Venushon Thadchanamoorthy | activeMind.legal

CJEU clarifies responsibility and the question of fault for the imposition of fines

Michael Plankemann 6 December 2023

In order to impose GDPR fines, it must be established who is responsible for the processing activity and whether and, if so, who must be at fault. The CJEU has now provided clarity.

CJEU defines right to a copy under Art. 15 GDPR

Venushon Thadchanamoorthy 30 November 2023

In what form and to what extent must copies of personal data be provided when data subjects exercise their data protection rights? The CJEU provides clarity and sets new standards.

Information Security Management System (ISMS)

Michael Plankemann 9 November 2023

How companies can set up an ISMS and thus not only improve their information security – comprehensibly explained by a practitioner.

Control during remote processing on behalf of a controller

Michael Plankemann 26 October 2023

When employees of processors work remotely, the controller’s right to control is regularly torpedoed. We shed light on typical arguments of service providers and refute them.

GDPR Procedural Regulation

Jure Globocnik 18 October 2023

An initiative of the European Commission aims to strengthen the enforcement of the GDPR and speed up cross-border proceedings before supervisory authorities.

GDPR-compliant use of call centre systems

Jure Globocnik 11 October 2023

Which data protection regulations apply to call centres and what you need to consider especially when using AI-based systems.

Data protection tenders

Michael Plankemann 23 September 2023

Problems with tenders on data protection advice – and how to get better offers from service providers without falling into the cost trap.

EU-U.S. Data Privacy Framework

Dr. Evelyne Sørensen 15 September 2023

Everything EU companies need to know about the EU-U.S. Data Privacy Framework – explained simply by lawyers.

Exposing phishing emails and avoiding data breaches

Vasiliki Paschou 13 September 2023

Phishing is one of the most widespread methods of illegally obtaining access data. We explain the best ways to protect your company and your employees.

EUR 5 million fine for intransparent data processing and inadequate disclosure

Vasiliki Paschou 8 September 2023

The music streaming service Spotify did not sufficiently inform its users about the processing of their data. The Swedish supervisory authority has now imposed a GDPR fine.

Group Data Protection

Data Protection

Whistleblowing System

Whistleblowing

Latest articles

CJEU clarifies responsibility and the question of fault for the imposition of fines

CJEU defines right to a copy under Art. 15 GDPR

Information Security Management System (ISMS)

Control during remote processing on behalf of a controller

GDPR Procedural Regulation

GDPR-compliant use of call centre systems

Resources

Our Experts

Law Office

Guides and Articles

CJEU clarifies responsibility and the question of fault for the imposition of fines

CJEU defines right to a copy under Art. 15 GDPR

Information Security Management System (ISMS)

Control during remote processing on behalf of a controller

GDPR Procedural Regulation

GDPR-compliant use of call centre systems

Data protection tenders

EU-U.S. Data Privacy Framework

Exposing phishing emails and avoiding data breaches

EUR 5 million fine for intransparent data processing and inadequate disclosure

Specials

Rights of the data subject

Employee data protection

Marketing and data protection

International data transfer

Judgments on the GDPR and national data protection law

GDPR fines analysed and explained

Munich

Berlin

Services

Resources

About

Group

Contact us!

+49 (0)89 / 91 92 94 – 900