Are you compliant with GDPR and LOPD?

In May 2018, The European Data Protection Regulation GDPR came into force. This introduced a series of obligations for companies and professionals that process personal data due to their activity.

Among these obligations are those of the implementation of filters at the time of requesting information and forwarding all the correct information to the interested person (the client, employee, user, etc.) regarding the processing of all submitted personal data. Likewise, implementation of a series of protocols that guarantee the confidentiality and integrity of the data we process is mandatory.

In December 2018, the LOPD was approved. A law at state level that develops the Regulation on Data Protection.

Non-observance of these rules may be sanctioned with fines that could mount to 20 million Euros or 4% of the company’s annual turnover.

Why us?

Our law firm is specialized in LEGALTECH  and digital business. One of our main specialties is business adaptation to comply with all current regulations regarding DATA PROTECTION.

You can place your trust in our professionals. Legal advisors that have a background career in Data Protection of over 18 years of experience in all types of companies: public administration and private enterprises, large and small businesses and in all imaginable areas. We love to be put to the test!

We are backed by a loyal client portfolio that has placed trust in us during our growing years up until today. We are constantly training in our fields of practice.

And, would you like to know what our strength is? It’s how we analyse your activity in order to make it compliant to all applicable regulations regarding your operations, instead of the other way around. We guarantee perfect compliance without the imposition of extra heavy protocols or bureaucracy. Entrepreneurs have to deal with enough of that already.

    Contact Us

    Acceptance of the Privacy Policy.

    I accept the sending of actions and commercial communications, including by electronic means for the purposes detailed in our Privacy Policy.

    This is what we can do for you


    Adapting your business to be compliant with GDPR and LOPD law is mandatory and necessary to avoid the high penalties that may be sanctioned by the Authority for non-compliance.

    1.- Legitimation of the treatment: Implementation of clauses in compliance with articles 6 to 11 LOPDGDD. INFORMATION AND CONSENT.

    2.- Legalization of data processing for third parties: Regulation of all relationships established by the company with EMPLOYEES + SELF-EMPLOYEES + SUBCONTRACTED COMPANIES THAT ACCESS PERSONAL DATA.

    3.- Records of Processing Activity (Art. 31 LOPDGDD and Art 30 RGPD).

    4.- Identification document of the Processing Manager, Managers and Authorized Processing.

    5.- Impact analysis.

    6.- Development of the Data Processing Scenario.

    7.- Security Breach Protocol.

    8.- Legalization in case of International Data Transfer.



    We will legally audit your company and provide you with legal representation against any sanctioning procedure due to the Authority in the administrative route or in Court.


    We will prepare all the required Clauses and legalization. Legal Terms & Conditions adapted to the implementation of IoT technology, hardware distribution, etc.


    We defend the legal interests of our clients whenever appearing on the Internet. We exercise your right to be forgotten, erase harmful comments, fake reviews, brand infringements, impersonations, etc.


    We can help to resolve Civil, Commercial and Contentious-Administrative areas derived from matters related to new technologies.

    Related posts

    Directiva NIS2. Fortaleciendo nuestros cimientos digitales

    Directiva NIS2. Fortaleciendo nuestros cimientos digitales

    En la era actual, caracterizada por una creciente dependencia de la tecnología y la digitalización, las empresas enfrentan retos sin precedentes en la protección de sus sistemas de información y datos personales. La reciente implementación de la Directiva NIS2 por la Unión Europea representa un cambio significativo en el panorama de la ciberseguridad, introduciendo medidas más rigurosas y ampliando su alcance para abarcar una mayor variedad de sectores.

    En este contexto, Laura Bachs Winter, especialista en protección de datos global, nos guía a través de los aspectos más críticos de esta nueva legislación. Este artículo ayuda a entender cómo la Directiva NIS2 no solo impacta la operativa diaria de las organizaciones sino que también establece un marco seguro para la cooperación internacional, ofreciendo claves para una adaptación exitosa. Para líderes empresariales, profesionales de la ciberseguridad y responsables de la protección de datos, comprender estos cambios es fundamental para navegar con éxito en un entorno digital cada vez más complejo y regulado.

    read more
    ¿Cómo debería generar prueba de una infracción en internet?

    ¿Cómo debería generar prueba de una infracción en internet?

    Al enfrentarte a una infracción de derechos en internet, es esencial recopilar pruebas sólidas para futuras acciones legales. Las capturas de pantalla pueden ser insuficientes debido a su potencial manipulación. Para obtener pruebas irrefutables, considera dos métodos principales:

    Acta Notarial: Un notario puede documentar el contenido infractor, ofreciendo una prueba plena reconocida legalmente.
    Servicio Electrónico de Confianza: Una opción más rápida y económica que proporciona una acreditación oficial sobre la existencia del contenido infractor.
    Estos métodos garantizan evidencia creíble y verificable, crucial para litigios o negociaciones, destacando la importancia de actuar con diligencia ante infracciones online.

    read more

    Do you need more info?