Select Sidearea

Populate the sidearea with useful widgets. It’s simple to add images, categories, latest post, social media icon links, tag clouds, and more.

General Data Protection Regulation (GDPR)

From the 25th of May 2018, the new EU General Data Protection Regulation ( GDPR ) comes into effect. GDPR builds on the existing EU Data Protection Directive and will challenge you and your organization in terms and introduces new challenges on how you process, secure and access your data as well as your overall security and breach notifications.

How can we help you?
Our team of experts will work with you to determine the best possible approach and solutions. BAAER consultants are specialists in many different industry sectors and information technology experts.

From beginning to end


  • Understanding how your personal data processing activities align with GDPR requirements
  • Helping you to identify and categorize your organization’s personal data
  • Performing Gap analysis
  • Incident management process review
  • Security Health Check and Maturity Assessment
  • Data Protection Impact Assessment (DPIA)
  • Security architecture consulting
  • Data protection by design
  • DPO consultancy
  • And more
See our GDPR Services

New personal data protection rules and rights according to GDPR:


  • Right to be forgotten – when a subject no longer want his/her data to be processed, and if there are no grounds to retain it, the data should be deleted.
  • Data handling transparency – more transparent and easy to understand information how data is processed.
  • Privacy by design – is already a legal requirement with the GDPR. It means to include data protection from the onset of the designing of systems, rather than as an addition afterwards.
  • Fast data breach detection – businesses and organizations are obliged to inform subjects and data protection supervisory about any data breaches without undue delay.
  • Data portability – the right for a data subject to receive the personal data concerning them, and the right to transmit that data to another controller.
  • Informed consent – companies will no longer will be able to use personal data without clear affirmative actions for consent from users.
  • Data Protection Officer (DPO) – requires data controllers to designate such a new position in companies with more than 250 employees and in firms, which are involved in data processing operations.

Useful GDPR Articles

  • GDPR – Highlights

    First-hand information about GDPR after the GDPR Conference on 29 Jan 2018 in Sofia BAAERLTD team participated at the GDPR Conference on 29 Jan 2018 in Sofia. It focused on the effects of the upcoming General Data Protection Regulation (GDPR) – th...

  • GDPR – your business new best friend

    GDPR has been the “hype” over the last 6 months as we are getting closer and closer to the final start date of this new European regulation about how you work with data. A lot of the hype has been based on the possible huge......