Legal advice on the implementation of current Data Protection regulations.
Compliance with data protection regulations and privacy policies is one of the most important dimensions of today’s economy. Data have become fundamental assets in the operation of any business and are used by companies and organisations to understand their customers, improve products and services, and make decisions.
The current Data Protection regulations are based on:
- Regulation 2016/679 of the European Parliament and of the Council of 27 April on the protection of individuals regarding the processing and free movement of personal data (RGPD in Spanish).
- Organic Law 3/2018 of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD in Spanish), develops the RGPD and regulates the national regulatory framework on the protection of personal data.
Compliance with legal requirements and obligations are mandatory for all data controllers and data processors, so it is essential to comply with the RGPD and the LOPDGDD. In addition, compliance will avoid future sanctions and ensure a better image for the company, as well as the security of having all the data and information processed in the company protected. In short, complying with both regulations is a great competitive advantage.
At PONTI & PARTNERS we have a team of experts with extensive experience in the sector. We can advise and help any company to implement the RGPD and the LOPDGDD by means of a pre-audit and a subsequent analysis and drafting of all the necessary legal documents. In addition, we also provide information and training to organisations regarding the implications of the current regulations on personal data protection, as well as any regulatory changes in this area.
Likewise, at PONTI & PARTNERS we carry out risk assessments and the consequent review of security measures that are adapted to the constant evolution of the processing of personal data carried out in companies, correcting any possible deficiencies detected to avoid sanctions from the control authorities in terms of data protection.