-  GDPR is the General Regulation on the Protection of Personal Data of EU Citizens, that is, the General Data Protection Regulation is a new legal framework that prescribes how to use this data. This means that any company or organization that processes information about the identity of EU citizens in any way will have to comply with the GDPR rules, even if its seat is outside the EU territory. From May 25, 2018, GDPR will come into force. Penalties for violation of the rules amount to up to 4% of the company's total annual income, or up to 20 million euros for large systems and international companies.

-   Personally identifiable information, in addition to names and surnames, are all those data that "arrive" to the person (JMBG, e-mail, IP address, number of visits to a site), although its identity is not known. Any activity related to this information is considered to be the treatment, even the least invasive ones, such as collecting without the ability to inspect, store data, and the like.

-   If your business is in any way related to data relating to natural persons, whether you collect data for your business or servicefully process someone else's data, you are applying the rules on personal data protection and there is no difference between national legislation and GDPR -a.

-   With the entry into force of the GDPR, it can be said that it is starting a completely new era in relation to the rights of individuals and their personal data which are determined by the right to transparency of processing (Articles 12-14), the right to access data (Article 15), the right to the correction (Article 16), the right to be deleted ("the right to oblivion") (Article 17), the right to limit processing (Article 18), the right to transferability (Article 20), the right to object (Article 21 ), the right to oppose the adoption of automatic individual decisions / profiling (Article 22).

-   In order for your company to comply with GDPR, you need to prepare, document and establish a data management system. It's exactly where we can help you and give you a unique solution on a turnkey basis.

The procedure consists of the following activities:

- Audit of processes and procedures

- Gap analysis

- Reengineering the organization

- Managing GDPR risks

- Insurance


Contact us

Download complete form