🌍 Embrace Borderless Opportunities with Lexidy’s New Global Mobility Department. Learn More!
 
 

GDPR Compliance Service

Let's Talk Now!

What is the General Data Protection Regulation?

The General Data Protection Regulation (GDPR) is a pan-European law that intends to strengthen and unify data protection for all individuals within the European Union (EU). It also covers the export of personal data outside the EU. The main objective of the GDPR is to give citizens and residents control over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

When does the GDPR apply?

The GDPR applies if:

  • Your company processes personal data and is based in the EU, regardless of where the actual data processing occurs.
  • Your company is established outside the EU but processes personal data in relation to the offering of goods or services to individuals in the EU, or monitors the behaviour of individuals within the EU.

Non-EU based businesses processing EU citizen’s data have to appoint a representative in the EU.

When doesn't the GDPR apply?

The GDPR does apply if:

  • The data subject is deceasad.
  • The data subject is a legal person.
  • The processing is performed by a person acting for purposes which are outside their trade, business or profession.

Why is it important?

This regulation aims to protect the personal data of European Union citizens and covers all entities that process EU citizens’ data. Citizens have the right to access the data that an entity holds about them, the right to be forgotten and the right to explicit consent. In other words, citizens have greater rights than before, while giving companies new obligations, like the mandatory reporting of security breaches within 72 hours.

What if a company breaches the GDPR?

The GDPR includes significant fines for those who don’t comply. Penalties are the greater of  €20,000,000 or 4% of a company’s turnover. In addition, it may entail a prohibition on processing personal data, which may prevent the processing of invoices.

Process of complying with GDPR?

  1. Company data collection. We study the traceability of data and the electronic devices used, among others.
  2. Recording of processing activities. 

    We will generate and update the Register of Processing Activities, which contains information on:

    – The processing of the data and the personal data processed

    – The recipients of the data

    – The deadlines foreseen for their deletion

    – The purpose of the processing

    – The technical and security measures adopted by the company to carry out the processing.

  3. Risk assessment report. We will provide a GDPR compliance information checklist for the client to complete on the company’s data processing and activity.

    This risk assessment allows us to generate the necessary legal documentation as well as regularly updating to remain compliant. We also propose any security measures that need to be implemented.

  4. Review and drafting of clauses, contracts and documentation. Review and drafting of all types of documents which includes personal data that is processed in accordance with the GDPR.
  5. Web audit and drafting of legal texts. Analysis of forms and adequacy of the Legal Notice, Privacy Policy and Cookies Policy.
  6. Drafting of all necessary documents. Drafting of the necessary documentation in order to comply with and be able to accredit the principle of proactivity, as well as other obligations.
  7. Training of staff in data protection. In order to ensure that the security protocols implemented in the company are complied with.
Lexidy is a modern, dynamic, and innovative law firm. We always put customers at the center of our work and do our best to give an exceptional experience. Our expertise in Spain and Portugal allows us to solve complex problems thoroughly and cut all the risks before they may happen.
The number of Golden Visas issued with us
0
How many clients we assisted in 2020
0
Our average score from 300 reviews
0

Find you Corporate Lawyer

Héctor Lopez Vazquez

Héctor Lopez Vazquez

Head of Corporate Department
Madeleine Cadwell

Madeleine Cadwell

Lawyer
Francesca Coluccio

Francesca Coluccio

Legal Advisor
Jorge de Ros

Jorge de Ros

Lawyer

Frequently Asked Questions

Yes. It covers any company or organisation that processes personal data (whether of its employees, customers and/or suppliers), regardless of size or the volume of data it handles.

This is a good starting point, but the GDPR establishes new obligations. Therefore, you will have to review them and adapt your privacy policies to the new Regulation.

Yes. Also, it’s important that your suppliers comply with the GDPR and that you work with trustworthy brands.

Yes. All companies that offer goods and services and handle data of EU citizens must comply with the regulation, even if you are based outside the EU.

It depends if the data subject has given you their express consent to transfer their data. Have you informed them of the risks involved in transferring their data to a country that lacks adequate safeguards?

Also, do you need to communicate the information in order to perform or execute a contract between your company and the data subject? If not, do you have the authorization of the Spanish Data Protection Agency?

This means it is up to the company to decide what security measures are in place to protect the data and privacy of individuals. The business must also show that these measures are effective and comply with the regulation.

The new regulation requires that data should be collected for a specific purpose and only a minimum amount of personal data is necessary for legitimate processing purposes. You should analyse what measures, both technical and organisational, your company has in place to avoid jeopardising the rights and freedoms of data subjects.

The person who is receiving the advertising or promotions must have given their express consent. It is no longer sufficient, for example, for you to have a pre-ticked box in which they give their consent.

