Martin Röleke, LL.M.

Lawyer

Senior Manager

About the expert

Home » Office » Experts » Martin Röleke, LL.M.

At activeMind.legal, Martin Röleke advises clients across all industries in the areas of data protection and information security law.

His consulting focus lies in particular on the interface of data protection and IT security. He primarily advises on various data protection compliance requirements in the area of health care, where he provides support for research and complex outsourcing projects, among other areas.

Risk management and data protection impact assessments
Legal advice on outsourcing and SaaS contracts
Advice on setting up data protection, information security and compliance management systems. Including critical infrastructures according to BSIG and SGB V
Advice on data protection law for research projects and clinical trials in the healthcare sector
Data protection law consulting for M&A

Certified data protection officer (IHK)
Certified Project Manager (GPM)
ISO IEC 27001 Auditor (TÜV)
Certified Information Privacy Professional/Europe (IAPP)
Lecturer of the IHK Academy Munich for data protection, data security
Member of the expert pool of the EDPB (European Data Protection Board)

Legal studies in Würzburg, Istanbul, Speyer and Budapest
Master of Laws (Speyer) in State and Administration in Europe
Admission to the bar in Munich

Articles of the expert

CJEU establishes guidelines for the abuse of the right of access

Martin Röleke 20 March 2026

Important CJEU ruling on dealing with abusive requests for access and the consequences of a breach of the right to access.

CJEU: non-material damage, injunctive relief, assessment of damages

Martin Röleke 11 February 2026

A ruling that is highly relevant in practice concerning the de minimis threshold for non-material damage, injunctive relief claims based on the GDPR, and the assessment of damages.

Information obligations even for pseudonymised data?

Martin Röleke 20 October 2025

The ECJ rules on whether recipients must also be named if they only receive pseudonymised personal data. The ruling is likely to spark considerable debate.

General Court reviews EU-U.S. Data Privacy Framework

Martin Röleke 21 September 2025

The General Court of the European Union rules on the validity of the EU-U.S. Data Privacy Framework, providing legal certainty for data transfers to the United States, at least in the short term.

Can a verbal disclosure constitute processing within the meaning of the GDPR?

Martin Röleke 6 May 2025

The CJEU rules on the concept of processing and the objectives of the GDPR.

The European AI Act

Martin Röleke 3 February 2025

The EU’s regulation of artificial intelligence – a brief overview of the AI systems covered and the corresponding obligations of the involved companies.

No articles to display

Group Data Protection

Data Protection

AI Compliance

Artificial Intelligence

Whistleblower System

Whistleblowing

Latest articles

CJEU establishes guidelines for the abuse of the right of access

Data Act: Planned changes through Omnibus IV

Group turnover as a benchmark for GDPR fines

Special topics

Resources

Our Experts

Law Office

Martin Röleke, LL.M.

About the expert

Articles of the expert

CJEU establishes guidelines for the abuse of the right of access

CJEU: non-material damage, injunctive relief, assessment of damages

Information obligations even for pseudonymised data?

General Court reviews EU-U.S. Data Privacy Framework

Can a verbal disclosure constitute processing within the meaning of the GDPR?

The European AI Act

Munich

Berlin

Services

Resources

About

Group

Contact us!

+49 89 919294-900

Secure the knowledge of our experts!