Search

How Austrian data protection law differs from the GDPR

Austrian legislators have made use of the opportunity to establish derogating regulations from the GDPR (‘opening clauses’). Thus, in the Austrian Data Protection Act (DSG), a child’s consent to an offer from information society services is lawful if the child has already reached the age of fourteen (§ 4 (4) DSG). Under the broad concept of ‘image recordings’, legislators have made regulations on video surveillance in § 12 f DSG. Likewise, data processing standards for specific purposes (e.g. processing in the public interest for archiving, scientific or historical research purposes as well as for statistical purposes and in case of emergency) are included in the DSG.

A substantial difference to the GDPR is found in § 4 (4) DSG. According to this regulation, immediate erasure is not necessary if, for economic or technical reasons, it is only possible at certain times. In this case, processing of the personal data concerned shall be restricted by that time, with the effect as stipulated in Art. 18 (2) GDPR. It remains to be seen how the ECJ will assess this provision and whether it is compatible with the GDPR.

In the following, you will find the additions and derogations from the GDPR on the most important topics of personal data protection that companies need to know. If topics are not linked, there are no derogating or specifying provisions in the national data-protection law.

  1. Specific data protection law and official guidelines
  2. Material and territorial scope
  3. Definitions
  4. Legal principles
  5. Legal basis
  6. Sensitive data
  7. Information requirements
  8. E-marketing (new regulation by ePrivacy Regulation remains to be seen)
  9. Cookies
  10. Automated decision-making
  11. Rights of data subjects
  12. Processing on behalf of a controller
  13. Records of processing activities
  14. Data security
  15. Data breaches
  16. Data protection impact assessment (DPIA)
  17. Data protection officer
  18. Certification
  19. Data transfer
  20. Supervisory authorities
  21. Sanctions and penalties
  22. Data protection for employees
  23. Archiving, scientific and historical research
activeMind.legal Rechtsanwaltsgesellschaft is a law firm specialising in data protection law. With our partner firms in the UK and Switzerland, we cover all aspects of GDPR compliance and national data protection law in Europe.

Munich

activeMind.legal
Rechtsanwaltsgesellschaft m. b. H
Potsdamer Straße 3
80802 Munich, Germany

+49 (0) 89 / 919 29 49 00

Berlin

activeMind.legal
Rechtsanwaltsgesellschaft m. b. H
Kurfürstendamm 56
10707 Berlin, Germany

+49 (0) 30 / 770 19 10 70

Services

Resources

About

Group

© 2016-2024 activeMind.legal

powered by rethink digital & KLEINWERKSTATT

Contact us!

+49 (0)89 / 91 92 94 – 900

Full details of how we handle your data can be found in our privacy policy.

Secure the knowledge of our experts!

Subscribe to our free newsletter:

By clicking on "Subscribe now" you consent to receive our newsletter. We will only use your data in accordance with our privacy policy.