GDPR – who is it for

It is for entrepreneurs, governmental institutions, foundations and associations which run their business in the EEA region and administrate or process personal data.

It applies also to natural persons who process data for other purpose than personal use.

Why do I need GDPR?

Applying GDPR requirements is a legal obligation. It is also a chance to improve your business, institution or organization’s performance. Thus, implementing GDPR is a great chance to analyze your internal business processes, verify existing security solutions as well as implement new IT solutions. Above all, once you implement GDPR requirements in a comprehensive and reasonable manner, you’ll stay ahead of your competition.

Contact us and learn more why your company needs to be GDPR compliant.

Contact us »

How does it work in practice?

Step 1

Preliminary stage

During the first meeting we sign a non-disclosure agreement and then discuss your business needs. After a quick survey we define scope and conditions of our cooperation. This stage is free.

Step 2

Audit

The overall goal of the audit is to gather all information about the nature of data and way they are processed in your organization. After the profound analysis we provide you with a detailed report, including a list of inconsistencies, as well as a recovery plan.

Step 3

Implementation

We assist in developing solutions to eliminate given inconsistencies and preparing necessary documents. We develop i.a. personal data protection policy and guidelines for employees. We offer also trainings for employees who may be later designated for data protection officer in the company.

Step 4

Constant support

We provide ongoing support in the scope of data protection. It includes also documentation updates, trainings for employees, assistance during various incidents and external controls. This service is paid monthly, on a flat-rate basis.

General Data Protection Act has been introduced in order to standardize personal data regulations not only in the European Union but also across the European Economy Area. This act applies directly to the entire EEA region. Every member state also has a right to specify these regulations within their national legislation.

The Act of Personal Data Protection of 10 May 2018 is a Polish legal document that supports and specifies the GDPR regulation in Poland. It defines subjects who are obliged to designate a data protection officer, procedures to be implemented for data protection violation, criminal liability and administrative monetary penalties to be executed for violating the regulation. DAPR ensures compliance with both GDPR and Polish Act provisions.