DRAFTING OF ACTS 

• databases collecting
• drafting an act of consent
• preparation of records of processing activities
• making contracts with processors / controllers
• creating controller’s instructions
• drafting of rules on the policy of personal data
• drafting a Code of conduct
• drafting Binding corporate rules
• drafting Data protection impact assessment
• making notifications about the use of cookies on the Internet site

STAFF TRAINING

SUPPORT IN THE PROCESS OF OBTAINING CONSENT AND PROTECTION OF INDIVIDUAL RIGHTS

ASSESSTMENT OF COMPLIANCE WITH GDPR – GAP ANALYSIS

ASSESSMENT OF THE PERSONAL DATA SECURITY

HARMONIZING IT ENVIRONMENT WITH GDPR REQUIREMENTS

• defining a conceptual ICT model that meets the needs of the client
• system implementation in accordance with the ICT model
• data migration
• pseudonymization and encryption
• regular compliance checks of applications and data models and aligning with GDPR requirements

DATA PROTECTION OFFICER (DPO)

If your company systematically and massively processes personal information or processes special categories of personal data, you are obliged to designate a person responsible to protect personal data (Data Protection Officer). DPO may be an employee in your company, but under the condition that this person possesses the required expert knowledge on data protection legislation and practices. If you do not have such a person, you can hire us to be your DPO.

REPRESENTATION OF THE CONTROLLER AND PROCESSOR IN THE REPUBLIC OF SERBIA

The controller or processor that does not have its headquarters in Serbia is obliged to designate a representative in the Republic of Serbia if he processes data from a person who resides in Serbia.

REPRESENTATION OF THE CONTROLLER AND PROCESSOR IN THE EU

The controller or processor that has its headquarters in Serbia is obliged to designate a representative in the EU if he processes data from a person who resides in the EU.