Overview

Our team comprises experienced lawyers with extensive expertise in providing compliance advisory services to public, private entities, and international organizations in the field of personal data protection. We also specialize in compliance issues related to obligations and standards arising from national and European legislation in cybersecurity. Effectively, we represent our clients in investigations, crisis management in data breach incidents, legal disputes, and proceedings before national supervisory authorities.

Personal Data

Our lawyers hold internationally recognized certifications such as CIPP/E, CIPM, CIPT, and FIP certifications from the International Association of Privacy Professionals (IAPP). They are also members of European Union expert groups, including the European Data Protection Board (EDPB), the Internet Privacy Engineering Network (IPEN) of the European Data Protection Supervisor (EDPS), and the Data Protection Experts Network of Europol (EDEN). Frequently, they speak at leading conferences in Greece and abroad on data protection and privacy issues, publish articles in globally renowned legal journals, and participate as external advisors in European Union research programs.

Their extensive experience and specialization ensure the provision of reliable compliance advice and services on complex matters related to the implementation of Law 4624/2019, which incorporates the General Data Protection Regulation (GDPR) into Greek law, along with the provisions of Directive 2016/680, as well as other legal issues concerning electronic communications, such as Law 3917/2011, Law 4070/2012, Law 4727/2020, and Law 5002/2022. Some of our services include:

-Business compliance services and support for the Data Protection Officer combined with educational services on personal data protection and practical advice.

-Consulting services encompassing the provision of opinions on intricate issues concerning personal data protection, alongside other legal provisions like Anti-money Laundering (AML), mergers and acquisitions (M&A), legislation governing digital platforms (Digital Services Act), and disputes across various jurisdictions.

Furthermore, drawing on their extensive litigation experience and profound knowledge of both domestic and international case law, our lawyers possess a unique capability to advocate for our clients in personal data breach cases before courts and government authorities.

Cybersecurity

Our team addresses the complex issues faced by our clients at the intersection of technology, cybersecurity, privacy, protection of information, and law enforcement. We provide advisory services under a range of relevant legislations, depending on the scope of our client’s mandate, starting from basic provisions of the GDPR and covering complex issues related to specific sectors concerning the European Union’s Payment Services Directive 2 (PSD2), transposed into Greek law by Law 4537/2018, or the EU Directive on high-level security of network and information systems (NIS Directive), transposed into the Greek legal regime by Law 4577/2018.

With extensive experience in litigation and a deep understanding of case law, both domestic and international, we are well-positioned to provide our clients with the necessary preparatory services to fully comply with the requirements that will arise in the near future based on the provisions of new EU legislation, such as the revised version of the NIS Directive (NIS 2) and Regulation 2022/2554 on the digital operational resilience of the financial sector (Digital Operational Resilience Act – DORA).

For more information, read our relevant Guide in Greek:

• Data protection law (GDPR)

• NIS2 Directive