Personal data are being processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as “GDPR”). Divides processors into various groups, out of which arises different obligations. Personal data protection falls in the area of maintaining basic human rights and freedoms. To data processors arises a number of duties associated with the data protection.
Bezpečnostné opatrenia
Developing security measures
Taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the right and freedoms of natural persons, the controller and the processor shall implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.

The result of the measures is:
  • the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services
  • ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident
  • a process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing
Try now free consulting



Position of
Data Protection Officer

(Art. 37 GDPR)

Data Protection Officer (DPO) play a key role in your organization`s data protection governance structure. Persons authorized by us are highly qualified professionals with many years of experience with auditing informational systems and assessing risks. They are trained in both national and European law of data protection and its application in practice.


Data Protection
Impact Assessment

(Art. 35 GDPR)

Data Protection Impact (DPIA) is required for systematic personal data processing, which is based on automated data processing, processing of specific categories of personal data in large quantities and systematic monitoring publicly accessible places in large scale.


Development of Data
Processing Agreements

(Art. 28 GDPR)

Processing by a processor shall be governed by a contract or other legal act under Union or Member State law, that is binding on the processor with regard to the controller and that sets out the subject-matter and duration of the processing, the nature and purpose of the processing, the type of personal data and categories of data subjects and the obligations and rights of the controller.


In the case of a personal data breach, the controller shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the personal data breach to the supervisory authority.

We will provide:
  • cooperation in case of handling an incident and proposing adequate measures
  • processing a notice of personal data breach for the Office for Personal Data Protection
  • processing a notice of personal data breach for data subjects
  • cooperation with the Office for Personal Data Protection

We will design:
  • internal procedures that provide general principles and responses to a violation of privacy (data breach)
fa fa-area-chart
Clients in EU
fa fa-user
Data protection officer
fas fa-globe-europe
We are in countries

Cross-border processing

Do you process personal data in more than one EU Member State?

Need help with applying GDPR Regulation?

Group Of Undertakings

A group of undertakings may appoint a single data protection officer provided that a data protection officer is easily accessible from each establishment.

If you are interested, please contact us

Customer audits

Potrebujete preveriť či váš sprostredkovateľ spracúva osobné údaje v súlade so zmluvou a GDPR nariadením? Vieme vám zabezpečiť takýto zákaznícky audit takmer v každej krajine EÚ.

If you are interested, please contact us