Law 25- Byrnu - Accelerated Evolution

Support in appointing a privacy officer

- Identification and training of a privacy officer (PRP).
- Establishing and communicating their responsibilities.
- Publishing the PRP's contact information on your website.

Implementation of governance policies

- Development of governance and data protection policies.
- Regular updates to ensure continuous compliance.
- Publication of clear and accessible policies on your website.

Consent management

- Data mapping to identify sensitive information.
- Revision of consent forms according to new requirements.
- Implementation of explicit consent procedures.

Evaluation and management of service providers

- Identification of service providers handling personal data.
- Negotiation and updating of contracts to ensure compliance.
- Conducting privacy impact assessments (EFVP) for international transfers.

Management of security and confidentiality incidents

- Establishment of robust procedures to manage incidents.
- Creation and maintenance of a confidentiality incident register.
- Assessment of incident severity and appropriate notification.

Employee training and awareness

- Training programs on personal information protection and cybersecurity.
- Annual sessions to update on best practices.
- Continuous awareness to strengthen the security culture.

Implementation of cybersecurity measures

- Updating and testing security incident response plans.
- Reviewing insurance policies to include cyber-risk coverage.
- Development of cybersecurity training tailored to your business.