Data protection for businesses – obligations & practical guidelines

Data protection in Germany

Proof of effective consent for direct marketing

The requirements for proof of effective consent for direct marketing are increasingly becoming the focus of data protection supervisory authorities. What is important now and what requirements you

March 31, 2026

ECJ on misuse of requests for information

Data protection in Europe

When is a request for information excessive? ECJ names specific test points

According to the ECJ, an initial request for information can also be „excessive“ within the meaning of Art. 12 (5) GDPR if the controller proves that the request is not

March 19, 2026

Reporting process in the event of a data breach

Article by Marcus Belke

Report a data breach correctly: Reporting process according to GDPR with deadlines, evaluation and documentation

Data breaches are now one of the most common compliance incidents in organizations. Incidents have to be assessed, reporting obligations checked, measures documented and communication decisions made within a short space of time. We provide

March 17, 2026

Google becomes the processor for reCAPTCHA.

Compliance

reCAPTCHA and GDPR: Google becomes a processor - what website operators need to know now

Google will reclassify its role in the use of reCAPTCHA under data protection law and will no longer act as a controller but as a processor from April 2026. What this means

March 12, 2026

The internal data protection officer has special protection against dismissal

Article by Marcus Belke

Special protection against dismissal for the internal data protection officer

In Germany, the internal data protection officer enjoys far-reaching special protection against dismissal. Anyone who appoints an employee as data protection officer is therefore making a decision with long-term consequences. What this means for

March 10, 2026

Article by Marcus Belke

Audit preparation in data protection

Good audit preparation requires clear responsibilities, structured evidence and transparent processes. Find out how auditors think, what weaknesses frequently occur in data protection audits and how you can

March 5, 2026

How companies can use proctoring in a legally compliant manner.

Article by Aristotelis Zervos

Proctoring in the application process: Admissibility under data protection law according to the GDPR

Is proctoring in the application process compliant with data protection regulations? Find out which GDPR requirements apply and how companies can use proctoring in a legally compliant manner.

December 18, 2025

ECJ ruling on personal data and pseudonymization.

Data protection in Europe

Personal data and pseudonymization: ECJ specifies requirements

With reference to its previous case law, the ECJ has clarified the meaning of the term "personal data" in connection with the

November 14, 2025

Article by Aristotelis Zervos

GDPR reform: These are the planned changes to cookie banners

As part of the „Digital Omnibus“, the EU Commission is planning a far-reaching reform of the General Data Protection Regulation, which particularly affects the rules for online tracking and cookie banners. We present the

November 13, 2025

Ailance

Ailance RoPA: Multi-tab workflow for faster work

Anyone who regularly works with Ailance RoPA is familiar with this: you are constantly switching back and forth between processing activities, parties involved and data protection impact assessments (DPIAs). The focus and

October 31, 2025

Article & News

Tag: Datenschutz