On May 25th 2018 the General Data Protection Regulations came into force and basically obliged all processors or controllers of data of EU citizens to comply with this set of regulations. Although we should assume that most businesses have performed gap analyses and determined whether they are in scope or not we still notice that many groups have not properly updated their privacy policies, determined whether they need to appoint a register a Data Protection Officer, appointed a local representative, drafted a register of data processing and so forth. Companies in the US and other places outside the EU are also in scope of the GDPR to the extent they are engaging with individuals in Europe.
First European’s privacy specialists can assist your group’s legal and/or privacy team or even your external counsel in taking the necessary steps to full compliance with the European data protection regulations.
