Pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as “GDPR”), adopted on 25 May 2018 in Lithuania, as well as in the other Member States of the European Union, data controllers and data processors whose main activity is data processing operations and/or it is necessary to monitor data subjects on a regular and systematic basis on a large scale (Article 37(1)(b) of the GDPR) and/or it is operationally essential (Article 29 of the GDPR), the appointment of a personal data protection officer is mandatory.

Given that personal data is probably one of the largest resources available, PROTEGO provides the following services:

• Performing the duties of the Data Protection Officer as defined in Article 39 of the European Union (EU) General Data Protection Regulation 2016/679 (GDPR).
• Performing checks on personal data protection procedures: data inventorization – assessment of what data are managed, on what basis; data management procedures inventorization – assessment of how personal data are managed, who is responsible, what are procedures, how data are stored; data processing status assessment – assessment of how data are processed, what processes are used, who is responsible for this; assessment of contracts with data processors;
• Providing information and guidance on the application of the GDPR policies on an ongoing basis;
• Monitoring compliance with the GDPR and other legislation in this area;
• Acting as a contact person in cooperation with the State Data Protection Inspectorate and providing it with information on the processing of data;
• Responding to requests, complaints, letters and claims received from interested parties, where these documents relate to the protection of personal data;
• Carrying out data protection impact assessments.