GDPR at financial institutions
Our offer for financial institutions stands out thanks to our knowledge of client expectations and the nature of the market on which they operate. We believe that our experience in working with the financial sector (lending and payment services) allows us to provide top quality legal services in terms of data privacy and protection, while still offering them on competitive terms.
We readily use innovative solutions
In providing legal services, we use modern tools for maintaining a record of processing activities and evaluating the risks related to personal data processing. We carry out audits intended to evaluate the degree of the client’s compliance with the GDPR or related to the personal data flow in complex subcontracting structures.
We adjust the operations of our clients to legal requirements
As part of implementation activities, we provide support in terms of ensuring compliance with the GDPR. This includes developing procedures of selecting the business partners to have access to data (processors), as well as their periodic screening. We define the rules of granting authorizations to process personal data and supervise the process. We specify the rules and the legal bases for obtaining and processing personal data, as well as prepare and update the record of processing activities and the register of categories of processing.
Legal advisory in an international environment
We advise on transfers of personal data to third countries (such as the USA and the UK). We provide advisory in the event of a personal data breach, specify the relevant remedial measures, make sure that there is sufficient documentation related to the reported data breaches, and draft the notification in this respect to the Polish Personal Data Protection Office.