Make your personal data processing compliant with the new European law

GDRP

General Data Protection Regulation

from scratch!

Keep EU clients and partners...
Strengthen your reputation as company caring for customers' privacy...
Get new outsourcing orders from EU...
Avoid fines up € 20 million...

by getting advice from CIPP/E, CIPM certified professionals

by turning to the first company in CIS region narrowly specializing in GDPR compliance.

by getting training at GDPR courses.

consistently with Eastern European business reality and culture.

Services

GDPR imlementation

Consulting support of GDPR implementation by your company, as well as ad hoc consultations on problematic areas.

Consultations

Practical individual counseling on typical issues that arise on the path to the GDPR Compliance.

Audit

We can audit your compliance with GDPR. External and internal audits of projects, processes or instances of processing.

Training

GDPR express course from EU certified data protection professionals.

DPO Club

Invitation-only group for data protection professionals, working in CIS. A platform for communication, mutual assistance and news exchange.

Outsourced DPO

We act as your Data Protection Officer, if your company is required to have one in order to comply with Article 37 of GDPR.

Development of privacy notice/policy

We will write privacy notice for your company or its web-site to comply with Art. 13 and 14 of GDPR.

Our consultants

Siarhei Varankevich CIPP/E, CIPM, MBA

Siarhei Varankevich. Certified Information Privacy Professional / Europe (CIPP/E)

Co-Founder & CEO of Data Privacy Office LLC. Data Protection Trainer and Principal Consultant
MBA, Certified Information Privacy Professional (CIPP/E), Certified Information Privacy Manager (CIPM). Started to work with the GDPR draft version, in 2015, in Munich. Defended his MBA thesis about the Regulation, in Bremen, in 2016

Olga Zavalniuk CIPP/E, CIPP/US

Olga Zavalniuk. Certified Information Privacy Professional / Europe (CIPP/E)

Olga Zavalniuk. Certified Information Privacy Professional / US (CIPP/US)

GDPR Data Privacy Professional (GDPR DPP)

Senior Consultant DPO LLC, Data Protection Officer
Expert in Data Privacy, Certified Information Privacy Professional (CIPP/E & CIPP/US - Europe & United States), member of International Association of Privacy Professionals (IAPP)

Sergei Tchernyshenko CIPT, GDPR DPP

Trainer in data protection technology and information security management
Certified Information Privacy Technologist (CIPT), GDPR Data Privacy Professional (GDPR DPP). Professional in the field of IT infrastructure, information security, risk management, and business continuity. Chief Information & Data Protection Officer, and member of the Directors Council at Intetics Inc.

Pavel Lazavenka LLB, GDPR DPP

Associate Consultant DPO LLC
LL.B. and GDPR Data Privacy Professional. Specializes in GDPR Articles 13, 14, and 15 compliance and auditing existing privacy notices and policies

Maria Arnst CIPM, TÜV

Maria Arnst Datenschutzbeauftragte by TUV

GDPR Consultant
Certified Information Privacy Manager (international IAPP certification) with experience of being a Data Protection Officer for European companies, including those focused on privacy and data security. Certified as DPO by TÜV (Germany's leading and one of the world's leading independent testing and certification services group)

Louis-Philippe Gratton PhD, LLM

Privacy Expert
Academic, lawyer (Québec Bar), Ph.D. (France), LL.M. (Canada and Switzerland). Worked in Canada, France, and Switzerland, including as a consultant on comparative privacy law for the Department of Justice of Québec. Fluent in French and English.

Elena Sebjakina (Ru) CIPP/E, Privacy by design

Certified Information Privacy Professional / Europe (CIPP/E) certification

Data Protection Officer, GDPR Consultant
Since 2014, Elena has specialized in personal data, until June 2020 she worked as a Global DPO in an international IT company and implemented GDPR processes in a group of companies. Introduced the principles of GDPR in all areas of the holding. Under the leadership of Elena, a web portal was created to collect electronic consents and process requests from personal data subjects; the process of processing personal data of Breach cases.

