General Data Protection Regulation (GDPR – Privacy)

The new European General Data Protection Regulation (GDPR) was published in the Official Journal of the European Union on May 4, 2016.

It has come into force on May 24, 2016 and it is applied from May 25, 2018.

It is essential for Companies to promptly start the process of revision and adaptation to the new necessary measures, in order to operate in compliance with the Regulations and thus to be protected from the heavy sanctions in the event of violations.

This regulation applies to:

  • the entirely or partially automated treatment of personal data,
  • the non-automated processing of personal data contained in an archive or intended to be included in one,


  • public and private companies,
  • all subjects (Data Protection Officers or Managers) established outside the European Union, in the event that the treatment concerns either the supply of goods or services in the European Union, regardless of the obligation of payment, or the monitoring of behaviors taking place in the European Union.

Therefore the organization and the implemented processes can be improved by workshops (tests), training and audits.

Thus, it is possible to identify the best solutions for the business demands to meet the GDPR requirements, thanks to the contribution of all the personnel involved for different reasons in the treatment processes.