WE HELP COMPANIES

IN ALL PHASES OF THEIR

COMPLIANCE PROCESS

The General Data Protection Regulation (GDPR) is in force since May 2018 ...

WHAT IS GDPR?

"More than 120 countries adopted Privacy laws inspired by the EU GDPR"

It has reshaped the global privacy landscape. It expanded the definition of processing activities and personal data, impacting businesses around the world, and strengthened the rules for obtaining consent before processing personal data. The GDPR, officially known as Regulation EU 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals in regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, is the European Union's law of reference for personal data protection. It strengthens and unifies data protection for individuals within the European Union.

In France, this regulation is directly transposed into French law with the amended Loi Informatique et Libertés see the french government's official text on Légifrance

The law creates a unified and protective framework for the processing of personal data of Europeans, applying to all companies and their subcontractors, regardless of their location, as long as they offer goods and services to persons residing in the European Union or EU nationals regardless of their residence. 

See the rules in detail on the Offical European Law Website 

99

articles

PRIVACY

by design/by default

90 %

of websites vulnerable

Most companies, just like yours, are all facing the same struggles with the GDPR and its complex set of rules

The challenge for your business

 

  1. Significant change in the way your company operates and its general policy and corporate strategy, so how do you manage this change while also ensuring the success of your business ?

  2. processing data subject’s  access requests

  3. GDPR compliance can be complex, as well as costly and disruptive for organizations when you decide to start your process but there is the main question and not the easiest …Where do I start from ?

  4. 72 hours CNIL - Proper Reporting of Data Breaches: the maximum time limit for notifying the CNIL (or your Supervising Authority) of a data breach/loss is 72 hours from the time your company becomes aware of it. Beyond this deadline you will have to explain, when notifying, the reasons for the delay as well

 

Consequences of non-compliance

  • A hefty administrative penalty : Non-compliance with GDPR rules can result in a massive fine of up to €20 million or 4% of the company's total annual turnover (whichever is higher).

 

  • Criminal sanction : In some cases and depending on the nature of the non-compliance with the regulation, the company may be subject to a criminal sanction (art. 84 of the GDPR). 

 

  • In addition, the failure to comply with the GDPR may also lead to the payment of " compensation " to a data subject (Art.82).

 

  • Business interruption: In some cases, the control authorities may suspend the flow and/or processing of data "temporarily or permanently", which may directly impact the economic activity of your company or even its continuity.

72H CNIL

BREACH NOTIFICATION

LOSS

of market 

IMAGE

REPUTATION DAMAGE

OUR SOLUTION

We are at your side to simplify the process and its implementation with our 360° Compliance offering with a proactive approach to ensure continuous and full compliance within your organization. 

These include personal data discovery, DSR automation, documented accountability, better visibility into data handling activities, and AI-driven process automation.

YOUR BENEFITS

CUSTOMER'S TRUST & LOYALTY

Create a truly customer-centric organization with a privacy-friendly corporate culture.

BETTER DECISION-MAKING

By complying with the GDPR, your organization's data will be more consolidated, making it easier to use and better understand its underlying value.

market share

Protected and enhanced enterprise and brand reputation.

Ready to get started? 

Free consultancy (reserved for new client only), 20 mn remote meeting with our expert.

Schedule a meeting 

You will be redirected on our simplybook me page, read privacy policy of simplybook.me

INTEGRITY

TRANSPARENT & FAIR OFFERS

AGILITY

INNOVATIVE SOLUTIONS

SMART

CONTINOUS COMPLIANCE

HIMALAYA SMART CONSULTING 

We are a data protection and compliance consulting firm, specialized in EU GDPR (General Data Protection Regulation). Himalaya Smart Consulting-HSC offers a full range of services to help companies be GDPR compliant and improve their business data management.

FLEXIBILITY

TAILORMADE SERVICES

EXPERTISES

MULTIDISCIPLINARY TEAM

VALUE

TRIPLE EXPERTISE

GET COMPLIANT, IT'S SIMPLE, IT'S SMART !