+420 237 836 950 sales@ngss.cz Česky

Personal data protection, GDPR

Save time and money when processing personal data! We will recommend data processing and data protection procedures suited specifically for your business.  

Get a free consultation
Personal data protection, GDPR
According to statistics, companies protect only 5% of their data properly.
Compliance with legal requirements
We will ensure your organisation's compliance with the Personal Data Protection Act and GDPR.
Professional contract management
We will draft or amend your contracts with data processors or joint data controllers.
Legislative support
We will always notify you about any changes in the Personal Data Protection Act and other legislation and will incorporate them in time.
Full GDPR compliance assurance

Full GDPR compliance assurance

We will ensure the complete processing and protection of personal data following the requirements of the GDPR and the Personal Data Processing Act.

It doesn't stop with GDPR implementation. We provide consultancy and legislative support:  

  • GDPR consulting 
    We will resolve specific issues with personal data processing, perform the necessary tests and specify the definition of legal titles.  
  • Outsourcing of roles 
    Our team of specialists will provide complete security and data protection management.  
  • Training 
    We will prepare a training program with both in-person and e-learning options for ordinary employees, senior employees, and specialists.  
Full GDPR compliance assurance

Wide range of services

  • Creation of a PD processing register  
  • Risk assessment for the freedoms and rights of persons  
  • GDPR risk and information security analysis  
  • Analysis of data security  
  • Balancing test in case of use of the legal title of legitimate interest  
  • Assesment of the impact on the protection of PDs in case of a finding of high risk of the PD processed
  • Processing and update of records on PD processing and management of the documentation  
  • Cooperation during the identification and investigation of incidents and keeping track of non-conformities and corrective actions  
  • Security audit of processing and protection of PD  
Wide range of services
Outsourcing of roles 

Outsourcing of roles 

We offer to directly perform the required role or provide support for an internal employee who gets named:

  • Security and Cybersecurity Manager  
  • Cybersecurity Architect  
  • Internal auditor (includes the role of a cybersecurity auditor)  
  • Data Protection Officer (DPO)  
  • Data Protection Manager  

 

Outsourcing of roles 

How does the cooperation work?

1
Comparative analysis
We will describe the current state and propose measures that will help you meet the requirements of the legislation (GDPR). We will create a PD processing register.
2
Proposal for the implementation
We will propose measures for the protection of personal data, including the proposal of defining responsibilities and monitoring systems.
3
GDPR Implementation
We will help you create documentation with an emphasis on developing or updating internal regulations to define procedures and responsibilities.
Get a free consultation

Why GDPR from us?

Legal support
Lawyers specialising in data processing and data protection are part of our team.
Proven by experience
We provide GDPR services to hundreds of companies and organisations. We offer methods proven by experience.
Lower costs
We offer the services of qualified professionals, which means you will save the cost of in-house employees.

FAQ

Yes, we are happy to provide our services on a one-off basis. Although, you can also take advantage of our long-term support, which is usually established through framework agreements.  

We provide a variety of services to meet your needs and requirements. Provided services also include:  

  • Comparative analysis of the state of personal data (PD) processing and protection. This service describes the current state and proposes measures that will help you meet the requirements of the legislation (GDPR). Services might also include the creation of a PD processing register.  
  • Conducting a risk assessment for the freedoms and rights of persons, including an information security risk analysis to determine adequate measures.   
  • Performing balancing tests in case of use of the legal title of legitimate interest.  
  • Assessing the impact on the protection of PDs in case of a finding of high risk of the PD processed.  
  • Proposal of the system of processing and protection of PD, consisting of the proposal of measures to protect PD as well as the proposal of the assigned responsibilities and the monitoring system.  
  • Processing and updating of records on DP processing and management of the documentation, with emphasis on processing or updating internal regulations to define procedures and responsibilities.  
  • Help with solving specific issues with personal data processing, performing necessary tests, creating processing contracts, or specifying legal titles.  
  • Cooperation during the identification and investigation of incidents and keeping track of non-conformities and corrective measures. 
  • Performing or supporting the role of the data protection officer (DPO) or data protection manager. 
  • Conducting audits in the area of processing and protection of PD – internal and external (for PD processors).  
  • Training (including tests) for all roles in the company, both in person and via e-learning.  
  • Quantifying the financial value of the PD you handle to allocate your PD protection resources more effectively. 

 

he protection of personal data (PD) is also based on a so-called risk-based approach. This means that the requirements to comply with the principles of the protection of personal data, and sometimes to comply with specific obligations, also depend on the risk to the freedoms and rights of individuals posed by the processing. An example is an obligation to implement appropriate technical and organisational measures to ensure the level of PD security appropriate to the risk. The level of this risk also determines, for example, the obligation of the controller to carry out an Impact assessment for the freedoms and rights of persons.

Yes, we will help you identify what data the data processor processes for the controller and then suggest the content and form of the measures in the contract with the processor. We can also help you with the wording of the provisions of the processing agreement.  

Yes, we will be happy to provide a training programme for ordinary employees and senior employees, including training for professional security roles. The training includes the latest findings in the area of personal data protection (PD) as well as the provisions of your internal regulations. The training can be done through e-learning or in person. A combination of in-person and distance learning is also possible.  

Leave us your contact information and together we will find the ideal solution for your security

Service guarantor
Antonín Šefčík
Antonín Šefčík
Head of the Consultants Department
Antonín has over 20 years of experience with hundreds of security projects and audits. He is also a holder of the ISMS Lead Auditor (ISO/IEC 27001) and Auditor ISO/IEC 20000 certifications.
Fast reply
Our consultant will get back to you within 24 hours of enquiry.
Individual approach 
We will help you with your problem and find the ideal customized solution for you.
Ahead of the competition
You will always take away something extra, to keep you a step ahead of the competition.
NEXT GENERATION SECURITY SOLUTIONS s.r.o.
U Uranie 18, 170 00 Prague 7

CRN: 06291031
VAT: CZ06291031

Follow our LinkedIn
Enter SMC
About us
Contact
NESTOR SOC247
NGSS has implemented an information security management system in accordance with ČSN ISO/IEC 27001:2014. NGSS Information Security Management System (ISMS) Policy here.
Ethical code
Not sure what to do?
Contact us.
Telefon +420 237 836 950
E-mail sales@ngss.cz