For most organisations, there are certain mandatory requirements to consider when outsourcing an IT-Service. These typical requirements concern various aspects of IT-security, Privacy and Data Protection and Employment law considerations. Organisations operating in regulated sectors, such as Health, Fintech and Banking, Consumer, Education or the Public Sector have additional requirements to fulfil.
We help our clients to lead a smooth and efficient outsourcing process starting with our legal analysis of the relevant regulatory requirements to consider. We compile a checklist and risk assessment of the necessity of the relevant requirements for the client’s outsourcing team to consider when approaching suppliers.
Our skilled lawyers in IT and data protection assist with analysis and argumentation in performing the necessary risk assessments (Data Protection Impact Assessments and Transfer Risk Assessment/Schrems II advice). We can also assist in discussions with the regulatory authorities such as the Swedish Data Protection Authority under a Prior Consultation process or Swedish Financial Supervisory Authority, depending on what the situation requires.
We offer our services as a combination of fixed and volume-based pricing depending on your needs and preferences.