EU and UK Representation Services Required by GDPR Article 27

Our service provides you access to established and experienced GDPR representation services across the UK and all EU member states from our team of qualified GDPR and data protection professionals. The Representative can liaise with supervisory authorities, supervise Data Subject Access Requests (DSARs), build and maintain Record of Processing Activities (RoPA).

The DPO Centre can provide:

  • EU Representation to organisations outside the EEA
  • UK Representation to organisations outside the UK, after 31st December 2020
  • EU Representation for UK & other organisations outside the EEA, post after 31st December 2020

 

Click here to find out more about when and why you need GDPR Representation.

Enquire now

Representation for Non-EU Data Controllers - GDPR DPO Services

TERRITORIAL SCOPE

After 31st December 2020, at the end of the transition period, the UK Government’s current position is that data controllers or processors located outside the UK that process the personal data of UK citizens will need to appoint a UK Representative.

EU law will continue to require organisations based outside the EEA (including the UK) that process data on EU residents, to have an EU Representative. If an organisation processes personal data of data subjects residing in a limited number of EU states, then its Representative should have a presence in one of those states.

This position may change during the transition period negotiations but probably represents the most likely outcome.

  • During Transition period, we can provide representation for organisations in the UK or any other country within the EU through our London office
  • After 31st December 2020, representation and translation services within the EU will be provided through our Dublin or other EU city offices

The DPO Centre provides local representation and translation services both in the UK and any of the 27 member states across continental Europe.

This includes a physical address in any member state to use on your privacy policy and a local telephone number answered in the native language.

You can always remain compliant with Article 27 of the GDPR even if you only process the personal data of data subjects that reside in the UK or a specific EU member state.

HOW THE SERVICE WORKS

Initial Onboarding

tick
Ensuring your privacy policies and contact details are in place
tick
Establishing your Records of Processing Activities (RoPA)

Ensuring Ongoing Compliance

tick
Maintaining and updating your RoPA with new dataflows and processes
tick
Translating and triaging data subject rights requests and assist with appropriate responses
tick
Ensuring DSARs are responded to appropriately
tick
Informing and advising you on data protection issues impacting your operations

LOCAL REPRESENTATION IN THE UK AND ACROSS ANY OF THE OTHER 27 MEMBER STATES

If the data you process or the service you provide is directed at data subjects that reside in a specific member state or states, we can also provide local representation services in the UK and any of the 27 member states across continental Europe. Where this is required, you will be provided with our physical address in that member state to publish on your privacy policy, together with a local telephone number answered in the local language. Any email correspondence will, where necessary, pass through our professional proxy online translation service, meaning we receive requests in English, then return them via the service to arrive in the local language, therefore enabling us to deliver our service, seamlessly, in all the major Worldwide languages.

BENEFITS OF THE SERVICE

gbp
Highly cost-effective
DPO_Factsheet_Icons34
Coverage for both EU and UK post Brexit
icon
A Representative organisation consisting of a team of experienced data protection professionals
DPO_Factsheet_Icons33
Experience and shared best practice gained from working with over 300 clients
icon
Two-way translation of requests in all major EU languages
call
Adviceline to provide assistance, recommended actions and appropriate responses

WHO WE WORK WITH

The DPO Centre has specialist knowledge in many industry sectors so can provide Representation services for Data Controllers and Processors working in:

Medical and Healthcare

Medical and
Healthcare

Software and Technology

Software and
Technology

Retail and eCommerce

Retail and
eCommerce

Finance and Insurance

Finance
and Insurance

Education, Schools and Colleges

Education, Schools
and Colleges

Charities and Not-for-profit

Charities and
Not-for-profit

Enquire Today

Fill in your details below and we’ll get back to you as soon as possible

Alternatively click one of the options below to speak to us

 

Email Call

Sign up todayThe DPIA is a bitesize assessment of the impact of the most significant, interesting and important-to-know data protection issues. It’s not the full story, just a brisk, 3-minute resumé, collated and condensed especially for busy privacy professionals to ensure you’re aware of what’s happening in our fascinating, dynamic and engaging industry.

See our privacy policy.

Don't show this popup again.