Information security

Preparation of new customized basic security documentation for the operator, updated in accordance with current legislation and the available decision-making and interpretative practice of the authority (internal regulations for the protection of personal data).

Through our own team of experts, we will provide you with a comprehensive service of a responsible person who is fully qualified to perform this function based on the conditions set out in Article 37 of the GDPR. The appointment of a responsible person has been made mandatory by the regulation for controllers.

Processing of documentation for impact assessment (DPIA) within the meaning of Article 35 of the GDPR, which is special documentation that the controller is required to process only if the legal conditions are met (e.g., extensive processing of special categories of personal data, systematic monitoring of public spaces on a large scale, processing of biometric data, etc.).

Analysis of personal data processing procedures at the client processing personal data (mapping of purposes, personal data processing, legal bases, security management, information security, physical security and facility security, intermediary contracts, terms and conditions, regime measures, personnel and administrative security), which will be carried out on the basis of a personal consultation. The analysis includes proposals for securing personal data and proposals for necessary measures to be adopted and implemented by the client in order to harmonize the processing of personal data in accordance with the GDPR and the law.

Cookie settings on websites in accordance with the amendment to the Electronic Communications Act and the GDPR. We still encounter incorrect technical settings, banner and information bar settings, and information obligations.

The training focuses on the legitimacy of personal data processing and personal data security. If interested, we can provide training tailored specifically to a given professional group.

The issue of personal data protection is not limited to the GDPR and the Personal Data Protection Act. When setting up individual processes and processing activities, it is also necessary to comply with national legislation governing specific areas of activity of individual operators (e.g., crowdfunding, provision of installments and loans, and other sector-specific features in various areas).

In today's digital age, when most sensitive data is processed online, cybersecurity is an essential part of protecting your business. We offer comprehensive solutions to protect against cyber threats, including cybersecurity gap analysis, analysis of sector and impact criteria (NIS2), design and implementation of security measures, audits and penetration tests, continuous SOC monitoring, Incident Response, employee training, and cybersecurity manager (CISO as a Service) services. We also provide insurance against cyber threats and security services outsourcing (MSSP). Our solutions guarantee compliance with NIS2, GDPR, ISO 27001 and protect your IT infrastructure from attacks, data leaks, and operational outages.

The subject of the service is the processing of documents in accordance with Act No. 215/2004 Coll. and relevant NBÚ decrees, the purpose of which is to ensure the processing of mandatory documentation that must be submitted to the National Security Authority in order to obtain industrial security clearance for all levels of classification (Restricted to Top Secret). The documentation may include various processing of classified information (familiarization, storage in a protected area, or, together with documentation for technical means, also processing of classified information using technical means).
We also perform security settings for technical equipment (e.g., PCs) according to the recommendations of the National Security Authority – we will set up your technical equipment for certification purposes.

As part of the service provided, we can comprehensively secure the entire process for issuing a license to trade in defense industry products in relation to the National Security Authority, through providing an initial consultation for the purpose of presenting the legal requirements for obtaining confirmation, analyzing the compliance of the business plan with the requirements of the relevant legislation, preparing the documentation for the entrepreneur's security project, and preparing and submitting an application for a security clearance by the National Security Authority.