data protection law

data protection law

GDPR fine - Lawyer data protection

Data breach, data misuse or violation of data protection regulations: data protection violations can cost a company or authority dearly. If there is a data protection violation and a fine is imposed, this is done by the responsible data protection authority (supervisory authority) of the respective federal state.

The cost of a data breach depends on the situation. In addition to GDPR fines in the form of fines, additional financial costs may include victim compensation, legal fees, and the cost of remediating non-compliance (e.g., through IT reconciliation).

Do not let it matter and make it your goal to comply with the provisions of the GDPR and other relevant data protection regulations.

We support you, whether as a legal advisor or data protection officer.

Arrange a consultation appointment now!
Make an appointment now!

The fine print- The privacy policy

What is on every commercial website that includes a cookie notice? Exactly... the privacy policy! Or in the words of the GDPR "the information obligations of the person responsible according to Art. 13 and 14 GDPR".

We help you to create a tailor-made data protection declaration not only for your website, but for all relevant data collection.

Processing directory according to Art. 30 GDPR

The legislator has decided: when a certain number of employees is reached or in the case of data processing with a risk for the rights and freedoms of the data subjects, it is mandatory to keep a processing directory.

It must be made available to the supervisory authority upon request. If the directory is not created, the person responsible has violated his accountability and documentation obligations. This violation is subject to a fine. Fines of up to EUR 10 million or, in the case of a company, up to 2% of its total worldwide annual turnover for the previous financial year are threatened.

Don't take a chance. We will help you to create the processing directory!

Digital preventive and aftercare

Surprisingly, data from the deceased is not protected by the GDPR. In addition, the Federal Court of Justice (BGH) decided on July 12, 2018 that a user account on Facebook can be inherited. The principles from the BGH decision should also be applicable to Instagram, LinkedIn or e-mail boxes.

If you want to ensure that your social media data or e-mail communication should not be seen by anyone after your death, you need to take precautions.Set up a "digital testament", i.e. a testamentary disposition only related to the handling of your digital data.

As a "social media executor" we will help you and protect your data even after your death!

Your data subject rights

With a media hype in May 2018, everyone became aware of the GDPR. While many companies and consumers saw the introduction as annoying and unnecessary, some privacy advocates still rated it as insufficient.


Despite all the excitement there was little room to duly celebrate the great achievement in favor of the "fundamental right to informational self-determination" since the census ruling of the Federal Constitutional Court in 1983 - this time at European level: Without your knowledge or willingness, no data about they are collected. With regard to our children, stricter rules have been set due to the increased need for protection.


We help you and enforce your data subject rights if someone does not take the GDPR seriously and violates your "fundamental right to informational self-determination".


Pixi books for children

Pixi books have been specially developed for children, explaining in an easy-to-understand way the importance of privacy and what children can do to minimize their data trail from an early age. The Pixi books are on the website of the Federal Commissioner for Data Protection and Freedom of Information ( BfDI ) to order free of charge.

Your data protection rights at work

Employers may only process the data of their employees that they need to establish, carry out or terminate the employment relationship. If your boss wants to collect or store additional data, this is not permitted without your consent.

Did you know, for example, that you can object to the publication of your photo on the company website!?

Do you need legal advice on these or similar topics from employee data protection? Give us a call!