Sorainen assisted Flebomedika, one of the largest laser surgery and vein treatment clinics in Latvia, in implementing the General Data Protection Regulation (GDPR).
Sorainen conducted a thorough audit of the client’s practice in handling personal data and made recommendations to ensure GDPR compliance. As a second step, Sorainen assisted with full implementation of the GDPR for the client by creating, fine-tuning and adjusting documents: a brand new privacy policy, terms and conditions of loyalty programme, consent forms, internal processing guidelines, data processing record and data processing agreements.
Finally, Sorainen organised training programmes for the client’s personnel, including a data protection awareness seminar for medical personnel, as well as on-line training for all employees. The project was especially challenging and required innovative solutions due to the sensitive nature of the client’s business and the interrelations between data protection, medical care and patient law.
The project was led by partner Ieva Andersone with associate Linda Reneslāce.