You are here:

Data Protection & Privacy

With the adoption of the EU General Data Protection Regulation (“GDPR”), applicable as from 25 May 2018, data protection has become a boardroom topic, mainly because of the severe sanctions on non-compliance (up to 20 million euro or 4% of the annual worldwide turnover).

EU Japan adequacy decision reached
News - 28 January 2019 - Belgium

EU Japan adequacy decision reached

On 23 January 2019, the European Commission (EC) has adopted an adequacy decision on Japan allowing for a free flow of personal data between the EU Member States...
read more
Reform of Belgian Data Protection Authority still not put into practice
News - 25 January 2019 - Belgium

Reform of Belgian Data Protection Authority still not put into practice

The renewed Belgian Data Protection Authority still does not have an Executive Committee.
read more
First status update of Belgian DPA after six months of GDPR
News - 07 December 2018 - Belgium

First status update of Belgian DPA after six months of GDPR

The Belgian Data Protection Authority (DPA) has issued a first status update six months after the GDPR became applicable. The statistics show a remarkable increase...
read more
Data Protection & Privacy Update - October 2018
Article - 31 October 2018 - Belgium

Data Protection & Privacy Update - October 2018

This fall brought the following interesting data protection developments: Update home market: The Netherlands, Belgium, Luxembourg, Switzerland
read more
  1. previous
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. 6
  8. 7
  9. 8
  10. 9
  11. 10
  12. next page

Compliance is key

The territorial scope of data protection legislation is very broad. In addition to EU-based companies, anyone actively offering goods or services to citizens in the EU is caught by the GDPR, as well as non-EU companies who are monitoring of the behavior of individuals in the EU.

The practical implementation of the various GDPR requirements (appointment of a Data Protection Officer, internal record-keeping, drafting of privacy policies and data transfer or data processing agreements, mapping of data flows, etc.) is challenging. Achieving compliance often requires business processes and company practices to be re-examined and redesigned. The link and collaboration between legal, HR, IT, sales, etc. is often also crucial.

Data protection compliance can on the other hand be seen as a business opportunity, presenting a competitive advantage for companies doing business in the European Union. Where personal data have become a global currency, the secure and responsible handling of such data has become key.

In addition, as compliance goes hand in hand with enforcement, companies should also be ready to handle complaints from individuals, disgruntled employees or even competitors. Being able to adequately communicate with the authorities, and to defend your case in the context of an investigation or enforcement scenario, should be an indispensable part of any compliance project.

 

How we can assist you

The Loyens & Loeff Data Protection & Privacy Team provides integrated legal advice on a wide variety of complex privacy and data protection related matters in various industry sectors, and such through a one-stop shop approach.

The Team consists of members from various Practice Groups and jurisdictions,combining their regulatory data protection expertise with advice from a tax, IT, corporate, competition, finance and employment law perspective. Moreover, the Team has the unique ability to offer integrated assistance in Loyens & Loeff’s four home markets (Belgium, The Netherlands, Luxembourg and Switzerland).

The combination of these different characteristics makes that we are uniquely positioned to assist companies (whether located inside or outside the EU), from a compliance angle as well as in an enforcement / litigation context.

Our services

Setting-up compliance frameworks

  • (GDPR) compliance projects
  • data protection due diligence audits
  • in-house trainings (sector- and business oriented)

 

Tailored advice on a wide range of data protection topics

  • privacy policies, disclaimers, clauses, etc.
  • ‘big data’ and profiling
  • data processing agreements
  • international data transfers / flows of personal data
  • employee privacy and monitoring
  • camera surveillance (CCTV)
  • data security
  • direct marketing strategies
  • cookies and e-commerce compliance

 

Assistance with specific GDPR obligations

  • “GDPR Toolkit” (starter package to get started on your road to GDPR compliance)
  • appointment of Data Protection Officer
  • data Protection Impact Assessments
  • internal record-keeping obligation
  • privacy by design / by default
  • data breach requirements

 

Litigation and dispute resolution

  • (legal) data breach response services
  • assistance during investigations by data protection authorities
  • representation before courts and tribunals
  • complaint-handling