BG.legal logo
/ Expertises / IT & Privacy / GDPR
Back to home

GDPR

/ Expertises / IT & Privacy / GDPR / IT & Privacy / GDPR
Back to home

The GDPR changes practice and law

Since the introduction of the General Data Protection Regulation (GDPR), the legal landscape surrounding personal data has changed drastically. Organizations in almost all sectors, from healthcare and education to business and government, are confronted daily with questions about privacy, data security, and responsible data processing. The GDPR imposes strict requirements on the use of personal data and demands ongoing attention to compliance, transparency, and accountability.

Legal challenges under the GDPR

Compliance with the GDPR is not a one-time action but an ongoing process. Organizations must not only comply with legal requirements but also be able to demonstrate this. The following legal themes are significant in this context:

  • Processor agreements and contractual guarantees: Is the division of responsibilities between the data controller and processor correctly documented?
  • Legal grounds for processing: Is there a valid legal basis for processing personal data (such as consent or legitimate interest)?
  • Obligation to inform and transparency: How are data subjects informed clearly and comprehensively?
  • Security measures and data breaches: Do the technical and organizational measures meet the state of the art?
  • Privacy by design & by default: Are data protection and minimal data processing standardly incorporated?
  • Rights of data subjects: Are requests for access, rectification, deletion, or objection handled effectively?
  • Supervision and enforcement: Is the organization prepared for audits by the Data Protection Authority?

Our services

We offer tailored legal support for the implementation and enforcement of GDPR compliance. We do this, among other things, by:

  • Drafting or reviewing processor agreements and privacy statements;
  • Advising on data processing responsibilities, data minimization, and risk management;
  • Guidance in conducting Data Protection Impact Assessments (DPIAs);
  • Assessing internal processes and policies against GDPR standards;
  • Training staff and establishing governance structures;
  • Providing legal assistance in case of data breaches or enforcement actions.

Stay informed

Our team regularly publishes blogs and legal analyses on the practical application of the GDPR. Topics include:

  • Developments in European and national case law regarding the GDPR;
  • The use of personal data in commercial and social contexts;
  • Privacy concerning new technologies and digital services;
  • The role of consent, legitimate interest, and other processing grounds;
  • Enforcement by the Data Protection Authority and relevant penalty decisions.

Would you like legal advice on privacy and data protection? Please feel free to contact the specialists.

How can we help?

Our specialists

Contact form