top of page
Companies building Technical products or Applications
You are processing personal data from regular individuals via technical products or apps, or you are building an application for a client, related to the personal data they have collected.
You have expertise and deep technical knowledge on the know-how of the product, but you seek certainty about if the technical implementations fall within the legal scope.
Process
When considering data protection requirements for building technical products or apps, the most important thing is understanding what is agreed with the data processor on one hand, and what falls under consent or legitimate interest on the other.
The main contractual challenge for companies building technical products and apps for customers is knowing what falls under data protection laws and requirements, and what is a negotiation tactics from the counter party.
Product and data
Legal scope
Data subjects
Security
Documentation
Organisation
Monitoring
We will dive into the type of application or product that is going to be built, and what type of personal data it will collect.
We review and consider the set or negotiated scope in your agreements, and material possibilities in the company.
We look at what is needed for consent or transparency towards data subjects.
We compile a checklist of technical and organisational security measures and assess risks. We understand if personal data is, or must be, pseudonymised, and on what level.
We draft internal documentation and checklist to follow.
We look at the processing within the organisation, roles and responsibilities, and train staff accordingly.
At least annually we review everything we have in place and adjust accordingly.
bottom of page