Kuyumdjieva & Vitliemov

Data Protection

The EU General Data Protection Regulation (GDPR), which was introduced on the 25 May 2018, is applicable across the European Union, and as such all Bulgarian companies should currently be complying with the regulation.
In the data protection area, we offer assistance with:

  • advising on and drafting company-internal regulations, policies and other standard form documentation to be adopted by business to ensure data protection compliance;
  • dealing with responses to data security breaches;
  • advising on data protection issues arising for employers, including monitoring at work and processing of sensitive personal data;
  • advising clients on responding to subject access requests as well as assisting in dealing with the requests themselves;
  • dealing with data protection issues associated with corporate transactions (eg in relation to due diligence disclosure or transfer of data as an asset) and outsourcing transactions;
  • advising on the rules relating to telephone, email and SMS marketing as well as data profiling activities.