The General Data Protection Regulation (GDPR) entered into force on May 25, 2018 in all member states of the European Union. It is a unified and more protective legal system for the protection of citizens' personal data .

The GDPR is made up of 99 articles and almost all of the professionals, freelancers, small and large businesses, of which, of course, the GAFA (Google Amazon Facebook Apple), is concerned.

Personal data can be mentioned in many documents, such as, for example, commercial contracts, invoices, purchase orders, employment contracts ...

European citizens have a right of access to their data (article 15 of the GDPR), a right of rectification of their data (article 16 of the GDPR), a right to erasure (right to be forgotten) of their data ( Article 17 of the GDPR), a right to limit the processing of their data (Article 18 of the GDPR), a right to the portability of their data (Article 20 of the GDPR) and a right to object to the processing of their data (Articles 21 and 22 of the GDPR).

Companies have a certain number of obligations, to be seen on a case-by-case basis, depending on the activity of the structure.

The CNIL in France and the CNPD in Luxembourg have the function of verifying the compliance of professionals with the GDPR, with the possibility of imposing very dissuasive fines.

Are you looking for a lawyer, in Luxembourg or in France (Aix-Marseille , SUD region Provence-Alpes-Côte d'Azur & Versailles, Grand Paris), specialized and passionate, in Personal Data Protection (RGPD) ? Bove Law Office is the right law firm for you. We offer legal advices, assistance and representation for all your projects and procedures, in Personal Data Protection (RGPD), more specifically in the following areas:


Compliance with the General Data Protection Regulations (GDPR)


- Development of an action plan for compliance with the GDPR

- Compliance of all your employment contracts with the GDPR

- Compliance of all your commercial contracts with the GDPR

- Development of the treatment register

- Development of a procedure for exercising the right of data subjects

- Development of a Privacy policy by design and by default

- Development of a crisis management procedure

- Creation of a policy on impact studies


GDPR representative in the European Union


- Representative of data controllers or processors who are not established in the European Union (article 27 of the GDPR)

  • LinkedIn Social Icon
  • Twitter Social Icon
  • Facebook Social Icône
  • Instagram
  • Youtube
Les Docks, Atrium 10.6
10 Place de la Joliette
CS 13 543 - 13 567
Marseille Cedex 2 
Tel : +33 (0)4 84 89 50 77
Fax: +352 26 19 01 40
Registered with the Marseille Bar
Capital 5.000 €
RCS Marseille SIREN n°882 661 655


4 rue des Joncs

​Building 1

L-1818 Howald

PO BOX 1274 L-1012


Tel : + 352 26 18 78 61

Fax: +352 26 19 01 40


Law Firm registered with the Luxembourg Bar