Personal data

Personal data

The subject of compliance with personal data protection rules is a cross-disciplinary and major strategic subject for organisations, and one that involves all business sectors.
European data valuation in billion
million fines of in case of non-compliance with the GDPR
billion: anticipated expenses for software & services for ensuring GDPR compliance in 2018
billion web surfers worldwide in 2017


The “Personal data” department works with you in connection with all issues surrounding the protection of personal data. Whether this involves responding to isolated questions on the application of the Data Protection Act or accompanying a project’s implementation right from its design (Privacy by design), we enable you to comply with personal data protection principles and with their interpretation by the CNIL, both today and in view of future regulations.

The widespread phenomenon of the digitization of all activities and its corollary, multiplying volumes of data, mean that the “Data protection” department is at the heart of the activity of companies and public institutions.

The “datafication” of all activities means that the topic of personal data protection is becoming both inescapable and cross-disciplinary. Today, no business sector can escape the collection and processing of data. No business sector will be able to ignore its compliance with data protection principles.

Approached until recently via compliance with the principles and formalities of the law of 6 January 1978 on information technology, data and civil liberties, the subject has now been revolutionized by the European general data protection regulation of 27 April 2016.

By introducing the concept of “accountability”, whereby each controller must at all times be able to prove (as of 25 May 2018) that all implemented processes comply with data protection principles, this regulation is compelling actors to ensure that their projects now take the new principles into account (the penalties can be up to €20 million or 4% of the structure’s turnover).

The activities of the “Personal data” department include :

  • providing training on the legislation and its application to all sectors, equally for controllers, subcontractors or internal DPOs,
  • assisting clients with all matters relative to the application of the personal data protection rules by assuming, where relevant, the role of the Data Privacy Officer,
  • assisting clients in case of audits by the CNIL, or any other future supervisory authority,
  • performing, when needed, any preliminary formalities with the data protection authority,
  • drafting policies for data protection and the management of cookies.

Of course, we can help you to ensure you observance of the new regulations resulting from the entry into force of the European regulation. To this end, the “Personal data” department has a structured offer :

  • legal and technical overview,
    • situation review,
    • audit of processes,
    • analysis of existing contracts.
  • external DPO mandate
    • training, exchanges and awareness-raising of the personnel,
    • compliance verification (impact studies),
    • record-keeping and annual activity report,
    • any information request regarding personal data,
    • contact point for the oversight authority.

The department works closely with the firm’s other departments, which notably specialise in “Life sciences”, “Non-profit organisations”, “Social law and Social protection”, “Real estate law” and “Public law”.

The team works in French or English.

Rankings of the department

  • Legal 500 EMEA 2020 : Data privacy and Data protection – 3/3
  • Legal 500 Paris 2020 : Data protection – 3/3
  • Décideurs :
    • Personal data – Excellent
    • IT law – Highly regarded 2/2


PRESS RELEASE - DELSOL Avocats assisted AstraZeneca, Docaposte and Impact Healthcare in the setting-up of the "Agoria Santé" consortium

AstraZeneca, Docaposte and Impact Healthcare have created the « Agoria Santé » consortium to provide public and private players with a controlled legal framework and shared governance to carry out research projects on health data. The consortium offers a secure platform for hosting and analyzing health data. The consortium’s health data warehouse...


Legal 500 EMEA 2021 rankings

DELSOL Avocats is proud to be ranked in 6 Legal 500 EMEA 2021 categories : The Regions - Tier 1 « Delsol Avocats has its original office in Lyon and another strong base in Paris, each gathering about half of the firm’s. It ranks among France’s best independent mid-size market firms, with strong expertise in the full range of business law areas....


PRESS RELEASE – DELSOL Avocats assists Caisse des Dépôts et Consignations in its investment in TOKTOKDOC

DELSOL Avocats assists Caisse des Dépôts et Consignations (CDC) in the framework of its investment through Banque des Territoires and on behalf of the State, via the Investment Program of the Future « Territory of Innovation », in the company TokTokDoc. TokTokDoc offers clinical telemedicine solutions for EHPAD and the entire medical-social...


Legal 500 Paris 2020 rankings

DELSOL Avocats is proud to be ranked in 8 categories by the Legal 500 Paris 2020 : The Régions - Tier 1 - « Founded in Lyon, Delsol Avocats is nationally renowned. The firm brings together a total of approximately 120 lawyers divided between its Lyon and Paris offices. The Paris office has experienced strong growth in recent years and is now...