In today’s global information economy, collecting, using, storing and transferring data is key to every organisation’s efficiency and success.
Personal data has become a strategic asset. Organisations need to view and manage their data in the same way as their other assets: knowing exactly what and where it is, what it is used for and who is responsible for it.
Personal Data Protection Law Regulation
In the past years, regulation surrounding personal data and its protection has increased drastically throughout the world. The European General Data Protection Regulation (GDPR) in particular had a global impact. With the sanctioning regime of 2021 Ecuadorian Organic Law on Data Protection – Ley Orgánica de Protección de Datos Personales (LOPDP) – entering into force in May 2023, any processing of personal data must be brought into compliance with the provisions of the LOPDP.
Now more than ever, both public and private entities are affected and need to manage their reputational and financial risks in regards to personal data.
Our team of international Privacy and Data protection lawyers is here to help and assist you navigate these complex and evolving challenges every step of the way.
We have been assisting domestic and international corporations and domestic public entities from the moment the new regulation entered into force through designing and implementing compliance policies and privacy governance frameworks. We can help in privacy disputes and litigation, and in case of enforcement actions by authorities.
Our privacy experts who have exhaustive knowledge of the LOPDP and extensive experience in implementing the European GDPR in international settings will provide you with advice you can trust.
Our personal data protection services:
• Gap and risk assessment audits
• Implementation and follow-up of privacy processes by design and by default
• Data protection and privacy policies and procedures
• Information security audits and management
• Subject’s access requests management
• Training and employee awareness
• Data breaches and incident response
• Contracts and suppliers – Data processing agreements (DPA) between controller and processors
• Cross-border data transfer both intra-group (Binding corporate rules – BRC) and with third parties (adequacy checks, Standard contractual clauses)
• Legal representation in complaints or litigation with individuals or controlling authorities
No matter your field of interest, activity or industry each and every sector is affected by domestic and/ or international personal data protection regulation including financial institutions and banking, health institutions, pharmaceuticals and chemicals, biotechnology, insurance, education, construction and engineering, consumer goods and retail, transportation, automotive, hotels and leisure, IT, telecommunications, manufacturing and electronics, publishing and media .
