The General Data Protection Regulation (GDPR) may require organisations based outside the European Economic Area (EEA – the applicable scope of GDPR) to appoint an EEA Representative.
An organisation may be required to appoint an EEA Representative if they:
- offer goods or services to individuals in the EEA; or
- monitor the behaviour of individuals located in the EEA.
Kaleidoscope Data Privacy Consultants (KDPC) is our Irish subsidiary and acts as an EEA Representative where data of European citizens is processed, whilst Kaleidoscope Consultants will act as a UK Representative, post-Brexit. Both organisations offer a range of services to satisfy the duties of Controller or Processor organisations where required.