HOME


 

 

uk gdpr banner


 Expertise

We pride ourselves on providing outstanding customer service to order to guarantee that all of our clients are 100% satisfied.

We are also covered by Professional Indemnity Insurance.


  Discretion

You can trust in us – your privacy is our top priority.

As your authorised AUDITOR / DPO / EU/UK - REPRESENTATIVE we act in Your company best interest.


Efficiency

We guarantee fast, professional and comprehensive advice in GDPR, UK GDPR & Data Protecton subject.


The UK  General Data Protection Regulation (UK GDPR) and The Data Protection Act 2018 are now in force.

The main aim of those regulations is to give EU/UK citizen control over the use of their personal data.

The regulation is designed to protect individuals from modern issues, including:

  • Identity Theft
  • Nuisance Call
  • Junk mail
  • More control over how their personal is used

 What you need to comply?

 

  1. Understand the legal framework.
  2. Classify your data and obtain written consent from your customers, suppliers, employee (etc.) for collecting, handling, storage and/or share their data with third party.
  3. Have documentation, policies and procedures, such as:
  • Personal Data Protection Policy (Article 24)
  • Privacy Notice (Articles 12, 13, and 14)
  • Employee Privacy Notice (Articles 12, 13 and 14)
  • Data Subject Consent Form (Articles 6, 7, and 9)
  • Data Breach Response and Notification Procedure (Articles 4, 33, and 34)
  • Inventory of Processing Activities (Article 30)
  • And other required by the Law, depends of circumstances.

4. Train your staff. 

5. Protect personal data and monitor its correct operation

 

If You are NON- EU Organisation, you need also:

  • Appoint EU Representative, who acts on behalf of your NON – EU Company with regard to your obligations under GDPR. The representative acts as a direct contact to the authorities and your EU Customers, while also being an authorised agent to receive legal documents

or

  • If your company processes personal data ‘occasionally’, and is unlikely to result in a risk to the rights and freedoms of natural persons, then you are exempt from duty to have an EU representative.

      In this case, however You must audit your company and be able to prove this circumstances by a document.


Exactly the same obligation (appoint UK - Representative) exists from January 1, 2021 for non-UK organizations that operate in the Great Britain.


Any kind of business (EU or NON-EU) must comply with GDPR / UK GDPR law to avoid potentially huge fine or/and civil court claim for compensation for a data protection breach.

Penalties for non-compliance with the :

  • EU GDPR are potentially huge, at up to €20m (or 4% of global turnover, whichever is greater)
  • UK GDPR - a maximum fine of £17.5 million or 4% of annual global turnover – whichever is greater

To download free guides or buy any document / e-course you might need - visit our Data Protection School


QUALIFIED EUROPEAN LAWYERS ♦ PROFESSIONAL CONSULTING  QUALITY SERVICE

ALL YOU NEED IN ONE PLACE 


privacy policy document

Data Protection for EU and Non EU Organisations