EU General Data Protection Regulation

Europe-wide uniform data protection

With the General Data Protection Regulation (GDPR), the European Union is agreeing on a uniform data protection law. This means that in future the same rules and requirements will apply in all Member States for the processing of personal data in companies and public bodies. The GDPR will replace the current EU Data Protection Directive (Directive 95/46/EC) and will be applied with effect from 25 May 2018, after a transitional period.

New guidelines for your company

This new data protection legislation will apply to all companies and most public authorities in the European Union – as well as to companies from third countries who process the data of EU citizens. Data protection in companies must meet the new standards by May 2018 at the latest.

The countdown to the switchover is therefore already under way, and you need to consider that all the previously valid regulations, documentation and processes for ensuring data protection in your company will have to be adapted to the requirements contained in the 99 articles and 173 recitals of the GDPR.

We will support you with this

To ensure that the switchover is carried out without risk to you and to guarantee the legally correct processing of personal data in your company at all times, you should take advantage of consulting services during this especially sensitive phase.

TERCENUM AG will support you in the development of new company standards based on the EU General Data Protection Regulation.

Overview of services

  • adaptation of the legal bases for existing procedures for the processing of personal data
  • adaptation and updating of consent forms
  • adaptation of the list of procedures (new – listing of processing activities)
  • adaptation of your audit processes (data protection or privacy impact assessment)
  • updating of contractual arrangements for data protection (e.g. in order processing)
  • reorganisation of contractual relationships (joint and several liability in order processing)

Note: avoid high fines

The new regulation has also drastically increased the level of possible fines. With effect from May 2018, an infringement of legally prescribed data protection could lead to fines of up to 20 million euros or 4% of global turnover. These may be imposed on a trans-national basis by any of the supervisory authorities of the Member States.

You can protect your company against risks by appointing our specialist external data protection officers.