The new General Data Protection Regulation (“GDPR”) that will come into force in May 2018 requires companies that the accessibility of the Data Protection Officer (“DPO”) should be effective for Data Subjects and other players. To ensure that the DPO is accessible, the Working Party 29 (the cluster of European data protection authorities) recommends that the DPO be located within the European Union, whether or not the controller or the processor is established in the European Union. However, it cannot be excluded that, in some situations where the controller or the processor has no establishment within the European Union 25, a DPO may be able to carry out his or her activities more effectively if located outside the EU. You may appoint an external company to be your Data Protection Officer. We can become your DPO and/ or help you find one.
Contact us if you would like us to review your data protection policy and make it compliant with the GDPR. We have vast experience in data protection matters. And when it comes to American companies we have more than 15 years of experience in helping them establishing in Europe.