EU representative

EU representative required under the GDPR

Appoint our privacy officer as your representative in the EU to meet your GDPR obligations.

Our experts liaise with data protection authorities and data subjects in the EU on your behalf.

Privacy statement

Customers must be informed about the data that your organization stores. You let them know how this data is protected and this statement can be a sign for your organization.

A first checklist

To what extent are your customers’ personal data protected? How far is your organization with the GDPR legislation? Can it be even better and what is the cost of this? Measure your degree of compliance here.

Cookie statement

Customers must be informed about the data that your organization stores. You let them know how this data is protected and this statement can be a sign for your organization.

IT audit according to ISO 27001

It is not enough to work with encrypted connections on your website or to ensure a correct Cookie policy. Answers to questionnaires can be interpreted incorrectly or less well.

Risk Advisory

Customers must be informed about the data that your organization stores. You let them know how this data is protected and this statement can be a sign for your organization.

All kind of organizations

Various organizations have already been guided towards 100% compliance, because realizing 100% is rather utopian. The intention is that all aspects of GDPR or AVG legislation are examined and that permanent advice is provided. This process usually takes 3 years, because data lives.

Does my company need an EU representative?

If your company has no offices, branches or other establishments in the EU, yet conducts business with European clients you have to appoint an EU representative. Specifically, under the GDPR, you must appoint an EU representative if you process personal data in the following contexts:

  • the offering of goods or services to individuals in the EU (irrespective of whether they are free of charge), or
  • the monitoring of behaviour of individuals in the EU (as far as their behaviour takes place within the EU).

This obligation applies to both, controllers and processors.

How do I choose the best EU representative?

EU representatives may be external service providers, either individuals or organizations, such as law firms, consultancies, private companies etc. They must be based in one of the countries where your customers or monitored data subjects are located.

The GDPR does not specify the minimum qualifications an EU representative must hold. However, it is strongly advisable to appoint a representative that has a broad understanding of legal and technical data protection issues enabling them to communicate effectively with the supervisory authorities.

Furthermore, as a contact point between the company and data subjects or authorities, a representative should be able to speak the relevant local language if required.

What will an EU representative do for me?

An EU representative is the point of contact for EU data subjects and data protection supervisory authorities. The representative acts on behalf of a controller or processor with regard to their obligations under the GDPR.

The EU representative also maintains your records of processing activities (ROPA) and makes these records available to the supervisory authorities upon their request.

We are here to provide a fresh perspective. Ready to work with us?

Set an appointment

Links

GDPR

Contact

©DPO Associates All Rights Reserved. Privacy statement | Cookie statement | Terms & conditions