Representation for Non-EU Controllers
The GDPR affects organisations not just within the EU, but globally.
This means any organisation established outside of the European Economic Area (EEA) that processes personal data on residents within the EEA, or monitors their behaviour (on a large scale) and does not have an office within the EEA, is required to comply with Article 27 of the GDPR, regardless of where their servers are located.
Article 27 requires Data Controllers outside of the EEA to appoint a representative based within the EEA to act as their point of contact for regulators and Data Subjects.
The DPO Centre can act as your EU Representative within the EEA. We can advise you on the changes you will need to make, how to create and maintain your ‘records of processing activities’ (RoPA) and to act as your point of contact for EU Data Subjects and regulators.
Contact us now to discuss your specific requirements.