GDPR compliance advice


Brandon IP supports you in bringing your organization into compliance with the rules set by the GDPR.

Better understand the GDPR

The GDPR, or General Data Protection Regulation, governs the processing of personal data within the European Union.

First of all, what is meant by “personal data”?

This is all information related to identified or identifiable natural persons. This includes surname, first name, photos, phone numbers, customer numbers, postal addresses, cultural, genetic, medical data, etc. From the moment the data collected can make it possible to identify a person (one or more items of data), it is considered personal data.

The “processing” of personal data corresponds to all actions related to these data: collection, recording, storage, modification, consultation, use, dissemination, etc. It relates to individuals (including customers, employees, etc.) but not general data about companies.

Since its entry into force on May 25, 2018 the European general data protection regulation set out the rules concerning the processing of these data. In France, it comes after the French Data Protection Act of 1978 and harmonizes the rules throughout the European Union to allow citizens to have the right to inspect the data forwarded to companies and the use that will be made thereof. It compels companies to get clear consent from the people concerned by the data for processing and requires that an appropriate level of security be guaranteed to protect the data.

All organizations dealing with personal data, private companies but also public authorities and associations, whatever their size and country of location, from the moment they process data of European residents, are involved in the GDPR. It is therefore probably your case.

Failure to comply with the rules imposed by the GDPR can have significant consequences for your organization, which then risks a penalty of up to 10 million euros or an amount equivalent to 2% of its annual worldwide turnover (20 million and 4% of turnover in the most serious cases). It is therefore essential to comply with this regulation.

Article: “Two heavy penalties under the GDPR”.

More information about the GDPR is available on the CNIL website:


Support from Brandon IP to ensure compliance

Brandon IP can support you in your company’s GDPR compliance process.

In order to comply with the GDPR, we help you make your teams aware of the legal requirements involved. We also support you in the writing or review of your corporate documents and, more generally we answer all the questions you may have regarding its implementation within your company or organization.

Also, we organize training courses in small groups where we speak of the main principles of the GDPR: data reduction, purpose and duration of data retention, security and implementation of impact studies, if necessary, etc.

The progressive and necessary digitalization of businesses and the multiplication of available digital data lead us to constantly improve our practices in order to be able to provide services fitted to your current needs. Brandon IP’s legal experts and patent and trademark attorneys, who are familiar with the GDPR, help you to better understand all the procedures related to this regulation and to bring you into compliance with the GDPR provisions.

Contact our team for more information about this topic.


With more than 150 years of existence, Brandon IP, formerly Blétry frères, is one of the oldest intellectual property firms in France – if not the oldest. We support companies of all sizes and project holders in the protection of their inventions in a customized manner and as closely as possible to their needs. As a guarantee of our expertise, Brandon IP is ranked among the best French IP law firms by Décideurs Magazine.

Logo Bletry

See also:


Intellectual Property Services

Contact our teams to find out more about our services dedicated to intellectual property:

Contact us