Privacy

What is GDPR
The General Data Protection Regulation (GDPR, EU Regulation 2016/679) is a regulation with which the European Commission intends to strengthen and harmonize the protection of personal data within the borders of the European Union (EU).
The regulation, which will affect all companies processing personal data of EU citizens, will require the implementation of new processes and stricter rules for the protection of such information. If you manage, collect, or use personal data (of employees, existing or potential customers), GDPR will change your usual work practices.
How we can help you S.F. Consulenza e Progettazione, as a company specializing in privacy consulting, assists and supports companies in all phases of their adaptation process to the new European Regulation on personal data protection. Privacy consulting includes a series of activities aimed at evaluating the storage and processing of data within the company and improving its effectiveness to ensure that the activity is carried out in full compliance with the regulations.

Among the main interventions carried out are:
- Data processing analysis and potential risk analysis;
- Drafting, reviewing, and updating privacy documentation and procedures, as well as the Privacy Document;
- Drafting of the Privacy Impact Assessment (PIA), which is the document containing the set of functional processes that must be implemented to carry out, through the study of data processing methods, a serious and effective risk analysis.
- Risk impact assessment allows for identifying the dangers related to data processing and the appropriate measures to neutralize them or, at least, manage them;
- Drafting of various privacy notices for data subjects;
- Identification of roles and responsibilities and drafting of relevant appointment letters;
- Identification of all cases in which it is necessary to inform data subjects about data processing (e.g., newsletter subscription on the website).