Summary of the main Legal Practice Areas, with details of the most relevant Services.
1. Data Protection
- RGPD ADEQUACY – LOPDGDD TO COMPANIES
- GDPR / LOPDGDD / LSSI / LOCM compliance
- Continuous Adequacy (Annual Adequacy Guarantee)
- GDPR audit
- Web Audit
- Legal text adaptation
- Cookie Review
- e-Commerce adaptation
- Impact Assessment (EIPD)
- Security Document with Technical and Organizational measures
- Security Breaches (with legal assistance before the AEPD)
- eDPD (external Data Protection Officer)
- Legal consulting on the matter
- Training (online and in person)
2. Information Security
- Implementation Legal, organizational and technical measures
- Information Systems Audit
- Compliance
- Training (in person and online)
3. Digital Law Consulting
- Adaptation of Digital Projects
- intangible assets
- Intellectual property (trademarks)
- CATALOG OF DIGITAL LAW SERVICES
- Industrial Property
- Domain management
- Audiovisual law (registrations, purchases)
- eCommerce
- Adaptation MarcNormativy Practical
- Legal text adaptation
- Legal and tax aspects
- Legal responsibility of service providers
- APPs: Terms and Conditions
- Digital Reputation
- Servicide Internet Privacy (Fingerprint)
- Personality rights in entorndigital
- Social media
- Legal and crisis communication management in digital environments
- Corporate identity and online advertising
4. Computer Criminal Law
- Cybercrime
- Prevention protocols against cybercrimes
- Protocols for action against cyberbullying/sexting behavior in the company
- Legal advice against scams (phishing – pharming)
- Disclosure of business secrets
- Violation of privacy
- Threats and extortion
5. Technological Judicial Expertise
- Collection of digital evidence
- Obtaining and providing electronic evidence
- Digital forensic analysis (computer forensic)
- Computer Crime Accreditation
- expert reports
- Court attendance
- Due diligence for companies
12 GDPR Compliance Points for Digital Marketing Companies
This report provides a basic framework for digital marketing companies to align with GDPR regulations and promote better privacy and data protection practices. Be sure to adapt these guidelines to the needs and specificities of the company and seek legal advice if necessary to ensure full compliance.
12 GDPR Compliance Points for SEO and Digital Marketing
1. Explicit and informed consent: Make sure you obtain explicit and informed consent from users before collecting, processing or storing their personal data. Consent must be free, specific, informed and unequivocal.
2. Transparency in data collection: Provides clear and accessible information about how personal data is collected, used and shared, including the specific purposes for which the data is collected.
3. Purpose limitation: Uses the data collected only for the specific purposes that were communicated to the user and for which consent was granted.
4. Data minimization: Collect only the data strictly necessary to fulfill the established purpose and do not retain personal data beyond the time necessary for those purposes.
5. Seguridad de los datos: Implements appropriate technical and organizational measures to ensure a level of security appropriate to the risk, protecting personal data against loss, misuse or unauthorized access.
6. Rights of the interested parties: Respects and facilitates the exercise of user rights under the GDPR, including the right of access, rectification, deletion (right to be forgotten), limitation of processing, data portability and opposition.
7. Data Protection Impact Assessments (DPIAs): Conduct Impact Assessments when data processing may result in a high risk to the rights and freedoms of individuals, especially using new technologies (AI, Big Data, etc.) and large marketing campaigns.
8. Appoint a Data Protection Officer (DPD), if necessary.
9. International transfers: Ensures that transfers of personal data outside the EU are carried out in accordance with the requirements of the GDPR.
10. Security Breach Notification: In the event of a data security breach, notify the AEPD within the established deadline and, if it is likely to result in a high risk to the rights and freedoms of individuals, notify those affected without undue delay.
11. Responsibility and accountability: Maintain detailed records of data processing activities to demonstrate GDPR compliance and adopt a “privacy by design and by default” approach. Remember to have the obligatory Data Processor Contracts signed: they are a guarantee for your client that improves your reputation.
12. Training and awareness: Ensures that all staff involved in the processing of personal data are informed and trained about their obligations under the GDPR and regularly updates this training.