Home / Insight / GDPR


Our law firm advices your business on GDPR compliance

Back to GDPR

The new European General Data Protection Regulation (GDPR), which will apply equally to all Member States from May 2018, is designed at European level to strengthen and unify both personal rights (creation of the right to data portability, data anonymity, special provisions for minors etc.) and the responsibility of those who process the data. The sanctions and potentially high fines pose a significant economic risk to companies concerned. Therefore, whatever your business, it is essential that you adapt and comply with current and future obligations, which vary depending on the nature of the files and the purpose of the information being gathered.

We specialise primarily in the following areas:

  • compliance with French and European legislation;
  • client-side and provider-side IT contract negotiation;
  • assistance with the information/consent process;
  • coordinating transfers of data within/outside the European Union;
  • producing standard clauses/internal rules;
  • designing principles in relation to spamming/e-commerce/opt-in/opt-out;
  • biometric data protection;
  • security for the collection, analysis and storage of sensitive data;
  • representation during negotiations with the French Data Protection Commission (CNIL);
  • litigation.

The following information is intended only as a guide and the list of our services is not exhaustive. Please contact us to find out more or receive a quote.


Explore more


Show only
Leg­al 500 Par­is: rank­ings of our law firm
Per­son­al Data Pro­tec­tion: GDPR im­ple­ment­a­tion in France
France has amended its data pro­tec­tion law to com­ply with GDPR re­quire­ments. Firstly ad­op­ted by the Na­tion­al As­sembly on 14 May, the word­ing was then quasi-fully en­dorsed by the Con­sti­tu­tion­al Coun­cil (De­cision 2018-765 DC of 12 June 2018), to be even­tu­ally.
With the fu­ture of the US-EU data Pri­vacy Shield in doubt, com­pan­ies...
The EU Gen­er­al Data Pro­tec­tion Reg­u­la­tion (GDPR), which has been in ef­fect the European mar­ket since 25 May 2018, re­quires com­pan­ies to meet cer­tain stand­ards when trans­fer­ring per­son­al data to non-EU coun­tries or "third coun­tries" (see Art­icle 44 et se­qq.
CMS Fo­cus­ing on Funds: GDPR – Are you ready?
What is GDPR? The GDPR will re­place much of the ex­ist­ing pri­vacy le­gis­la­tion across the EU (in­clud­ing in the UK, the Data Pro­tec­tion Act 1998). As an EU Reg­u­la­tion it will ap­ply across the EU. However, it also al­lows Mem­ber States to set their own rules in.
Trans­par­ency in Big Data – New in­form­a­tion rights of the GDPR
One of the GDPR’s main ob­ject­ives is to in­crease trans­par­ency in Big Data. Sub­sequently, con­trol­lers are re­quired to re­veal more de­tails of their data pro­cessing op­er­a­tions. In­form­a­tion rights as in­di­vidu­al rights In­form­a­tion rights as stip­u­lated in art­icles.