Data Protection

All-in-one or point-to-point support for your group or company’s GDPR compliance – from the data protection specialists in Europe.

Data protection services

Ein Datenschutz-Jurist von lächelt in die Kamera, während hinter ihm weitere Mitarbeiter der Kanzlei an einem Fall arbeiten


For non-EU businesses:
Appoint our law firm as your EU representative required under the GDPR and sell goods and services to people inside the EU.

data protection

For corporations:
Flexible selective support for data protection in your group and affiliated companies.

External data
protection officer

For EU businesses:
The all-in-one solution for GDPR compliance in your group or company

Coming soon

Services of our partners

If you want to do business in certain countries outside the European Union (EU), you need a representative there too.

Our partner companies in the United Kingdom and Switzerland will be happy to help you.


Our latest data protection guides

The German Whistleblower Protection Act

The Whistleblower Protection Act is intended to protect whistleblowers and whistleblowers. Employers must fulfill various requirements and, if necessary, set up internal reporting channels.

One-stop shop procedure according to GDPR

What does the one-stop shop mechanism under data protection law mean and how can companies define their EU head office under the GDPR? The EDPB’s answers summarised.

The German Supply Chain Due Diligence Act

What obligations do companies have to fulfil under the German the Supply Chain Due Diligence Act? How can they best do this? What sanctions can be imposed? What are the differences to the upcoming EU Supply Chain Directive? An overview!

Boost your GDPR compliance with our free templates and checklists

Frequently asked questions about corporate data protection

The experts of the law firm advise companies and groups worldwide on data protection and in particular on GDPR compliance.

Here you will find our answers to some frequently asked questions about data protection in the European Union and our services.

The applicability of the GDPR to a non-EU organisation is determined by the so-called ‘targeting’ criterion. It examines the processing of personal data of data subjects in the EU, and whether the processing activities are related to the following:

  • offering them goods or services (these may be free of charge), or
  • monitoring their behaviour within the EU.

Find out exactly what this means in our guide on the applicability of the GDPR to companies outside the EU.

Contact us!

Secure the knowledge of our experts!

Subscribe to our free newsletter: