With regards to Data Protection there is always a complex system of requirements to be considered. We bring light into the darkness.



The experience of our employees enables us to accompany our clients using our extensive know-how and practical knowledge. We would like to communicate with the public in the most transparent manner. With the list of questions presented here we would like to explain some of the basics of data protection:

What is Data Protection?

Enterprises that process personal data must observe data protection regulations. Data protection law protects exclusively personal data. It is all information that relates to an identified or identifiable natural person


What are the Personal Data?

P ersonal data is any information that relates to an identified or identifiable natural person, the data subject. Whenever the information can be used to create a reference to a person, one may state it is…


What is the Processing of Personal Data?

A rt. 4 № 2 GDPR constitutes the legal definition of the processing. It enters into force as of May 25, 2018. Thereafter, as processing shall be considered any process executed with or without the help of automated procedures or any such series of operations in connection with personal data such as collection, recording,..


What are the Responsibilities of the Controller?

E nterprise process a lot of personal data. This may be data about employees, contact persons or customer information. This was recognized by the legislator. He therefore requires from the controller …


What are the Rights of the Data Subjects?

I f enterprises process personal data, the processing directly results in different rights for the data subject. Some are regulated in Chapter III of the General Data Protection Regulation, which will be effective as of 25 May 2018. More …


What is an Internal Data Protection Audit and the Regulatory Control?

D ata protection controls can take two forms. Enterprises may ensure their own compliance by means of regular internal data protection audits or wait until the responsible supervisory authority makes use of the possibility to …


What are the Responsibilities of the Data Protection Officer?

M any enterprises are legally obliged to appoint a data protection officer. If an obligation exists, the controller may choose between an external data protection officer or an internal employee. The German Association …


What are the Advantages of Appointing the External Data Protection Offcier?

I f an enterprise violates a data protection law, this may result in high fines. The good reputation can be damaged. An external data protection officer may …


What is an Internal Data Protection Officer?

A n internal data protection officer is a permanent employee in the company who is responsible for compliance with data protection regulations. He can also perform the following tasks at home …


Who is suitable to be an Internal Data Protection Officer?

E ach controller that processes personal data may be required to appoint a data protection officer. The controller shall be free to choose whether he appoints an internal or external data protection officer, Art. 37 (6) GDPR (effective as of 25 May 2018). If..


When do Regulatory Data Protection Controls occur?

T he competent supervisory authority usually carries out compliance audits, as soon as they become aware of facts which justify a inspection of the controller. For example, it may be due to a complaint by a subject data, or the fact about the infringement of the data protection that went public..

Did we not answer your Questions?