The GDPR entails many changes: starting with the substantive or geographical scope, the new and developed rights of data subjects, the obligations of companies (risk-based approach, documentation, data protection impact assessment, notification of data breaches of data breaches, records of processing activities, appointment of a data protection officer, etc.) or the new supervisory mechanism, which will be Europeanised. We advise companies on how to implement the GDPR requirements. In addition to training of employees, training as a data protection officer or the said records, we support companies with regard to conformity with the GDPR.
The GDPR now also offers the possibility of drafting codes of conduct, by professional associations. We draw up such rules of conduct or, if necessary, also act as (external) data protection officer.
We advise both professional associations as well as small and large companies implementing for the GDPR.
We also advise companies with special questions regarding the legal situation in Liechtenstein with regard to the GDPR (implementation in the new Data Protection Act and adaptation of the special laws).
We offer in-house training and provide general or specific advice. We represent our clients before all the Data Protection Authorities and in related proceedings.
In march 2019, the certificate course as data protection officer at the University of Liechtenstein, in which we are also involved, will be repeated.
An essay on the first experiences with the GDPR in Liechtenstein (published at the end of December 2018 can be downloaded here, in German only.
FAQ’s on the GDPR (compiled by the German Federal Ministry of the Interior) can be found here: www.bmi.bund.de
– Data Protection Authority of Liechtenstein: http://www.datenschutzstelle.li/
– Article 29 Working Party: www.ec.europa.eu
– German Association of Data Protection Officers (BvD): www.bvdnet.de
– Association of Austrian Data Protection Officers: www.privacyofficers.at