The security and protection of personal data is one of the biggest legal challenges of our time. The European Union’s General Data Protection Regulation (GDPR), the Freedom of Information Act and other relevant legislation impose a number of obligations that individuals and businesses that process personal data must always bear in mind. In the event of non-compliance with these legal provisions, the National Authority for Data Protection and Freedom of Information (NAIH), acting in its supervisory capacity, is entitled to take various measures, such as imposing data protection fines. I have the expertise and experience to assist my clients in the interpretation and application of data protection rules, whether it is corporate data processing, data protection auditing or legal representation in data protection matters.
My main services in this framework include:
- drafting, reviewing and updating privacy policies and privacy notices
- drafting and reviewing data handling and processing contracts
- conducting data protection impact assessments and balancing of interests tests
- preparation of online prize draw policies
- preparation of full legal regulation on CCTV
- full data protection due diligence
- development and review of data protection procedures and processes
- legal representation before the National Authority for Data Protection and Freedom of Information (NAIH)
- legal representation in administrative proceedings for judicial review of NAIH decision