The General Data Protection Regulation – GDPR – became mandatory starting on 25th of May 2018 by the European Parliament.
G.Kouzali LLC notes that all Cyprus law firms should have the General Protection declaration which is governed by the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (the “EU Regulation”).
The GDPR applies to the processing of personal data that is wholly or partly using personal data, which form part of a filing system.
If, a Lawyer in Cyprus holds information that indirectly can identify an individual that could constitute personal data.
Even if a Cyprus Law firm needs additional information to be able to identify someone, individuals may still be identifiable. That additional information may be information that a Law firm already holds, or it may be information that a Law firm needs to obtain from another source.
The law firms in Cyprus can help local companies and / or individuals calling for to become GDPR compliant by helping them with the implementation of the new regulations.
Cyprus Law firms can become GDPR compliant by drafting new consent agreements and by informing their clients concerning their rights under the new law. They can also improve their data collection methods and become more transparent in this sense.
Lastly, G.Kouzalis LLC informs all clients that the Personal Data should not be disclosed to any third parties without the approval/confirmation of the respective Company/individual.