Contact us Language LOAD

General Data Protection Regulation

General Data Protection Regulation (GDPR) replaces the current European Data Protection Directive in May 2018.

The current directive has been implemented in national legislations since 1998. There are several changes that are challenging and important for organizations doing business within the European Union. The sanctions can be up to 4% of the revenue of the organization.

This is parts of the new directive that effects your business:

  • For handling privacy information there must be legal grounds or active consent
  • Systems must be designed to handle a minimum of privacy data – Privacy by Design
  • Citizens have the right to be forgotten as well as having a copy of their data extracted and sent to them
  • An incident should be reported within 72 hours after detection
  • Larger organizations that process privacy data must appoint a Data Privacy Officer

Zacco have the capability to support your compliance effort with specialist competence in privacy law, information security and software systems.

We have a strong team of compliance program managers and specialist that have implemented privacy requirements, payment card industry standards and Sarbanes-Oxley compliance.

Our team also consists of system architects and integration specialist able to re-design and rebuild your system landscape in order to support compliance and Privacy-by-Design.

Download PDF


  • Aarhus
  • Copenhagen
  • Esbjerg
  • Herning
  • Kolding
  • Lyngby
  • Bergen
  • Kjeller
  • Oslo
  • Sarpsborg
  • Stavanger
  • Ålesund
  • Anderstorp
  • Gothenburg
  • Gävle
  • Halmstad
  • Helsingborg
  • Linköping
  • Luleå
  • Lund (Medicon Village)
  • Lund (Mobile Heights Center)
  • Malmö
  • Malmö (Media Evolution City)
  • Norrköping
  • Skellefteå
  • Stockholm
  • Uppsala
  • Västervik
    United Kingdom
  • Birmingham
  • Bangalore
  • Bremen
  • Munich
  • Patents
  • Trademarks
  • Designs
  • Legal
  • Cyber Security
  • Software
  • Digital Brands
  • IP Strategy
  • Business Services
  • Portfolio Outsourcing
  • Patent Drafting
  • Patent Prosecution
  • Oppositions and Appeals
  • Patent Litigation Support
  • Freedom to Operate
  • Landscape Analysis
  • Prior Art Search
  • Patent Monitoring
  • Patent Strategy
  • Trademark Prosecution
  • Oppositions
  • Conflict Handling and Enforcement
  • Cancellation Actions
  • Clearance Searches
  • Monitoring and Watch
  • Design Prosecution
  • Cancellation Actions
  • Conflict Handling and Enforcement
  • Clearance Searches
  • Monitoring and Watch
    Business Services
  • Validation
  • Patent Annuities
  • Trademark Renewals
  • Design Renewals
  • Recordals
  • Translation
  • Portfolio Handling and Paralegal Services
    Cyber Security
  • Business Continuity Management
  • Security Assessments and Tests
  • Digital Forensics
  • IT Governance and Information Security Governance
  • Data Privacy and Protection
  • PCI Compliance
  • Software Development
  • IP Awareness
  • Digital Transformation
  • Internet of Things
  • Platform Innovation
    Digital Brands
  • Domain Name Management
  • Hosting
  • Brand Monitoring
  • Digital Brand Protection
  • Conflict Handling and Enforcement
    IP Strategy
  • Strategy Development
  • Strategy Implementation
  • Portfolio Management
  • Due Diligence
  • IP Audit
  • IP Risk Management
  • Workshops and Coaching
Kristian Elftorp

Kristian Elftorp

Attorney at Law
David Lenntoft

David Lenntoft

Senior Cyber Security Consultant