EU who would like to participate in the EU internal market trade.

In addition, the GDPR is a global model of personal data protection, an example of good practice, and is followed by a number of updated national data privacy laws. In other words, even if the GDPR does not apply directly in your country, companies may still face the question of “how to comply with the GDPR” and “how to prepare for the GDPR”.

Interestingly, many outsourcers need a deployed GDPR compliance toolkit. We gladly advise on the GDPR-related matters, prepare the GDPR documents for a website or application, and conduct a GDPR audit. The GDPR service you need may well be available in our portfolio and be described in a separate article. We have a successful experience of handling the GDPR preparation in various fields.

In this blog, we tell a bit more about the GDPR compliance in general, as well as share secrets and build a solid GDPR plan for your case. Ensuring the ongoing GDPR compliance, drafting GDPR documents, and preparing for GDPR with our advice will become an easy and enjoyable experience. Even if you just want to explore the outcomes of your business processes, launch a new GDPR-compliant product, or enter the market covered by GDPR, our blog will be useful for you.

You can learn more about our offer on the GDPR compliance service page.

Dubas Kateryna

IT / privacy lawyer

Australian Privacy Act. New Australian data protection rules.

Overhaul of the Australian Privacy Act

Australia is a great country to work with, as it is highly digitalized, developed, and English-speaking. Thus, selling services to or establishing a company is a good jurisdiction. With this regard, it is essential to…
Five reasons why pharmaceutical companies need a DPO in 2024

Five reasons why pharmaceutical companies need a DPO in 2024

A data protection officer (DPO) is a specialist who helps companies ensure compliance with international data protection laws. Such a specialist can be a member of the team or an external DPO and perform tasks…
Transfer of personal data from the UK to the US and other countries under the UK GDPR. What are the UK Extension to the EU-US DPF and IDTA/UK Addendum?

New instruments for data transfer from the UK: UK Extension to the EU-US DPF and IDTA/UK Addendum

Companies often need to transfer personal data to other countries while conducting their business operations. Since personal data is not everywhere reliably protected by law, there are plenty of requirements for its legal transfer. In…
Data Protection in the Workplace: Employer Guidance

Data Protection in the Workplace: Employer Guidance

Failure to comply can result in a significant fine imposed by the Supervisory Authority. For example, in 2020, the Data Protection Authority of Hamburg imposed a 35.3 million euro fine on H&M for violation of…

Personal data protection: why a Data Transfer Impact Assessment should be part of your GDPR compliance

International data transfers in GDPR compliance are complex, as data are transferred to third countries outside the European Union (EU) or the European Economic Area (EEA). Suppose you are interested in personal data protection issues.…
Adopting a code of conduct as a step to GDPR compliance

Code of conduct under the GDPR: meaning and content

The role of codes of conduct in protecting personal data and what you need to know about compliance (and the consequences of deciding to comply but not doing so). In this article: As a reminder:…
Drones and collection of personal data. GDPR: privacy risks.

Drones and privacy: data protection risks

Unmanned flying aircraft (drones) have rapidly become a part of our lives during the last decade. Since the invention of modern prototypes of civil drones, almost everyone has had an opportunity to use drones for…
Understanding how to respond to GDPR requests from data subjects is important

Data subject requests under the GDPR. Why is it essential to respond to them correctly and on time?

According to the GDPR – General Data Protection Regulation – residents of the European Union (“EU”) can send requests regarding their data to all legal and natural persons who process it. Those requests most often…
Анонімізація і псевдонімізація даних за GDPR: що це означає на практиці

Case T-557/20: the importance and impact on data protection

Every day, more and more companies face the problem of personal data protection. As companies are increasingly scrutinised for proper data protection, it’s worth paying close attention to the latest best practices to avoid dealing…
How AI affects the Privacy Policy and Terms of Use

How AI affects the Privacy Policy and Terms of Use

Congratulations on a new feature in your application! Now that you have programmed it and started implementing it (and the release is coming soon! Or has it already happened?), an urgent question arose: Do I…