Our training courses

GDPR DPP -Online training Data Protection under GDPR

GDPR Data Privacy Professional (GDPR DPP)

The only regular GDPR training course in CIS region delivered by certified information privacy professional and manager (CIPP/E, CIPM). Designed for legal and information security professionals, managers and business/process owners, as well for data protection officers.

Nearest course:
from 11 August to 14 August 2020

Online training Data Privacy Technologist

GDPR Data Privacy Technologist (GDPR DPT)

А course on embedding privacy in processes, IT services and products (Article 25 GDPR). Required for software engineers and architects, business analysts, risk managers, project managers of outsourcing companies, as well as lawyers and business analysts.

Nearest course:
from 22 September to 25 September 2020

Online Training Data Privacy Manager (DPM)[:

GDPR Data Privacy Manager (GDPR DPM)

This course is intended for students who have previously completed the main course GDPR Data Privacy Professional (GDPR DPP) and is a practical training in the formation and maintenance of a complete personal data protection system.

At the end of the course, you will be able to join or lead a project team for the implementation of the GDPR and bring your company to compliance with the regulations.

Nearest course:
from 17 November to 20 November 2020

Strategic Privacy by Design

Two days workshop by R. Jason Cronk (USA) to help companies build privacy considerations into their product offerings. It is the training for IT, product development, legal and compliance staff. No prior knowledge is necessary. 5.5 CPE credits towards CIPT/CIPM certifications.

Nearest course:
from 17 November to 18 November 2020

All courses

Projects

DPO LLC has completed more than 300 projects on:

1) implementing GDPR (~100 projects on the map),

2) training employees,

3) outsourcing the function of the Data Protection Officer
in Belarus, Russia, Ukraine, Latvia, Lithuania, Estonia, Great Britain, Bulgaria, Poland and Cyprus.

Our customers:

- Outsource companies in IT (data processors);

- IT companies (data controllers working in AI, Big Data, mobile app, CRM, gaming industry);

- Banks and payment systems established in EU or processing European personal data;

DPO LLC also provides services to social networks, transportation and travel agencies, pharmaceutical companies, medical clinics, mass-media, hosting providers.

About the company

Our news

Мы внесли изменения на сайте GDPR-Text.com

Команда “Data Privacy Office” внесла изменения на сайт GDPR-Text.com. Луи-Филипп Граттон, эксперт в области приватности, написал развернутый комментарий к статье 12 GDPR. Мы уточнили переводы 101 и 102 преамбул, которые касаются трансграничной передачи персональных данных и 44 статьи Регламента. Наша команда доработала определение “третье лицо” в статье 4 (10). Напомним, что GDPR-TEXT.COM — интерактивный справочник […]

ООО “Дата Прайваси Офис” стала резидентом Парка высоких технологий (ПВТ)

Белорусский Парк высоких технологий – один из крупнейших ИТ-кластеров в Центральной и Восточной Европе. Data Privacy Office будет консультировать и сопровождать процессы разработки и эксплуатации программного обеспечения (с точки зрения защиты приватности). Также мы будем оказывать помощь в обеспечении Privacy by Design (приватность персональных данных, обеспечиваемая на начальных этапах разработки ПО, например, при построении […]

Консультанты Data Privacy Office стали экспертами на DPcheck

Сергей Воронкeвич CIPP/E, CIPM, MBA и Луи-Филипп Граттон PhD, LLM стали экспертами на проекте по созданию DPcheck, с помощью которого можно разработать политику конфиденциальности (приватности), соответствующую GDPR. DPcheck – это сервис для генерации своей политики приватности, исходя из типичных обработок для конкретной сферы бизнеса. Его основное отличие от других генераторов или общедоступных шаблонов – […]

Встреча участников DPO Club состоялась 24 июня

Сообщество профессионалов в области информационной приватности ежемесячно встречаются, чтобы обсудить актуальную тему. Июньский митинг состоялся 24 июня с 18:30 по 20:00 по Минску, Москве и Киеву. В ходе встречи Сергей Воронкевич CIPP/E, CIPM, MBA, директор Data Privacy Office, представил доклад на тему «Формула персональных данных или как провести границу идентифируемости между персональными […]

All posts

Our blog

Отложить внедрение GDPR?

