Rights of the data subject
The General Data Protection Regulation (GDPR) grants data subjects numerous rights. Our data protection lawyers explain how data controllers can best safeguard these rights.
Cyber Resilience Act (CRA)
What cybersecurity requirements must manufacturers, importers and distributors meet according to the CRA in order to be allowed to place products on the market in the EU from 2027 onwards?
GDPR reform – new plans of the EU Commission
Changes to the GDPR are primarily intended to ease the burden on SMEs. A new draft shows that the reform simplifies a few documentation requirements. It also poses new risks for companies.
Is Art. 9 GDPR an independent legal basis?
What is the relationship between Art. 6(1) GDPR and Art. 9(2) GDPR – and is it sufficient to fulfil the latter in order to be allowed to process special categories of personal data?
Responsibility when using processors and sub-processors
The EDPB comments on obligations and controls when using service providers and sub-processors in the context of processing on behalf of a data controller.
APIs and data protection
If (personal) data is exchanged via APIs, numerous aspects of data protection law must be observed. We explain the most important requirements for companies and developers.
Bias in artificial intelligence: risks and solutions
What are the dangers of systematic bias in AI – and how can companies design their AI systems in such a way that they favour or disadvantage as few people as possible?
Transparency of the processing
The content and significance of the GDPR’s transparency principle for organisations – explained simply and practically.
GDPR-compliant use of call centre systems
Which data protection regulations apply to call centres and what you need to consider especially when using AI-based systems.
German Federal Cartel Office’s antitrust action against Meta
Can an Antitrust Authority also refer to data protection aspects when prohibiting certain processing activities? What would be the impact on companies in Europe?
Artificial intelligence (AI) and personal data
From the perspective of data protection law, what do you have to consider when using AI-based systems such as ChatGPT in your company? Quite a lot!