Representative GDPR within EU

 

What?

For every company outside the EU that possesses EU citizens’ personal data it is mandatory to institute a representative for interaction with EU Citizens and Supervisory Authorities regarding the GDPR. DataProtection.Support provides this service for companies. In case of data breaches DataProtection.Support manages the process that is legally required.

Why?

On May 25th 2016, the General Data Protection Regulation, or GDPR, took effect in the European Union.  The regulation mandates strict protection requirements over personal data concerning EU citizens.  Governments and companies inside the EU have been preparing, but many companies outside of the EU may yet be unaware of how this regulation will affect their businesses.  GDPR applies to any organization that holds or processes data on EU citizens, regardless of where it is headquartered.  This includes companies that have employees in the EU, sell or market products or services in the EU, or partner with EU organizations. The penalties for non-compliance can be as high as 4% of global revenue.

Within each EU member state, the GDPR establishes the position of Supervisory Authority, a government official responsible for overseeing the implementation and enforcement of the GDPR.  When organizations detect a breach of EU citizens’ personal data, they are required to report it to the Supervisory Authority in each affected Member State within 72 hours. 

For every company outside the EU that possesses EU citizens’ personal data it is mandatory to institute a representative for interaction with EU Citizens and Supervisory Authorities regarding the GDPR.

 

When?

GDPR applies to any organization that holds or processes data on EU citizens, regardless of where it is headquartered. 

Important:

  1. In reference to Article 4(16) of the GDPR a processor with establishments in more than one Member State, it is the place of its central administration in the Union, or, if the processor has no central administration in the Union, the establishment of the processor in the Union where the main processing activities in the context of the activities of the processor take place to the extent that the processor is subject to specific obligations under this Regulation, that defines the Lead Supervisory Authority. DataProtection.Support can assist determine.

 

  1. If a company has no establishments within the EU, DataProtection.Support can act as a representative for the EU Citizens and the  Lead Supervisory Authority.

 

  1. DataProtection.Support only provide this services in a combination with a complete audit and a plan for corrective actions in order to become compliant.

 

Call to make an appointment!

© 2017 DataProtection.Support. All Rights Reserved. Designed By JoomShaper