Michael Plankemann, LL.M.

Lawyer

Partner

About the expert

Home » Office » Experts » Michael Plankemann

Michael Plankemann is a proven expert in data protection law and advises in particular on increased requirements and in cross-sectional areas.

Due to his long experience as an auditor for audits according to ISO 27001 based on IT-Grundschutz, he is also in demand for the evaluation of IT security as well as the assessment of risks.

Advising groups of companies, in particular corporate groups, also in an international environment
Advice to public administration
Advice on co-determination issues (works council/staff council)
Advice on data protection law in M&A
Realization of international data transfers in terms of data protection law
Preparation and revision of data protection regulations and drafting of contracts

Certified data protection officer (IHK)
ISO IEC 27001 Auditor (TÜV)
Certified Information Privacy Professional/Europe (IAPP)
ITIL V3 Manager
Lecturer of the IHK Academy Munich for data protection and data security
Experienced Auditor for ISO 27001 audits based on IT-Grundschutz
Admitted attorney in Munich

Law studies at the University of Constance and at the Ludwig-Maximilians-University Munich
Research assistant in a law firm at the Federal Court of Justice
LL.M. in legal informatics (EULISP) Hanover/Glasgow
Research assistant at the chair of Prof. Dr. Sieber and at the Legal Informatics Center of the LMU

Articles of the expert

Protective measures against phishing attacks

Michael Plankemann 16 January 2024

How to best protect your organisation, employees, and infrastructure against phishing – an overview of specific measures.

The NIS2 Directive and its implementation in Germany

Michael Plankemann 15 January 2024

Under the NIS2 Directive, significantly more organisations will be required to take increased information security measures. We explain who is affected by the Directive and what organisations should do now.

CJEU clarifies responsibility and the question of fault for the imposition of fines

Michael Plankemann 6 December 2023

In order to impose GDPR fines, it must be established who is responsible for the processing activity and whether and, if so, who must be at fault. The CJEU has now provided clarity.

Information Security Management System (ISMS)

Michael Plankemann 9 November 2023

How companies can set up an ISMS and thus not only improve their information security – comprehensibly explained by a practitioner.

Control during remote processing on behalf of a controller

Michael Plankemann 26 October 2023

When employees of processors work remotely, the controller’s right to control is regularly torpedoed. We shed light on typical arguments of service providers and refute them.

Data protection tenders

Michael Plankemann 23 September 2023

Problems with tenders on data protection advice – and how to get better offers from service providers without falling into the cost trap.

No articles to display

Group Data Protection

Data Protection

AI Compliance

Artificial Intelligence

Whistleblower System

Whistleblowing

Latest articles

Adequacy decisions: review of 11 third countries

Bias in artificial intelligence: risks and solutions

The German Whistleblower Protection Act

Special topics

Resources

Our Experts

Law Office

Michael Plankemann, LL.M.

About the expert

Articles of the expert

Protective measures against phishing attacks

The NIS2 Directive and its implementation in Germany

CJEU clarifies responsibility and the question of fault for the imposition of fines

Information Security Management System (ISMS)

Control during remote processing on behalf of a controller

Data protection tenders

Munich

Berlin

Services

Resources

About

Group

Contact us!

+49 (0)89 / 91 92 94 – 900

Secure the knowledge of our experts!