Czech Republic

GDPR – Preparations and dedicated DPO

Data protection across the EU will be regulated by the General Data Protection Regulation (GDPR). The Regulation will directly apply to controllers and processors established in the EU and, in some cases, to controllers and processors not established in the Union. All persons concerned must become fully compliant with the Regulation by 25 May 2018. By the date, the persons concerned must have all technical and organisational measures in place to comply with the requirements imposed by the Regulation (including, without limitation, stricter data security obligations and stricter consent rules) and must comply with the new rights of individuals whose data are processed (such as the right to be forgotten). Organisations found in breach of the Regulation can expect administrative fines of up to €20 million or 4% of annual global turnover, whichever is greater.


GDPR’s legal, technical and organisational perspectives

The GDPR must be seen from several perspectives:

Getting ready for the GDPR

  • Legal – the lawfulness (reasons for) personal data processing, compliance with obligations under applicable laws, review of consents and agreements (such as those with the processor), etc.
  • Technical – technical solution for data processing, security, etc.
  • Organisational – internal processes relating to compliance with the terms of processing.

Implementing recommended measures

  • Legal – preparation of consents and agreements, internal regulations, etc.
  • Technical – privacy by design and privacy by default, security, effective processing records, etc.
  • Organisational – appointment of persons in charge and definition of procedures (responses to requests from data subjects, dealing with personal data breaches).

Our services related to the preparation for, and implementation of, the GDPR

We are able to prepare your company for the GDPR. Our advantage is our specialists who have experience across a range of sectors. Our firm includes experts in accounting, taxes, security, privacy protection, and information systems. Our work would cover the following stages:

1) We will analyse your firm’s current situation;

2) We will propose measures to adopt the GDPR;

3) We will find the best procedure for implementing the proposed measures jointly with your employees and suppliers;

4) Upon request, our specialists will undertake the implementation of the measures;

5) We will appoint a data protection officer (DPO) for you who will supervise long-term compliance with the GDPR.

Do not hesitate to contact us for more information about our services relating to the GDPR and for the dates of events we organise to address the related issues.


Contact persons

Monika Marečková

Managing Partner RSM CZ & SK

+420 602 480 018

Tomáš Janeček

Managing Partner RSM Technology CZ & Senior ERP Consultant

+420 226 219 000

Karel Fišnar

Head of Cloud Solution & Services

+ 420 602 614 817

Radek Benda

Account Manager

+420 602 283 919


Get in touch

    Phone or Email: