Privacy architect of your digital transition
On May 25, 2016, the European Union launched its new General Data Protection Regulation (UE) 2016/679 regarding the protection of natural persons with regard to the processing of personal data (“GDPR”). Two years later, i.e. on May 25, 2018, it came into effect in all member states of the European Union. These legal provisions apply to all companies in the private or public sector that process personal data. The new Regulation contains strict rules on how companies must handle the personal data of EU citizens.
As the digital transition continues to grow, the GDPR aims at appropriately balancing business and consumer interests. It aligns increased transparency and involvement of citizens and customers regarding their data, a forward-looking legal framework, and innovative business models.
Data protection as a shield against digital risks
The measures set forth in the GDPR provide your organization with protection against the following risk sources:
Employees
Employees
Employees who violate data protection regulations render your company vulnerable to attacks. Employees also have data protection rights, which they can assert.
Customers
Customers
B2C customers and contacts of B2B customers have data protection rights, which they can assert either by filing a complaint with their data protection supervisory authority or by means of a legal action (possibly within the framework of a collective redress).
Supervisory authorities
Supervisory authorities
In particular, supervisory authorities are entitled to conduct audits, issue warnings to companies and organizations the event of a violation of the GDPR, impose injunctions against them, prohibit certain data processing activities and impose fines.
Subcontractors
Subcontractors
Subcontractors, who unlawfully process personal data, expose themselves and their customers to liability claims.
Hackers
Hackers
Hackers can exploit security loopholes to access, modify, or delete personal data and other sensitive data.
Convert data protection into added value for your business
At very reasonable costs, we offer organizations and businesses advice on how to limit data misuse, data loss and image loss resulting thereof. The processing of your own data and those of your customers in compliance with legislation is an asset that your company can put forward. It also gives your own employees and partners the feeling that they, and their data, are in good hands at your company.
Data protection ensures free consent with regard to information
“We consider that data protection is not only a current trend, but an absolute necessity to ensure that basic human rights and freedoms are also guaranteed in our digital ecosystem”: these are the terms used by Sabine Mersch, Managing Director of TPO, to describe her company's philosophy.
Indeed, data protection includes both protection against inappropriate processing of personal data and protection of the right to free consent and adequate information.
The successful implementation of this twofold objective, as provided for in the GDPR, strengthens the trust of employees, customers, or suppliers in your company and at the same time protects it from potentially significant fines.
If you invest in compliance with such regulations in a targeted manner going forward, you can avoid any loss of reputation related to such fines.
In order to meet this challenge, TPO offers you the services of a cross-disciplinary team, comprising of all experts needed and the legal and technical knowledge that is required.