Protection of personal data according to the GDPR

As of May 25, 2018, a new law on personal data protection entered into force, which takes into account the requirements of the Regulation of the European Parliament and the Council of the EU, otherwise known as GDPR (General Data Protection Regulation). It has brought big changes and entrepreneurs have to deal with new obligations, for non-compliance with which there is a risk of liquidation fines.

To whom does the law on personal data protection apply:

• All business entities that process personal data (personal data of employees or customers)
• Intermediaries who process personal data of other organizations (accountants, lawyers, IT, advertising agencies,…)

The most important obligations of entities under the new legislation include:

• Reporting obligation of personal data breach
• Designation of the responsible person
• Stricter consent requirements for the processing of personal data
• User has the right to have his data erased (right to be forgotten)
• Privacy as standard
• Possibility of user data transfer
• New requirements for the broker contract
• One - stop shop rule
• International data transfers

You can find more information about individual points on our blog.

CeMS s.r.o. ensures for its customers a professional transition to the new regulation in the field of personal data protection, prepares the necessary documentation and, if necessary, also provides DPO services.