Regulation 2016/679 (General Data Protection Regulation, GDPR) represents legal base for data protection in EU territory defeating rights of EU citizens against unlawful personal data management. GDPR attracts all existing EU protection and data process principles and extends the scope of the EU data protection law to all foreign companies processing data of EU residents.

The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

Where the processing is carried out by a public authority, except for courts or independent judicial authorities when acting in their judicial capacity, or where, in the private sector, processing is carried out by a controller whose core activities consist of processing operations that require regular and systematic monitoring of the data subjects, a person with expert knowledge of data protection law and practices should assist the controller or processor to monitor internal compliance with this Regulation (Data Protection Officer, DPO).

The law firm Kubík Partners advokátní kancelář helps its clients to understand all GDPR aspects and grants DPO agenda.