Data Protection and IT Security

Growing rates of economic criminality and increased spying on personal data don’t just create a necessity for additional safety measures against internet attacks. Business data has to be protected from unauthorized access as well.

Public institutions like authorities or administrations as well as private institutions like companies, associations and other organizations have to adhere to legal regulations concerning data protection and IT security. In case of violations or non-compliance, high fines or compensation claims from affected persons might apply.

CRM mit AVE!CRM

For More Details

...visit our topic page on data protection under

What We Offer

  • support for your company or institution as an external data protection officer
  • Consultation on meeting legal requirements concerning data protection and IT security in accordance with art. 39 (1) GDPR, the German Federal Data Protection Act and the German State Data Protection Act as well as various requirements from other industry-specific guidelines and norms
  • Creation of a situation analysis on the degree of fulfillment in the company or the authority/ public administration
  • Supply of comprehensive templates for the obligatory documentation regarding data protection and IT security
  • Training of your employees in topics of data protection and IT security / web-based training / webinar in accordance with art. 39 (1) GDPR and § 4g (1) S. 4 Nr. 2 BDSG
  • Support in the creation of operating agreements in accordance with the Works Constitution Act, data protection compliance, company-wide policies and Binding Corporate Rules
  • Consultation on allocation of outsourcing in accordance with art. 28 (3) GDPR and § 11 BDSG incl. all obligatory documentation
  • Keeping of the procedure index in accordance with § 4d BDSG incl. required preliminary examination / pre-check in accordance with § 4d (6) BDSG in case of processing special types of personal data in accordance with art. 9 (1) GDPR and § 3 (9) BDSG
  • Support in creating and documenting your technical-organizational measures in accordance with art. 32 GDPR and § 9 BDSG or your information security management system in accordance with DIN ISO 27001
  • Monitoring of data processing programs and adherence to corresponding regulations in accordance with art. 39 (1) GDPR
  • Data protection impact assessment in accordance with art. 35 GDPR
  • Processing of requests from regulatory data protection authorities

 

Your Benefits

  • legal certainty in dealing with the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), the German State Data Protection Act as well as relevant regulations concerning data protection and IT security
  • neutral consultation on questions regarding data protection laws
  • legally conform and secure data storage and processing
  • freeing up capacities for business processes in case of using an external data protection officer

Advantages of Having an External Data Protection Officer

  • extensive know-how and practical experience
  • cost savings for instruction and training of an internal employee
  • neutral consultation for the company / administration management as well as employees
  • no conflicts of interest with other business tasks
  • freeing up capacities for business processes
  • avoiding liability risks and administrative fines