Knowing your customers is essential, but handling their personal data requires strict compliance with European legislation: the EU General Data Protection Regulation (GDPR), which affects organisations across the board. To support this task, our team includes some of Spain's most recognised privacy experts and brings extensive experience advising several of the country's largest companies. We also assist international groups in adapting and implementing their global privacy policies to the Spanish regulatory framework.
At Audens, we help organisations implement the GDPR by embedding privacy into all their processes and achieving compliance that is not only robust, but tailored to their needs. We turn a legal obligation into a strategic advantage.
GDPR implementation
We provide practical solutions, adapting processes to the GDPR in a realistic and customised way. Our starting point is simple: compliance is of little use if it cannot be demonstrated.
Privacy by design and impact assessments
Any operation involving personal data carries legal implications. Only a prior analysis allows organisations to identify risks, prevent consequences and reduce costs.
Training
The best way for an organisation to comply with the law is for all its members to understand it. We design training programmes tailored to each client's structure and operational environment.
Data Protection Officer
We provide external Data Protection Officer services and support in-house privacy teams. We perform these functions proactively, generating real added value.
International data transfers
We are experts in managing international data transfers, advising on standard contractual clauses, transfer impact assessments and mechanisms such as binding corporate rules.
Regulatory investigations
We provide legal assistance in inspections by the Spanish Data Protection Authority, preparing submissions, filing appeals and pursuing one goal: avoiding sanctions.
Key experience
We provide ongoing advice and legal defence in data protection matters to leading companies in strategic sectors such as telecommunications, energy, banking, insurance, investment, medical research and consumer goods. Our experience in highly regulated environments allows us to offer real peace of mind to large organisations.
We design global data protection strategies for corporate groups, defining roles, flows and responsibilities among their various entities. In every case, we establish a common, coherent and legally sound framework for data governance across the organisation.
We supported an international technology group in assessing the impact of a highly successful app developed to break infection chains during the COVID-19 pandemic. We identified risks, evaluated threats and proposed mitigation measures tailored to the project from the design stage.
We appealed before the National High Court a sanction imposed by the Spanish Data Protection Authority on a financial institution for including data in a creditworthiness file. The Court upheld our appeal, recognising that the company had issued the required prior notice through the channels agreed in the contract, and declared the sanctioning resolution null.
