The way today’s businesses operate means that data protection goes significantly beyond purely legal issues. As RK RODO, we have a potential that is unique on the market – in addition to lawyers specialising in data protection, we have a specialised IT Department. Therefore, we take care of personal data taking into account both legal as well as information and communications technology (ICT) aspects. The client has one team, whose members understand one another very well and which has well-tested routine procedures, working for them. Thanks to this, cooperation is smooth and projects are implemented comprehensively and consistently.

7 steps of GDPR implementation:

1. AUDIT

  • We will conduct a comprehensive legal, organisational and ICT audit on site
  • We will formulate audit recommendations and propose a schedule for their implementation

2. SECURITY POLICIES

  • We will formulate a Personal Data Processing Security Policy and the required appendices
  • We will prepare an Information and Communications Technology Security Policy and the required appendices

3. REGISTERS

  • We will prepare and complete the Processing Activities Register and the Processing Activity Categories Register
  • We will prepare a register of breaches and a register of requests from data subjects, and we will set out practical rules for the fulfilment of obligations in this respect

4. DATA PROCESSING OUTSOURCING

  • We will define a group of entities with which agreements should be concluded and then we will prepare and help you to complete personal data processing agreements
  • We will implement procedures for the proper performance of marketing activities
  • We will help you to complete the required employee records (authorisations, confidentiality statements, register of authorised persons, required consents, etc.)

5. INFORMATION CLAUSES

  • We will prepare information clauses as required
  • We will adapt your website, including the privacy and cookies policy

6. DATA PROTECTION IN THE ICT AREA

  • We will conduct a comprehensive analysis of the technical and physical safeguards used in the ICT area and propose practical solutions to increase the level of security

7.  TRAINING

  • We will train persons responsible for personal data protection in their obligations related to legal and ICT issues
  • We will conduct training for all employees and partners in their personal data protection obligations

Let's get to know each other!

More than 300 companies have already trusted us
write to us at: [email protected]
or call us: +48 22 380 33 44