У бизнеса всегда есть выбор в отношении Общего Регламента по защите персональных данных (GDPR). Продолжать быть успешным, вовремя принимая изменения и тем самым приобретая дополнительную базу клиентов и их доверие, а также расположение от инвесторов. Либо пытаться работать по-старому в течение того временного промежутка, когда европейские надзорные органы еще не успеют проверить каждого на предмет […]

Контролер и процессор

Контролер и процессор – это две роли, которые по Регламенту приписываются физическим лицам, юридическим лицам, государственным органам, учреждениям и другим органам, которые обрабатывают данные либо принимают решения в отношении их обработки. Самая близкая метафора – корабль с капитаном и матросами. Капитан решает, куда корабль плывет, то есть цель обработки персональных данных; какую команду нанять, […]

Privacy by Design, или Принцип спроектированной приватности (ст. 25 GDPR) – есть статья, но не было санкции?

Как правило, нарушение принципа спроектированной приватности при создании приложения влечет за собой и другие нарушения: например, прав субъектов или принципа минимизации данных, а за это полагаются серьезные санкции. И получалось, что надзорные органы ссылались не на 25 статью. Год назад был обнаружен первый прецедент, где Национальный надзорный орган в области защиты персональных данных Румынии […]

Опросник для найма инспектора по защите персональных данных (DPO)

Назначение DPO (data privacy officer) в вашей организации является обязательным в следующих случаях (статья 37 GDPR): В компаниях, которые систематически и регулярно осуществляют крупномасштабный мониторинг лиц (чаще всего, речь идёт о мониторинге в целях контекстной рекламы). В компаниях, которые осуществляют крупномасштабную обработку особых категорий персональных данных, таких как данные о состоянии здоровья и т.д. […]

All posts

Cases

How to make a debt recovery procedure GDPR-compliant?

Внедрение GDPR Roadmap

Implementation of Privacy by Design in face-recognition software

Drafting a Privacy Policy for a startup dealing with blockchain-based marketing platform for native advertising placement

Feedback

Ilya Nazarov

Head of digital competence centre в Global University Systems GUS

For work tasks, the task of deep immersion in the subject of GDPR arose. The search for courses showed that the only organization specialized in consulting and education on this topic is Data Privacy Office. Further my estimates 1. The process of organizing training – 5 out of 5. Special thanks to Pauline. 2. Direct […]

Igor Zhelezniak

Head of consulting department of I-Teco Company

The team of I-Teco Company expresses sincere gratitude to the Data Privacy Office for the high quality presentation and useful GDPR cases.

Mikhail Bass

Senior lawyer в IPChain Association

I really want to thank the organizers of the course "GDPR Data Privacy Professional (GDPR DPP)" and personally Sergey Voronkevich, who is very accessible and at the same time professionally teaches such complex things as Data Privacy. Thanks to careful processing and adaptation, the material is really easy to digest. I also want to express my special thanks to Anton Poddubitsky for his assistance and assistance in organizing the course.

Yulia Krivorot

Director of Ketenci Law Minsk Office

The leadership of Ketensi Law Minsk Office attended the course «Data protection under GDPR» during the period from 15 January to 18 January 2019 to meet the needs of their clients from the EU. This course helps to understand in detail the main provision of GDPR, realize the need for introduction of new approaches, weigh the risks and priorities in accordance with the rules of GDPR.

D. Lazovskii

Deputy director of Altoros Development, LLC

The unique knowledge and individual approach during the training of our staff allow to speak about high professionalism of the Business School «TopSkills». We must also mention high professionalism of a trainer Siarhei Varankevich. We thank for a systemic and informative approach to the training process, presentation of material in accessible form and practical guidance. This course allows us not only to minimize potential risks, related to new requirements of European legislation, but to form own expert team which helps our clients with processing of personal data questions.

