As from May 25th, 2018, the new EU General Data Protection Regulation (GDPR) (679/16) requires all organisations, that hold personal data related to EU data subjects, to more effectively manage these data. The GDPR transforms the way personal data is collected, shared, and used globally, and is described by experts as an ambitious, complex, and strict framework. By many, it is described as one of the most distractive legislations for the business sector. It transforms many of the traditional ways we used to do business. Therefore, it’s implementation requires among other thing, serious business process reengineering.

All organisations will have changes to make in policy, processes and contracts, as well as in technical and organisational compliance measures. In some instances, those changes could be complex and significant. Compliance with GDPR requires a combination of legal, business and technical skills from GDPR experts. Legal skills are needed to accurately assess the legal basis of personal data processing, to amend existing or draft new contracts for collection of personal data or its transfer to other processors or joint controllers, to prepare correct statements of consent and draft effective privacy policies and notices, etc. Business skills are required to understand and re-engineer the business processes of an organization, to guide the data flow mapping, to assist the organisation to define their data privacy policy. Thorough business understanding and skills are needed, to transform the GDPR compliance into a competitive advantage for the organisation and not yet another regulatory burden and cost.

Our team of experienced, Certified Data Protection experts can help your organisation with a variety of best practice solutions, from evaluating your GDPR compliance position and developing a remediation roadmap, through to implementing a best-fit compliance framework. Whether you are an SME or a multinational, we can tailor our GDPR services to your particular needs.

PSC is in a strategic alliance with Geevo Solutions to provide GDPR services to its clients. 

• GDPR Awareness

• Awareness – training sessions
• Assessment for the implications of the Regulation on the business
• Scoping and plan of works for further steps

• GDPR GAP Analysis

• Guide the business to prepare their Data Flows
• Legal due diligence
• It high level Audit
• High level risk assessment
• Preparation of the GDPR Gap Analysis
• Development of a feasible Action Plan for implementation
• Train internal DPOs when needed

• GDPR Implementation

• Risk Assessment and Data Privacy Impact Analysis (DPIA) where needed
• Consents
• Privacy Policy Development
• Contracts Development and Revisions
• Drafting of new Policies and Procedures
• Data Breach Notification Processes
• Training for new Policies and Processes

• DPO Services

• External DPO services according to the Business Needs

• GDPR Audits

• Audits to ensure GDPR Compliance