GDPR - General Data Protection Regulation


The importance of personal data, data, and their security continues to grow. The team at Stuchlíková & Partners provides its clients with consultancy in all areas related to data, including personal data protection (GDPR), cybersecurity, privacy, and data transfer.

GDPR Services We Provide

GDPR Audit and Analysis

  • We’ll assess the current state of personal data protection in your organization.

Privacy Policies (Privacy Policy, Privacy Notice)

  • We’ll prepare notices on the processing of personal data by your company for specific needs (website, applications, job applicants, suppliers, employees, …).

Processing Agreements

  • We’ll ensure compliance with legal obligations and set up controller-processor relationships.

Records of Processing Activities

  • We’ll create an interactive document for keeping records of the controller’s data processing activities.
  • We’ll train responsible persons on how to work with these records.

Internal Documentation

  • We’ll prepare internal guidelines.
  • We’ll incorporate GDPR clauses into contractual documentation.
  • We’ll review the legal basis for processing personal data.
  • We’ll prepare consent forms for processing personal data and instructions for their use.

Data Protection Officer (DPO)

  • We’ll provide a DPO or support for internal DPOs.

Data Protection Impact Assessment (DPIA)

  • We’ll assess the obligation to conduct a DPIA.
  • We’ll draft a DPIA including subsequent reviews.
  • We’ll review cookie settings.
  • We’ll prepare the text and settings for the cookie banner.
  • We’ll process related documentation.

Why Choose Our Law Firm

  • We have conducted dozens of GDPR audits and implementations.
  • We set up personal data protection using the Privacy by Design approach.
  • We have years of experience in providing consultancy in data protection and cybersecurity (Act on Cybersecurity, NIS2, ePrivacy, GDPR, DORA, …).
  • We conduct GDPR training for companies, their management, and employees.
  • We regularly consult with the Office for Personal Data Protection.
  • We work closely with IT companies on implementing GDPR in information systems.

What Can the GDPR Implementation Process Look Like?

  1. We’ll arrange a meeting to determine the scope of your organization’s obligations concerning personal data.
  2. Based on a personal meeting and information provided by you, we’ll conduct a thorough examination of the current state of personal data protection in your organization.
  3. After the analysis, we’ll develop a detailed plan on how the GDPR regulation implementation will proceed.
  4. Then, the actual implementation of measures according to the GDPR regulation will take place.
  5. Finally, we’ll check the functionality of the implemented system and compliance with GDPR and prepare a final report describing the implementation process and the measures introduced. The report can be used to demonstrate compliance with the GDPR regulation to the Office for Personal Data Protection.


The Windy Logo
The Dibaq Logo
The Perfect Clinic Logo
The ACCOM holding Logo
If you're interested in our services or would like more information, please don't hesitate to contact us to schedule a consultation.
Contact Us