Privacy lawyer

Virtually every organization today is confronted with privacy law. Not only businesses, but also governments and institutions. For virtually every organization processes personal data. For example in customer databases or in personnel files. And when sharing information with suppliers or partners in the chain.

The privacy rules are complex and comprehensive. Organizations are faced with a multitude of obligations, from keeping a processing register and entering into GDPR-proof agreements to adopting policies and actively informing data subjects.


On 25 May 2018, the General Data Protection Regulation (GDPR) came into effect throughout the European Union. The GDPR is, by far, the most important privacy law and applies, among other things, to personal data processing and data leaks. In addition to the GDPR and the GDPR Implementation Act (UAVG, which is applicable in the Netherlands), there are other relevant (European) regulations. Many of those regulations are continuously subject to change.

The Dutch Data Protection Authority

In the Netherlands, the Dutch Data Protection Authority (DDPA) is responsible for supervision of compliance with the GDPR. The DDPA has far-reaching enforcement powers. For example, the DDPA can impose an order subject to a penalty or a fine (up to 20 million euros or 4% of the global annual turnover) on organizations that are not GDPR compliant.

The Schenkeveld Privacy Lawyers

The privacy law experts at Schenkeveld Advocaten have wide experience in privacy law. We are up to date on current developments and can tell you exactly what rules apply to your organization and situation. We also know how to translate those rules to clear and practical advice and contracts.

Our lawyers mainly work for SMEs and large corporations, in a variety of industries. We also work for (semi-)public institutions and government authorities.

What can we do for you?

We can assist you in the following fields, among others:

  •  A full GDPR check: is your organization GDPR compliant? What other measures do you need to take? Read also: How GDPR-proof is your organisation? Six matters you need to have arranged in any case
  • Preparation and review of various documents, such as data processing agreements, privacy and cookie statements, and partnership agreements relating to personal data processing.
  • Privacy by design: advice on privacy issues prior to, or during, development of a product, service or process involving personal data processing. Examples are products for the Internet of Things, data analytics (big data analysis) for internal use, marketing or apps.
  • Intensive assistance in case of a data leak. What to do in case of a data leak? Do you have to report it? Do you have to notify the data subjects?
  • Assistance in legal proceedings, for example if the DDPA takes enforcement action or if your organization is held accountable by data subjects whose personal data you process.
  • Advice on complex agreements or transitions in which personal data play a role, such as partnership agreements between institutions that exchange personal data.

Privacy law-related questions

If you have any questions, please do not hesitate to contact one of our privacy lawyers, by telephone at +31 (0)72-514 46 66 or use the contact form to leave a message. We are here to help.