General Data Protection Regulation (GDPR)

From the 25th of May 2018, the new EU General Data Protection Regulation ( GDPR ) comes into effect. GDPR builds on the existing EU Data Protection Directive and will challenge you and your organization in terms and introduces new challenges on how you process, secure and access your data as well as your overall security and breach notifications.

How can we help you?

Our team of experts will work with you to determine the best possible approach and solutions. BAAER consultants are specialists in many different industry sectors and information technology experts.

From beginning to end

  • Understanding how your personal data processing activities align with GDPR requirements
  • Helping you to identify and categorize your organization’s personal data
  • Performing Gap analysis
  • Incident management process review
  • Security Health Check and Maturity Assessment
  • Data Protection Impact Assessment (DPIA)
  • Security architecture consulting
  • Data protection by design
  • DPO consultancy
  • And more

New personal data protection rules and rights according to GDPR

  • Right to be forgotten – when a subject no longer want his/her data to be processed, and if there are no grounds to retain it, the data should be deleted.
  • Data handling transparency – more transparent and easy to understand information how data is processed.
  • Privacy by design – is already a legal requirement with the GDPR. It means to include data protection from the onset of the designing of systems, rather than as an addition afterwards.
  • Fast data breach detection – businesses and organizations are obliged to inform subjects and data protection supervisory about any data breaches without undue delay.
  • Data portability – the right for a data subject to receive the personal data concerning them, and the right to transmit that data to another controller.
  • Informed consent – companies will no longer will be able to use personal data without clear affirmative actions for consent from users.
  • Data Protection Officer (DPO) – requires data controllers to designate such a new position in companies with more than 250 employees and in firms, which are involved in data processing operations.

Useful GDPR Articles

Do you want to grow your business?

we can do it together