V. Tsilind

Director of Epol Soft, LLC

We got a full information about GDPR and drew up the plan of action for GDPR-compliance status. We got all the information with real cases and situations from our practice, with links to reliable sources in an accessible form.

Kristina Goncharenko

Senior Legal Counsel

I want to thank colleagues from Data Privacy Office for their professionalism, customer focus, excellent organization, as well as flexibility and sensitivity in relation to all students in the courses. Data Privacy Professional courses provide the foundation for GDPR, all information is given in a structured, understandable way. I believe that at the moment these are the best GDPR rates that exist on the Russian market.

Y. Shirokanov

Director of Effective Soft, LLC

The training on GDPR helps the leadership and staff of our company to estimate situation and to answer the questions about the necessity of implementation of new approaches, the sphere of the GDPR activity, risks and priorities in preparation for GDPR.

Yu. V. Levdansky

Director of Mobile Service, LLC

In order to meet the needs of our clients one of our employees was sent to the Business School «TopSkills» from 16 January to 19 of January 2018 to attend the course «Data protection under GDPR», after the successful completion of which he received the certificate «Data Privacy Professional (GDPR DРР)».In this regard, we express our gratitude to the trainer and consultant Siarhei Varankevich, as well as to the entire team of «TopSkills» for their unique knowledge, professionalism and skill in the presentation of material, a systematic, competent and informative approach to the learning process.

Gennadiy Maslov

CEO of Motor Sich Airlines

The team of Motor Sich Airlines would like to note the wonderful organization of the course, the presence of handouts, the visibility and interactivity of the presentation of information, a comfortable atmosphere.

Valentin Kontsevoi

Director of Intetics Belarus

We especially want to mention the high qualification of Siarhei Varankevich, the trainer for this course. The strength of the teacher lies in his openness and his ability to establish contact with the audience, engage students and maintain interest in the subject matter.

A. Pichugina

Director of ANP, LLC

It is worth mentioning the remarkable organization of the course: availability of handouts, clarity, and interactivity of information presentation, comfortable atmosphere. A small number of students in the group allows the trainer to pay attention to each of them.

Stanislau Burba

Deputy director of Azati, LLC

During this short but extremely informative course, our trainer managed to form a vision for our team about the personal data. From the practical side, he explained what we have to do to comply with the GDPR requirements. We had high expectations, but the course surpassed them. Trainer sowed seeds for our further deepening in the subject of a competent approach to working with personal data.

O.S. Ermakova

Senior Legal Advisor and Compliance Specialist

We would like to separately thank you for the training program “GDPR Data Privacy Professional (GDPR DPP)” organized by you. Among the many advantages of the program, we would like to highlight the significant experience in the field of privacy protection and the high professionalism of the trainer S. Voronkevich. We hope for continued cooperation and will certainly recommend the company Date Privacy Office as a reliable and highly professional business partner.

Elena Makarenko

Product Lawyer at LetyShops

I took the course after quite a long study of the Regulations. I can say that knowledge was detailed and deepened unambiguously. Moreover, the position given on the course correlates with the positions of the EU national data protection regulators, i.e. it can be assumed that this very “interpretation” of the Rules is correct and will help to avoid future troubles.

Artyom Bystrov

Lawyer

As a lawyer, I really liked the Data Privacy Technology course. The DPP course in Russia was not as qualified as they could. I believe the best courses on GDPR. Moreover, Sergey Voronkevich perfectly understood that everyone has an opportunity. Very useful schemes - they allow you to visually memorize information and remember it in seconds.

Order

After sending:

1. Your application will be delivered to us in a few minutes, you will also receive a copy of it on your email

2. Our manager will call you by phone or in Viber, Whatsapp, Telegram, or write an email within 2 working days. He will clarify your situation and will select a convenient time for preliminary consultation with our expert.

3. On preliminary consultation (skype, zoom, etc.) you can ask this and other questions. The expert will ask clarifying questions and give advice.