Data protection

Unser Datenschutz für Sie – Interdisziplinär, strategisch klug

Beratung im strategischen und operativen Datenschutz

Advice on strategic and operational data protection

3 steps to more security. Our advice covers – as far as necessary – international data protection, data protection in corporate groups, and employee data protection.

Externer Datenschutzbeauftragter (DSB)

External Data Protection Officer (DPO)

We offer certified data protection experts who support you in setting up and implementing a practical and legally compliant data protection organization in your company.

Unterstützung zur Datenschutzkonformität

Support for data protection compliance

We support your departments and data protection coordinators in implementing national and international data protection requirements.

Advice on strategic and operational data protection

3 steps to more security
Our advice covers – as far as necessary – international data protection, data protection in corporate groups, and employee data protection.

Step 1: Survey – data protection inventory
We work with you to determine the need for data protection advice in your organization and conduct an initial audit.

Step 2 – Analyzing the results of the inventory
The results of the inventory provide us with valuable information for identifying data protection risks and assessing the impact on your organization (risk analysis).

Step 3 – Documenting and recommending action
In the form of a data protection plan, we work with you to determine, among other things, the specific technical and organizational measures required in accordance with Article 32 of the GDPR. In doing so, we take into account all laws, regulations, and procedural recommendations relevant to your organization as well as the latest decisions of courts and authorities.

We support you in setting up a data protection organization, establishing a data protection officer, and introducing relevant documentation and guidelines.

We summarize the results for you in a final report and present them in a final presentation.

Support for data protection compliance

We support your departments and data protection coordinators in implementing national and international data protection requirements.

This includes, among other things

  • Establishment and operation of a data protection management system (DSMS)
  • Development/optimization and digitalization of data protection processes (e.g. in dealing with data subjects’ rights and data protection violations)
  • Design and implementation of technical and organizational measures
  • Identification of your processors and review of processing contracts, Article 28 et seq. DSGVO.
  • Establishment/maintenance of a legally compliant register of processing activities, Art. 30 DSGVO.
  • Creation of internal data protection concepts, guidelines, work practices, and behavioral patterns.
  • Conducting customer-oriented data protection training courses and workshops
  • Introduction of central data protection management software
  • Preparation and support of internal and external data protection audits and assessments.

External Data Protection Officer (DPO)

We offer certified data protection experts who support you in setting up and implementing a practical and legally compliant data protection organization in your company.

A DPO is required if you usually employ at least 20 persons permanently with the automated processing of personal data, § 38 BDSG. Part-time employees, temporary staff, and interns are fully taken into account when calculating the number of persons. Automated data processing includes, for example, the use of Excel, Outlook, and other software programs in customer administration, sales, and personnel departments.

A DPO is required, regardless of the number of persons, if your data processing results in a high risk to the rights and freedoms of natural persons or if you process personal data on a business basis for the purpose of transmission, anonymized transmission, or for the purpose of market or opinion research, Section 38 (1) sentence 2 BDSG.

In his function as a data protection officer, the expert provided by us assumes all the tasks of an internal data protection officer:

  • Data protection law assessment of facts
  • Coordination/management of data protection incidents and assertion of data subjects’ rights
  • Central contact for all data protection inquiries within your organization or from outside
  • Establishment/development of your data protection concepts
  • Carrying out data protection assessments and managing the resulting measures
  • Planning/implementation of in-house training and awareness programs

Our data protection experts take a neutral position. They clarify risks and develop proposals that serve as a basis for decision-making in your organization.

 

These are your advantages

We minimize the risks of data breaches and data losses and thus your liability risks and the danger of fines, compensation payments, and image and reputation losses.

Our external data protection officers are your central contacts for all data protection-related inquiries and issues.

We have a broad network of data protection experts and IT specialists.

You benefit from our many years of expertise. We take into account the latest decisions of national and international courts and supervisory authorities.

Our experts have many years of experience in communicating with data protection supervisory authorities.

Our data protection experts are up to date with the latest technology and legal requirements.

Our data protection experts are certified and fully qualified lawyers and IT specialists in data protection and compliance.

Our experts have many years of experience in dealing with data protection breaches.

You ensure data security for your customers as well.

Due to the neutral position of an external data protection officer, conflicts of interest can be avoided.

Facts and figures

EUR million fine on a social media company for data protection violations

Data Protection Commissioner v. 15.09.2022

%

of the German companies surveyed consider the bureaucratic effort involved in reporting incidents to be too high.

Bitkom Research 2022

Billions of euros spent in the last 12 months on data protection measures (e.g. informing customers)

Data Protection Commissioner (Irish Data Protection Authority) v. 15.09.2022

%

More complaint procedures in 2021 than in the previous year in 2020

Data Protection Report 2021 (dsb – Data Protection Authority of the Republic of Austria)

Your contact