With the introduction of the General Data Protection Regulation (the GDPR) a lot of businesses have to deal with the new legal obligations and whatever it entails for data controllers and processors. Extra caution is advised given that fines are provisioned under the new regime.

A clear implementation framework is lacking at the moment, but our office has the necessary academic and practical experience to deal with even the most demanding data protection case.

Part of our practice deal with compliance with the GDPR. We advise data controllers and processors, in order to adopt the necessary organizational and technical means to avoid infringing data protection legislation. The level of compliance can either be on a high-level basis, providing general guidelines, or an in-depth analysis analyzing the business practices and, with the help of the IT department, establish new business practices.