Therefore, you must check that all database records are aware of what and how their data will be used. You need to ensure that they have given you clear approval. This requires a review of all the information clauses that have been used up to now.

No, it is no longer obligatory.

However, there must be a Register of Processing Activities, which is documents who is responsible for the data and makes an inventory of the type of data, how it is processed and protected.

If your company has more than 250 employees or processes special categories of data, like health or ideology, this register is mandatory. Smaller businesses don’t need to do this but it is recommended as it demonstrates that you comply with the GDPR.

This person is designated by the company, internally or externally, to supervise, coordinate and disseminate your data protection policy. In addition, they liaise with the Spanish Data Protection Agency.

Their appointment is only mandatory in certain cases, like: if you are a public body or company (except the courts); if your company conducts regular and systematic observation of people on a large scale, such as internet tracking, location of users through apps, profiling, scoring, loyalty programmes or if you handle large-scale data on people on sensitive subjects, like health, ideology and sexual orientation.

Be happy. Join a community of satisfied and successful customers

Karin Avila
Karin Avila
11:05 20 Mar 24
I've worked with Lexidy for three years on my immigration status. They are professional, knowledgable and reliable. In particular, I've worked with Cristina and her team who have provided consistent top-notch service. Cristina has a thorough and clear communication style, and she has been a great source of information. I highly recommend working with Lexidy.
Muizz Ahmed
Muizz Ahmed
11:33 14 Mar 24
Working alongside Cristina has been an excellent experience. I initially contacted her from Pakistan and had a one-on-one meeting in Madrid upon my arrival. She is an exceptional lawyer with extensive expertise in her field. Despite my numerous concerns and questions, she remained remarkably calm and patiently explained everything to me, demonstrating both her exceptional professionalism and personal qualities.Thanks to her assistance, I obtained my TIE in Spain. For anyone seeking immigration advice or services, I highly recommend reaching out to her. Cristina, along with Lexidy, offers a comprehensive solution for realizing your European dreams. Many thanks, Cristina and Lexidy, for your invaluable support.
Alejandro Perez
Alejandro Perez
16:40 29 Dec 23
I’ve used them numerous times for my visa purposes. They’ve been honest and direct with there responses. Comes to show they’re knowledgeable and wont waste both our times. Highly recommend them!
ERIC W
ERIC W
16:08 07 Dec 23
Thank you Vasco and Pedro. Good service.
Ebrima Mansa Badjie
Ebrima Mansa Badjie
05:44 13 Oct 23
Yaw Kevin
Yaw Kevin
02:00 27 Sep 23
We get to know about Spanish Golden Visa by property investment through web searches but as a foreigners we have limited knowledge about Golden Visa application compliance and property sales and purchase governing rules and regulations.There are many websites out there listing out how Golden Visa legal system or property ownership in Spain works but we know it is even beyond language bearer that we need an experience, responsive and dedicated specialist to do the job.We come across Lexidy Law, which specialized in assisting foreigners in Golden Visa application and in our case through the property purchases (there are few types of ways for qualifying on Spanish Golden Visa application).Because of the straightforward services price structure of Lexidy and easy to understand explanations of the home-purchasing process, we felt confident after meeting with Mr.Alejandro who is the first person we met of the application process.During our property purchase, the sale of the house has come to a halt and become a complex and problematic deal as a result of sellers’ family dispute on the sales proceed distribution. The argument lasted for two months, pushing back the completion deadline.The Lexidy real estate team has done an excellent job, in particular with the lead by Señor Juan Diego.Juan is highly knowledgeable, competent and down to earth practical lawyer in this field; his previously work experience in real property gives us good spectrum of views and advices with alternative or solutions and he shows his capability in ranking them logically so we do the decision to choose the best fit for ourselves.He promptly provides updates on every development and highlights complication or consequences from both the seller and buyer perspective (nearly every day). His effective and fluent communication skills in written and spoken English saved thousand words for non Spanish language speakers like us; He maintain his client's best interests in mind yet remain independent in giving his advices.Lexidy's real estate team has spent a considerable amount of time and resources helping us have a successful closure to this property purchase.Yes, we are now proud house owners, and Lexidy didn't charge us extra for the additional work and efforts on the process hiccup. We are impressed and thankful with the professionalism.Thankful Lexidy, it would be impossible for us to have a flawless closure and a successful property transaction which now lead us to the final path of Spanish Golden Visa process which handle by Ms.Laura and her team.It is truly a blessing and we sincerely hope that our review might also benefit you in finding a correct choice of Spanish Golden Visa application service provider.
