PERSONAL DATA PROTECTION

We understand that the proper use of information has never been more vital. For this reason, we offer a wide range of advice on implementing legal requirements for the protection and security of employee and customer data and developing a data governance strategy. From the moment a new law arises, through compliance processes or enforcement actions, to privacy disputes and litigation, we can certainly assist you. 

Whether it is the European General Data Protection Regulation (GDPR), Ecuador's Organic Law on Personal Data Protection (in force since May 2021), or other privacy protection laws, data breaches, data transfer , or use of cookies, Meythaler & Zambrano will provide strategic advice you can trust .  

 

Our services mainly include the following:

01

Deficiency and Risk Assessment Audits 

Data protection audits to evaluate the degree of compliance with the law and detect the deficiencies and risks, and establish corrective and preventive measures: ​

  • We perform analysis of security breaches, categorizing them according to the risk level and determining corrective and preventive measures based on existing capabilities in the organization. 

  • We provide training to the company´s personnel regarding data protection processes and programs. 

  • Review and management of compliance measures, such as the register of processing activities (RAT) or the updating of the National Registry of Personal Data Protection.

  • Review and optimization of confidentiality contracts or transfer or communication of personal data within the national and international scope. 

02

Attention to queries or doubts on the subject and legal support in:  

  • Requirements, requests, complaints or claims made by individuals or in administrative processes initiated by the data protection authority. 

  • Legal contingencies due to information leaks or security violations. 

  • Notifications of security violations to the authority. 

  • Administrative processes of approval or authorizations, such as the authorization of international data transfer. 

  • Inspections, sanctioning processes, corrective measures or information requirements by the Authority. 

  • Response to customer queries regarding the use and purpose given to their data. 

  • Incorporation in the cases that are necessary of data protection delegates. 

1.jpg

Arbitration & Mediation

5.jpg

Legal Consulting & Research

9.jpg

Compliance

13.jpg

Real Estate

17.jpg

Migratory

21.jpg

Regulatory & Administrative

2.jpg

Civil & Commercial

6.jpg

Constitutional

10.jpg

Energy & Non-Renewable Resources

14.jpg

Labor

18.jpg

Criminal Law

22.jpg

Telecommunications

3.jpg

Electronic Commerce

7.jpg

Public Procurement

11.jpg

Family and Succession

15.jpg

Life Sciences

19.jpg

Intellectual property

4.jpg

Competition & Antitrust

8.jpg

Corporate and M&A

12.jpg

Taxes & Customs

16.jpg

Strategic Litigation

20.jpg

Data Protection