When should a threshold analysis be carried out, how does it work and how can you reliably assess whether there is a "likely high risk"? This article provides practical answers to these and other questions and shows how threshold value analyses can be integrated into the data protection organization in an effective and legally compliant manner.
Those who only recognize risks when the damage has already occurred lose time, money and trust. Early warning systems are crucial, technologies such as Artificial intelligence and automation are revolutionizing the integrated risk management approach. Find out what benefits your company can expect and how Ailance - Integrated Risk Management can help.
A Processing directory (VVT) serves as proof of data protection compliance and the Transparency. In the following article, we answer the most important questions about the Processing directory.
The popular video editing app CapCut from the company ByteDance, which also owns TikTok, updated its terms of use on June 12, 2025. These now provide for a comprehensive transfer of rights, which has led to ongoing criticism from lawyers and the public. We shed light on the associated legal risks for Responsible persons.
On June 27, 2025, the Council of the European Union adopted a draft regulation laying down additional procedural rules for the enforcement of the GDPR adopted in cross-border cases. The aim is to simplify cross-border data protection procedures in accordance with Art. 60 et seq. GDPR and make them more efficient. We provide an overview.
The highest Fine was imposed on Vodafone in Germany in June 2025. Two million-euro fines were imposed in Spain and the UK for data breaches in which the attackers gained unauthorized access to data via credential stuffing. And in Ireland, the Department of Social Services was fined a comparatively high Fine punished.
With the increasing spread of artificial intelligence (AI) in companies, the issue of data protection-compliant development and use of AI systems is becoming increasingly important. The Data protection conference (DSK) has published guidance on this.
On June 16, 2025, the Conference of Independent Federal and State Data Protection Supervisory Authorities (DSK) adopted the Model Guidelines for the Procedure on Fines (MRiDaVG). These are intended to establish a uniform nationwide procedural practice for data protection supervisory authorities when sanctioning data protection violations under the GDPR ensure.
In June 2025, the French data protection supervisory authority CNIL published guidance on the application of the "legitimate interest" (Art. 6 para. 1 lit. f GDPR) as the legal basis for the development of AI systems.
You can also follow us on our social media channels:
Contact us
Phone: +1 (954) 852-1633
E-Mail:info@2b-advice.com
German German 
English
Italian
French