Data Protection Law (GDPR)

With the introduction of the General Data Protection Regulation 2016/679 (GDPR) in May 2018, protecting the individuals’ personal data has now become a compliance issue which needs to be dealt with elaborately to avoid impending administrative fines up to €20 million or 4% of global annual turnover of the respective company, whichever is the greater that might be imposed by the Greek Personal Data Protection Authority. Our legal team is experienced in data protection matters and founder and senior partner Josef Avramidis is duly certified as Data Protection Officer (DPO) Executive. We are ready to assist your business, together with our technical / technological cooperation partners, to avoid or minimize the risk of non-compliance and the resultant fines.

Our services include, but are not limited to:
• Assessing your current organizational data architecture and GDPR readiness.
• Assessing your organization’s data protection training needs.
• Building a roadmap for implementation of appropriate regulatory and compliance architecture.
• Conducting Data Privacy Impact Assessments (DPIAs).
• Assessing your remediation activities.
• Assist to draft or update appropriate policies and procedures to ensure compliance with GDPR.
• Ensuring your data risk management is integrated into overall risk management structure.
• Performing data flow mapping.
• Ensuring the data protection officer is currently positioned to fulfil the obligations of that role.
• Helping you develop a data breach response action plan.
• Support and guide data protection officer to fulfill his role.
• Frequently report to management aiming to provide assurance to your key stakeholders, internal and external.
• Monitoring developments and update top management accordingly.