Data Privacy

Innovacion Legal Services > Data Privacy

In today’s economy, information is perhaps the single most important asset for organisations as they innovate and grow. All organisations create, collect, retain and use a multitude of different types of data.

Businesses today handle large amounts of personal data, not only when active in B2C e-commerce but also as an employer regardless of the industry they operate in. These businesses require a vigilant and structured approach to the governance and protection of collected and retained data. Not to forget the introduction of new and more stringent data privacy laws which in turn have established that compliance with data privacy should be a top priority for all businesses.

We take a pragmatic and commercial approach to data protection, compliance and privacy by advising in-house legal teams, chief data officers, CIOs and other management executives as well as the boards of companies on privacy matters. This regularly involves taking account of data protection and privacy rules on a global basis, including the EU General Data Protection Regulation alongside national implementing laws.

We pride ourselves on providing responsive, reasoned and real world advice.

Service Areas

Data Transfer Agreements

Negotiating cloud and Model form (and other) complex international data transfer agreements, and framework agreements for easy adherence and application to multiple transfers.

Preparing Privacy impact assessments research papers

Drafting of social media policies as well as privacy and IT policies

Preparing data collection notices and statements

Advising on issues pertaining to intellectual property rights arising in data and databases

Designing and documenting adequate data protection and security measures that protect both your own and your consumers’ privacy and security,

including drafting data protection policies and advising on e-privacy and cookie related issues aswell as database systems analysis

Developing global policies for clients

Outsourcing management.

360 Advisory and compliance support

GDPR or otherwise Compliance programs and policies: Compliance with national and international privacy laws and regulations including GDPR compliance programmes whereby comprehensively reviewing the data privacy systems and processes in place across a global business network of your business.
privacy requirements in relation to internal compliance, sensitive data and data retention
investigations by data protection authorities
international data transfer
binding corporate rules and codes of conduct
Protection of confidential information

Implementing effective international data transfer strategies,

Carrying out audit and risk assessments,

Review of justification strategies and other supporting policies in place

When it comes to data protection, a business’ strategy for justification of its processing of personal data is key to compliance, particularly with regard to consent.

Accountability measures:

Analysis of organisational measures in place to discover potential gaps and to deal with accountability, for example the appointment of a Data Protection Officer if needed, the necessity of a data privacy impact assessment and the amendment of company policies.

We frequently advise clients on data privacy and confidentiality. This includes strategic advice as to the approach to be taken, design and implementation of compliance programmes (such as addressing matters like use of social media on the work floor, defamation and removal of alleged prejudicial content, to name a few) and advice on ad hoc issues arising in the application of those programmes.