Rights of the data subject
The General Data Protection Regulation (GDPR) grants data subjects numerous rights. Our data protection lawyers explain how data controllers can best safeguard these rights.
Dark patterns on websites
In its Guidelines, the EDPB explains which forms of dark patterns should be avoided under data protection law.
Artificial intelligence (AI) and data protection
From the perspective of data protection law, what do you have to consider when using AI-based systems such as ChatGPT in your company? Quite a lot!
EU Cyber Resilience Act (CRA): scope, obligations, and fines for non-compliance
What do producers of products with digital elements have to consider and follow under the proposed Cyber Resilience Act by the European Commission.
Information obligations according to the GDPR
Data subjects must be informed before personal data is processed. But what is the best way for data controllers to fulfil their information obligations? What must information letters contain? A practical guide.
Lawful processing of telemetry data
When processing telemetry data, software providers must pay particular attention to a suitable legal basis. We explain how to implement the data protection requirements in practice.
Privacy by Design and Privacy by Default
How to (re)gain the trust of users with privacy-compliant IT and avoid high fines. The ultimate guide to Privacy by Design and Privacy by Default.
ISO 31700 – the new standard for Privacy by Design
What are the most important requirements of the new ISO 31700-1 and 31700-2 standard? What is the significance of the new standard for companies? How will the standard affect the market?
German Federal Cartel Office’s antitrust action against Meta
Can an Antitrust Authority also refer to data protection aspects when prohibiting certain processing activities? What would be the impact on companies in Europe?
Data protection for Facebook fan pages
Can companies operate fan pages or company profiles on Facebook in compliance with data protection? What do the CJEU and DSK say about compatibility with the GDPR? An overview of data protection and practical tips against warnings and fines.
Are blockchain and GDPR unintelligible?
The decentralised technology of the blockchain has many advantages in the transparent storage of transactions. But what about compliance with the GDPR, in particular the guarantee of data subject rights?