Data protection news

NIS-2, the EU's new binding cybersecurity directive, will be implemented from October 17, 2024. On this date, the member states are obliged to create and apply the necessary measures to comply with the directive. In Germany, this...

The European Commission is planning a significant revision of the Standard Contractual Clauses (SCCs) that govern international data transfers. These new regulations are expected to come into force in 2025 and respond to current...

The following case proves that data transfer to the USA still requires special attention despite the EU-U.S. Data Privacy Framework.

The Dutch Data Protection Authority (DPA) has fined Uber 290 million euros. The background to...

An interesting case, which only life can write, was recently decided by the Düsseldorf Regional Labour Court. This case concerns a number of interesting...

GINDAT would like to draw your attention once again to Section 79a of the Works Constitution Act (BetrVG), which came into force in 2021. This states that the employer is responsible for the implementation of data protection...

We would like to draw the attention of all our customers who are involved in the letting of residential property to the fact that the DSK has issued a current guidance document on obtaining tenant self-disclosures.

In principle,...

On 14 May 2024, the Telemedia Act (TMG) was replaced by the Digital Services Act (DDG). In addition, the Telecommunications Telemedia Data Protection Act (TTDSG) is now the Telecommunications Digital Services Data Protection Act...

The new version of the TISAX VDA ISA catalogue is now available. This updated version contains extended requirements that are aligned with the latest security standards. Companies are advised to familiarise themselves with the new...

Introduction

The AI Act, which was passed on 21 May 2024, is the world’s first law on the regulation of artificial intelligence. It is expected that many industries will have to deal intensively with this regulation in the...

B) Risk-based approach of the AI Regulation

As already described in the Overview of the AI Regulation Part 1, the AI Regulation follows a risk-based approach.This means that the degree of regulation depends on the severity of the...

NIS2UmsuCG – a complicated-sounding string of letters – is coming our way this year and translates as the NIS 2 Implementation and Cyber Security Strengthening Act.

It is estimated that the law will affect at least 30 thousand...

The planned EU supply chain law has overcome a decisive hurdle: Despite resistance from the German government, a majority of EU countries support the law to protect human rights. It is intended to ensure that European companies...