Data Privacy & Protection

We advice clients on ensuring compliance with GDPR aspects if they are processing data pertaining to GDPR countries. We advice clients on preparation and maintenance of Records of Processing and the Breach Notification Procedure, as mandated under GDPR.

We conduct firm-wide review of contracts and third party/ vendor engagements to ensure data protection. We also advice on the controls that third parties need to have in place whilst collecting personal/ sensitive personal data.

We advice on Aadhaar collection and processing requirements including consent of Aadhaar user, redaction of Aadhaar and maintenance of Aadhaar Data Vaults.

Corrida Legal provides curated training material on Data Privacy and Protection for Employees and Management/Team leads. Please reach out to us on contact@corridalegal.com for more information on our training materials.

We use a two-pronged approach to ensure our Client’s readiness for the upcoming law: (1) Data footprint assessment: Conducting a thorough check on the resting and processing of personal data/sensitive personal data through checklists and department-wise/management briefings. This step helps maintain a clear record of resting of personal data/ sensitive personal data. (2) Privacy policies and governance framework: We prepare the privacy policies, notices and consent drafts required for the processing of personal/ sensitive personal data. We also put in the controls and governance, as required for processing of personal data/ sensitive personal data.

We conduct firm-wide check on the resting and processing of personal/ sensitive personal data in order to ensure adherence with the applicable personal data laws. We advice on changes/ improvements to the data collection/storage process to ensure due compliance.