Privacy and Data Protection

Privacy and Data Protection

With the entry into force of the GDPR (EU Regulation no. 2016/769), effective from 25 May 2018, common rules are introduced for all European companies, professionals and public bodies, which are required to correctly implement their protection system of Personal Data to protect, in addition to the rights of the interested parties, also the reputation of companies on the market, through an approach based on risk assessment and on the assumption of the need to document and demonstrate the choices taking into account the state of the art, costs, the nature, scope and context of the processing operations.

In this specific sector, the GTA Law Firm assists companies, including multinationals, public bodies and/or publicly owned entities, as well as professionals:

  • During the regulatory compliance verification phase, by scheduling specific audits;
  • During the updating of the Model for the Protection of Personal Data, in relation to regulatory changes, changes to the company activity or in the presence of situations that need to be evaluated to maintain the effectiveness of the Model over time;
  • In the implementation phase of the Data Protection Model;
  • In the training of the recipients of the GDPR, according to customized projects defined with the individual company;
  • In the phase of identifying the treatments that present a high risk for the rights and freedoms of natural persons, as well as in the activity of impact assessment on data protection (DPIA);
  • In the pathological phase, assisting companies in the course of investigative activities by the Italian Data Protection Authority, or, on its behalf, by the Finance Police (so-called “Guardia di Finanza”), and in the management of proceedings before the Italian Data Protection Authority or other competent Courts ;
  • for companies which are subject to the related obligation pursuant to the Regulation, with the responsibilities of Data Protection Officer or Data Protection Officer.

The Firm maintains relationships with leading law firms all over the world specialized in the field of Personal Data protection, whose collaboration it also makes use of in order to evaluate the compliance of the treatments carried out by client companies, in addition to the GDPR and Italian legislation, also to the foreign regulations concerned from time to time.