With the introduction of the General Data Protection Regulation (GDPR), the topic of data protection has become even more important for companies. A good data protection organization reduces the risk of data protection incidents and increases the trust of its customers in the company. In this context, we also work closely with internal and external data protection officers and IT experts.
We advise our clients on the introduction of a data protection management system as well as on the data protection assessment of new business models. If new digital services are to be introduced to relieve the burden on your own work processes, we support our clients in assessing data protection law and preparing a data protection impact assessment.
Answering inquiries from those affected often presents companies with major challenges. This applies in particular to the right to information pursuant to Art. 15 GDPR. We advise companies on the implementation of processes that enable timely and proper answers to requests for information.
We support companies out of court and in court in defending against claims for damages in accordance with Art. 82 GDPR and provide advice on responding to inquiries or complaints from data protection supervisory authorities.
- Data privacy litigation (litigation in data protection law, e.g. defense against claims for information and/or damages)
- Data protection support during the introduction of technical solutions (including data protection impact assessment)
- Drafting of a comprehensive data protection concept for your company
- Drafting of data protection declarations for websites and apps (including cookie guidelines, obtaining consent)
- Preparation and negotiation of data processing contracts and shared responsibility contracts
- Advising external and internal data protection officers
- Representation before the data protection authorities (e.g. in fine proceedings, requests for information, complaint procedures, hearings)
- Advice on answering requests from those affected (e.g. information, correction, deletion)
- Support in creating an internal data protection organization (e.g. deletion concept)
- Support with data transfer abroad (especially EU standard contractual clauses)
- Training of employees
- Data protection legal support for direct marketing (newsletters, telephone calls, direct messages on social media)