Increasing technology and internationalisation mean that data protection and IT law are becoming increasingly important. New technologies and trends present new challenges, such as
- Cloud computing
- Big data
- Industry 4.0
In order to avoid liability risks, international companies must meet highly complex national and international data protection and IT compliance requirements and adapt and expand their data protection management systems accordingly. This especially holds true in light of the EU Data Protection Regulation (GDPR) and the new Federal Data Protection Act (BDSG), which comes into effect on 25 May 2018 in Europe and, respectively, in Germany, and which will set greater requirements for data protection management.
This will not only affect DAX and MDAX companies, but also small and medium-sized companies. Complex issues such as
- Privacy by design and privacy by default
- Data portability
- Right to be forgotten
- Data protection impact assessments, and
- International data flows
must be implemented in line with the legal requirements in order to avoid the massive imposition of fines under the GDPR.
At WTS, we help our clients to develop practical and economically viable solutions. Where necessary, we consider not just the legal, but also the technical and organisational aspects, including the underlying business processes. In doing so, we take into account current international standards (e.g. ISO / IEC 27001) and new approaches, such as the standard data protection model of the conference of independent data protection authorities of the federal and state governments in Germany.
Our data protection and IT legal services portfolio includes design consultancy as well as strategic, individual and procedural advice, including representation vis-à-vis the supervisory authorities, affected parties and courts.
Our WTS experts can also provide an external data protection officer as defined in para. 4f BDSG (1990); Art. 37, para. 6 GDPR. By doing so, our clients will profit from our interdisciplinary and international consulting expertise. This allows for a cost-efficient and direct deployment as a data protection officer ("plug & play").
Our consulting services at a glance: