Data Protection & Privacy
With the adoption of the EU General Data Protection Regulation (“GDPR”), applicable as from 25 May 2018, data protection has become a boardroom topic, mainly because of the severe sanctions on non-compliance (up to 20 million euro or 4% of the annual worldwide turnover).
Data Protection & Privacy Update – February 2018
Data Protection & Privacy Update – January 2018
Practical guide on privacy within companies
You have not accepted cookies yet
Because you chose not to accept cookies, we unfortunately have to block this piece of content. Please go to our privacy statement to accept cookies and view the full website.
The territorial scope of data protection legislation is very broad. In addition to EU-based companies, anyone actively offering goods or services to citizens in the EU is caught by the GDPR, as well as non-EU companies who are monitoring of the behavior of individuals in the EU.
The practical implementation of the various GDPR requirements (appointment of a Data Protection Officer, internal record-keeping, drafting of privacy policies and data transfer or data processing agreements, mapping of data flows, etc.) is challenging. Achieving compliance often requires business processes and company practices to be re-examined and redesigned. The link and collaboration between legal, HR, IT, sales, etc. is often also crucial.
Data protection compliance can on the other hand be seen as a business opportunity, presenting a competitive advantage for companies doing business in the European Union. Where personal data have become a global currency, the secure and responsible handling of such data has become key.
In addition, as compliance goes hand in hand with enforcement, companies should also be ready to handle complaints from individuals, disgruntled employees or even competitors. Being able to adequately communicate with the authorities, and to defend your case in the context of an investigation or enforcement scenario, should be an indispensable part of any compliance project.
How we can assist you
The Loyens & Loeff Data Protection & Privacy Team provides integrated legal advice on a wide variety of complex privacy and data protection related matters in various industry sectors, and such through a one-stop shop approach.
The Team consists of members from various Practice Groups and jurisdictions,combining their regulatory data protection expertise with advice from a tax, IT, corporate, competition, finance and employment law perspective. Moreover, the Team has the unique ability to offer integrated assistance in Loyens & Loeff’s four home markets (Belgium, The Netherlands, Luxembourg and Switzerland).
The combination of these different characteristics makes that we are uniquely positioned to assist companies (whether located inside or outside the EU), from a compliance angle as well as in an enforcement / litigation context.
Setting-up compliance frameworks
- (GDPR) compliance projects
- data protection due diligence audits
- in-house trainings (sector- and business oriented)
Tailored advice on a wide range of data protection topics
- privacy policies, disclaimers, clauses, etc.
- ‘big data’ and profiling
- data processing agreements
- international data transfers / flows of personal data
- employee privacy and monitoring
- camera surveillance (CCTV)
- data security
- direct marketing strategies
- cookies and e-commerce compliance
Assistance with specific GDPR obligations
- “GDPR Toolkit” (starter package to get started on your road to GDPR compliance)
- appointment of Data Protection Officer
- data Protection Impact Assessments
- internal record-keeping obligation
- privacy by design / by default
- data breach requirements
Litigation and dispute resolution
- (legal) data breach response services
- assistance during investigations by data protection authorities
- representation before courts and tribunals
MargaCaproniAttorney at law Counsel
Marga Caproni is a member of the Loyens & Loeff Employment & Benefits Practice Group in Belgium, heads the Pensions Team and is a counsel in our office in Brussels.T: +32 2 743 43 51 E: firstname.lastname@example.org
YvesVan CouterAttorney at law Partner
Yves Van Couter is a Loyens & Loeff partner based in Brussels. He is a member of the Litigation & Risk Management Practice Group, heads the firm-wide Food & Beverages Team and co-heads the Data Protection & Privacy Team.T: +32 2 773 23 69 E: email@example.com
StéphanieDe SmedtAttorney at law Associate
Stephanie is a member of the Loyens & Loeff Litigation & Risk Management Practice Group in Belgium.T: +32 2 773 23 77 E: firstname.lastname@example.org