The one and only
One Stop Shop Data Privacy Services

Make to quality of your personal data a true competitive asset
with DPO Consulting, a firm specialising in personal data protection.

Make your company
compliant with the GDPR

DPO Consulting will support your GDPR compliance journey. Acting as a real partner in your activities, we will provide you with all the services you need.

Our services
for your GDPR compliance needs

International

International
DPO

Outsourced

Outsourced
DPO

GDPR

GDPR
compliance software

EU-representative

EU
Representative

uk-representative

UK
Representative

DPO Consulting in a few figures

0
5 years
of expertise
0
Customer
0
Offices
worldwide
0
Fields
of expertise

Open
your franchise

You want to start a data protection business, but you are afraid of doing it alone?

 

Join DPO Consulting’s network of experts!

It will allow you to live a human adventure with complete independence and peace of mind.

Request
your quote

Our experts are available to answer your requests and support you in your GDPR compliance journey.

Some information
about DPO Consulting

DPO Consulting is a firm specialising in personal data protection.

We are here to support you in the organisational and operational compliance of your business. Founded in 2015, DPO Consulting is a fully independent firm that shares the entrepreneurial spirit of its clients.

Experts in the field of personal data, we are able to multitask and quickly adapt to all kinds of organisations.  

Why choose
DPO Consulting?

Quality

Pragmatic, adaptable,
responsive, operational

006-star

Experiences

Bank, insurance, health and clinical trials,
IT, industry, public authority

thumb up

Expertise

Data protection,
big data, IoT, smart city

Team

Involved, dynamic,
rigorous

Internationality

French, English, Spanish,
Portuguese

001-export-document

Versatility

Legal experts, lawyers, project managers,
IT experts, coaches

What is the meaning of DPO?

The appointment of a Data Protection Officer “DPO”, whether internal or outsourced is mandatory for public or private entities collecting, storing and/or processing personal data of natural persons in application with the General Data Protection Regulation (GDPR). The DPO needs to have several skills and is a key function to ensure the compliance of a company.

In France, the DPO is the “Correspondant Informatiques et Libertés (CIL)’s successor. The CIL was in charge of fulfilling the mandatory formalities that needed to be sent to the French Supervisory Authority (CNIL). The existence of such a function was not an obligation and the responsibilities were low. However, since the implementation of the GDPR on May 25th, 2018, the Data Privacy Officer (DPO) plays a major role in the protection of personal data for companies.

The GDPR applies to any processing of personal data in the European Union and/or on natural persons located in the EU. Whether public or private, each organisation/company must be able to prove that it is carrying out or has carried out actions allowing them to comply with the GDPR. This can include the appointment of a Data Privacy Officer (DPO).

The appointment of a DPO is mandatory when:

  • You are a public body or authority, or
  • The personal data processed are “sensitive”, or
  • The personal data are processed in a “large-scale”, or
  • Your activity includes the profiling of natural persons for advertising purposes

DPO Consulting was created before the implementation of the GDPR (General Data Protection Regulation) and has always been an expert in the implementation of data privacy rules for companies within or outside the EU. We will support the management of actions and processes to make your company/organisation fully compliant with the GDPR. DPO Consulting provides you with all of their knowledge by using expert tools, training your employees and adapting their methodology to your activities.

Several rules of the European regulation (GDPR) could be part of the DPO function and/or the data controller such as:

  • The creation and maintenance of a record of processing activity,
  • The conduction of a Privacy Impact Assessment (PIA) when the processing is likely to cause high risks for data subjects and their personal data,
  • The implementation of ethical processes respecting the principle of Privacy by Design,
  • The collection of the consent and the information regarding the rights of data subjects,
  • The appointment of an internal or outsourced DPO to ensure the implementation of the obligation that we have listed

DPO Consulting is supporting companies throughout the implementation of the GDPR. We work every day to make data protection easier and accessible to all entities whether they are small, medium, or large.

Do you have any questions?
Our team is available for you

DPO Consulting has strengthened its practices in its several years of experience. We have supported hundreds of clients in many sectors. Our experts can adapt to your organisation and the specific requirements of your field of activity (bank, insurance, clinical trials, etc.). The services are provided as close to the practices of your organisation or DPO as possible. Our goal is to stop making the GDPR an obstacle to your activities and turn in into a real asset.

We offer you every service related to data privacy such as training, GDPR audits, outsourcing the DPO, the EU Representative or the UK Representative, etc. We will appoint you an expert specialised in your field allowing you to become fully compliant with the GDPR.

The rights of users regarding the processing of their personal data:

  • The right to give or not give consent to the processing of their personal data
  • The right to access their personal data
  • The right to rectify or erase their personal data
  • The right to limit the processing of their personal data
  • The right to oppose the processing of the personal data (for example through the cookies implemented on websites)

Other rights are also given to users, for example regarding processing activities, including profiling.

Many companies/organisations are still not compliant with the GDPR, even though it was implemented in 2018. Moreover, the supervisory authority of each country could engage the following sanctions:

  • A fine of up to several million euros
  • A suspension of personal data flows
  • An administrative fine
  • An obligation to quickly implement a record of processing activity
  • A temporary or permanent ban to collect personal data
  • A publication of the sanction

Source: CNIL official website / French government website.

Our
partners