Iuliana Popa
Iuliana Popa
15:46 26 Sep 23
Update: I received the money in two days after I left this comment, big kudos to the people involved in this. It's really incredible, I did not expect it. Thank you very much!Horrible service! I was their client for almost 2 years and they transferred me to another accountant. All could’ve been great, but they are not returning my money for a service they didn’t complete (around 400€) for already more than 6 months and what is even worse, not even replying to my emails. If I would be you, I would definitely not sign with them.
Mohamed Ramy
Mohamed Ramy
09:57 29 Aug 23
Exceptional service with exacting details. Not only were the staff friendly but also extremely exhausting to make everything simple, efficient, and clear. Whether it's about the new digital visas or retiring visas, they're your obvious choice!
Journey of sanjaya Wijekoon
Journey of sanjaya Wijekoon
12:33 21 Aug 23
Jonathan Elron
Jonathan Elron
07:37 13 Aug 23
A great law firm that covers anything an expat might need. I needed help with real estate initially, and they also helped me with immigration, taxes, and corporate legal matters. Fantastic people to work with. Alejandro from their real estate and immigration department is my main contact and he is an absolute pleasure to work with. Highly recommended!
Kyle McConnell
Kyle McConnell
14:51 09 Aug 23
Steve Pitt
Steve Pitt
17:32 26 Jul 23
Outstanding service. Knowledgeable, responsive team of attorneys that is easy to work with. We used them to purchase a property in Madeira Portugal and everything went great. We worked with Vasco, who was a pleasure to work with, very responsive, professional and knowledgeable. We're working with their immigration team now for our D-7 application and they've been great so far. Very helpful and providing the service and help we need to hopefully complete the process. Both my wife and myself have been very pleased with their service and highly recommend using Lexidy Law Boutique.
Éva Mezősi
Éva Mezősi
07:54 26 Jul 23
Lexidy was highly dependable, and our devoted lawyer, Rita Proenca, consistently remained available to address all our inquiries. We are extremely appreciative of her assistance! We highly recommend their services!
Juan B Colombo
Juan B Colombo
15:25 04 Jul 23
I had an issue with an incorporation and I had to request a refund for my order. It took a little longer to get the refund but the CEO took personal care of my case and issued the refund as soon as it heard about the case. Very serious and responsible company.
Jure Borisek
Jure Borisek
13:37 23 Jun 23
Me and my partner we wanted to get married in Azores, Portugal. Because we are not Portuguese and not living in Portugal it was very complicated to get the paperwork for marriage procedure done. We hired Lexidy Law Boutique Portugal. Our contacts were Diana, Bruna and Margarida. We worked with a very short time window, because we decided for their services just some months before our planned ceremony date. After the plan was laid out, they started to fulfil it immediatelly. I cannot remember the last time, when someone was so responsive and made such an effort. They have encouraged us so positively throughout the process and kept us informed of progress all the time. Bruna was being very supportive and responsive at all times.Lexidy Law Boutique, especially their team Diana, Bruna and Margarida made our wish come true of getting officially married in Azores, Portugal as a foreigner.We highly recommend Lexidy Law Boutique for their services.
Michael Leggett
Michael Leggett
22:27 17 Jun 23
Absolutely wonderful team that made the visa/residency application process seamless! For any Americans looking for assistance with this process, Lexidy is THE way to go. Great team to work with!!!
Omar Ghosheh
Omar Ghosheh
21:25 15 Jun 23
Lexidy Law team provided me excellent service. Their promptness and customer service was outstanding. I used Lexidy to facilitate the purchase of my house in Marbella Spain and they made the experience so simple and pleasant. I highly recommend Lexidy’s services. Juan Muñoz and Alejandro Cano were my point of contact and found both of them a joy to work with.
Blake Yu
Blake Yu
12:13 30 May 23
I'm an expat / tech worker from the US and have been in contact Lexidy since I moved to Barcelona roughly a year ago and have to say it's been very convenient having help centralized across tax, immigration, and labor. Want to give a shout out to Monica Lopez, Gabriela Baly, Sara Rinaldi & Sara Fraile for all being very professional / supporting me as things have come up!I've already referred a few friends in that are interested in moving to spain on nomad visas. Gracias por todo!
Next Reviewsjs_loader
Discover more About us

Related Services

Non-Lucrative Visa

Visa for Non-EU nationals who wish to live in Spain without performing any economic activity.
Read More

Buying a house in Spain

Visa for Non-EU nationals who wish to live in Spain without performing any economic activity.
Read More

Tax Anlysis

Visa for Non-EU nationals who wish to live in Spain without performing any economic activity.
Read More

How can we help you?

Subscribe to our newsletter

Stay ahead of the changes that matter to you

icon