In January 2012, the European Commission proposed a comprehensive reform of data protection rules in the EU.

On 4th of May 2016, the official texts of the Regulation and the Directive have been published in the EU Official Journal in all the official languages.

While the Regulation has entered into force on 24 May 24th 2016, it applies from May 25th 2018. The Directive entered into force on May 5th 2016 and EU Member States had to transpose it into their national law May 6th 2018.

The objective of this new set of rules is to give citizens back control over of their personal data, and to simplify the regulatory environment for business.

The data protection reform is a key enabler of the Digital Single Market which the Commission has prioritized.

The reform will allow European citizens and businesses to fully benefit from the digital economy.

EU Privacy Protectors will help your organization to get your Data Protection in order.

Privacy Services

Under the proposed Commission Regulation all public authorities and companies of over 250 employees or whose core activities require systematic monitoring of employees or other individuals, are required to appoint and register a data protection officer.

We acknowledge that the hiring of a Data Protection Officer may require time, money and resources and sometimes a part-time DPO suffices which is why EU Privacy Protectors offers the DPO role as a service to organizations requiring an interim or fixed data protection officer for a few days a week at favorable terms.

General Data Protection Officer work will include drafting and monitoring implication and application of data protection and related policies, monitoring the implementation and application of the new Data Privacy regulatory framework, ensure that all data processes are appropriately registered and maintained and monitoring, documenting, notifying and communicating data security breaches.


Specifically we will provide the following services in the course of our role as Data Protection Officer of your organization:

    • One free initial video conference consultation to discuss requirements
    • Awareness sessions for employees and departments to raise knowledge about the coming legislation and the impact on the organization.
    • Regular meetings with key stake holders in your organization to determine scope, budget and detailed requirements for the management of a data protection program.
    • Production and/or implementation of key data protection documentation in your organization
    • Bespoke data protection training to key personnel, including HR. Legal, IT, Security, Commercial
    • Assemble a data protection registration that will eventually replace the current notification system.
    • Privacy impact assessments on some of your processing systems.
    • Full audit on all your systems and processes
    • Dry-swim testing privacy breach processes
    • Annual DPO reporting


Outsourcing the DPO function to an external consultancy will bring you the following advantages:

    • Peace of mind that you are meeting data protection legal requirements by appointing an independent data protection officer
    • Have at your disposal a multi lingual consultant with over 10 years experience in multi jurisdictional data privacy regimes, particularly within Europe and with good knowledge of how national data protection authorities operate
    • Get all your data protection work done by one consultancy with a good network of  regulator contacts, external counsel and other consultants

Data Breach Response Management

EUPP offers various services and can offer extensive expertise in preparing and managing a breach. When the shit hits the fan;
  • We can handle all aspects of account management and notification,
    including drafting, printing and mailing or emailing letters.
  • Within our network we can mobilize forensic partners that can advise how to stop data loss, secure evidence, prevent further harm, preserve evidence and manage the chain of custody, minimizing the chance that evidence will be altered, destroyed, or rendered inadmissible in court.



We are a leading, Amsterdam based, European Privacy Protection organisation with specialists that are passioned about security and privacy.

Over the years we’ve seen hackers and governments hijack the internet and exposing users to threats to their identity privacy and financial security. It is our ambition to help organisation to secure their digital environment to internal and external threats so they can deliver their products and services without being at risk to fines from the Data Protection Authorities or other reputation damages.

Our specialists have many years of experience in securing businesses and IT environments in diverse sectors and are up to date on the latest data protection regulations.


Understanding the changes in the EU Data Protection: a look at the Big Picture.

The date of May 2018 for compliance with Data protection is only one component of a comprehensive, ambitious and global European Digital Single Market agenda which will change the sector considerably. With a budget of €415 billion funding approved in 2015, compliance alone is just one aspect. Between 2015 and 2020 we are experiencing a …

Hoe gaat de school om met de privacy van uw kind? In 10 stappen naar een betere AVG compliance.

Met de komst van de Algemene Verordening Gegevensbescherming (AVG) dragen schoolbestuurders meer verantwoordelijkheden om de persoonsgegevens van hun leerlingen goed te beschermen. De wet is al in werking getreden en zal per 25 mei 2018 ook echt gehandhaafd gaan worden door de Autoriteit Persoonsgegevens. 1, Zorg dat de medewerkers op de hoogte zijn van de …