pulchrapulchralegalpulchrainnovationpulchracapital  – pulchraconsulting

Servicios > Pulchra Legal > Privacy and Data Protection

With the entry into force of the General Data Protection Regulation and the Organic Law for the Protection of Personal Data and Guarantee of Digital Rights, the way in which companies have to manage the Personal Data they process in their day-to-day economic activity has been modified. 

The principles of proactive responsibility and the risk approach oblige companies that process data to periodically reassess their data protection practices, adopting the necessary measures to provide security to personal data subjects.

Companies, in order to comply with their obligations in the field of Data Protection, in their day to day, must be accompanied by experts with a high degree of experience in Data Protection.

Our Data Protection specialists are imbued within the activity of the company, understanding its strategy and objectives. We offer a fully customized solution that allows companies to avoid sanctions and reputational damage.

  • – Adaptation, Analysis and Review of the company’s processes in terms of Data Protection to the    spanish general regulation.

    – Continuous advice on Data Protection. Maintenance Services.

    – Review and drafting of data protection policies and procedures and compliance policies.

    – Data Protection Training.

    – Legal advice on any of the issues related to Data Protection.

    – Defense against claims and disciplinary proceedings, both in administrative and contentious proceedings.

    – Data Protection Audits.

    – Data Protection Impact Assessments.

    – Development of Codes of Conduct.

    – Review/Drafting of data protection clauses/contracts.

    – Mechanisms to cover international data transfers.

    – Risk analysis of data processing.

    – Assessments of data processors in order to accredit the proactive responsibility when choosing a supplier.

    – Data protection due diligence.

    – Management of security breaches, including the assessment of their seriousness in order to determine the need to notify the competent authority and communicate to the affected parties.

    – External DPO service.

    – External advisory service to the internal DPO.