The Regulation (EU) of the European Parliament and the Council no. 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data (GDPR) is entering into force on 25 May, 2018. This regulation is going to be effective in all EU countries, including the Czech Republic, without the need for a national implementing act. The personal data protection belongs into specialization of our law firm, hence we also deal with the issue of the GDPR. We offer various legal services to our clients aiming to prepare them for the GDPR.
Answer the questions below to find out if your organization is compliant.
Do you process personal data legally?
Obligation to prove the legal basis for the processing of the personal data.
Do you process personal data transparently?
Personal data must be processed in a transparent manner.
Do you know the purpose for which you process personal data?
The controller needs to be aware of the purpose of processing personal data.
Do you have personal data secured?
Obligation to ensure sufficient protection of personal data.
Are you aware of your liability?
Demonstration of the implementation of processes for the protection of personal data.
Do you have an obligation to appoint a DPO?
Obligatory or optional appointment of a data protection officer.
Are you obliged to create a DPIA?
Compulsory or optional processing of the data protection impact assessment.
Do you know what sanctions may be imposed on you?
Sanctions could be equal to amount of 4 % of the company's worldwide turnover or EUR 20 million.
Sample of auditing