Autor

Dr. Paul Voigt, Lic. en Derecho, CIPP/E

Partner

Read More
Autor

Dr. Paul Voigt, Lic. en Derecho, CIPP/E

Partner

Read More

8. März 2023

Cyber Incident Response and Data Breach Notification (Germany)

  • In-depth analysis

A Practice Note addressing legal requirements and considerations when handling data breaches, cyberattacks, or other information security incidents in Germany or drafting data breach response notifications regarding personal data originating from Germany. It discusses the Federal Data Protection Act (BDSG) and operators of essential services’ obligations under the IT Security Act and IT Security Act 2.0. It also addresses related EU law, such as the EU General Data Protection Regulation (Regulation (EU) 2016/679) (GDPR), the EU Directive on the Security of Network and Information Systems (Directive 2016/1148/EC) (NIS Directive), and Germany’s implementing laws. It also addresses the requirements in light of recent legislative developments such as the NIS 2 Directive (Directive (EU) 2022/2555) and the DORA-Regulation (Regulation (EU) 2022/2554). The Germany-specific guidance in this Note may be used with the generally applicable resources in the Global Cyber Incident Response and Data Breach Notification Toolkit.

Download the entire article (pdf)

Reproduced from Thomson Reuters Practical Law with the permission of the publishers. For further information, visit the Global Home page at uk.practicallaw.thomsonreuters.com

Call To Action Arrow Image

Newsletter-Anmeldung

Wählen Sie aus unserem Angebot Ihre Interessen aus!

Jetzt abonnieren
Jetzt abonnieren

Related Insights

Technology, Media & Communications

NIS 2 Umsetzungs- und Cybersicherheitsstärkungsgesetz: Deutschland verschärft IT-Sicherheitsanforderungen

28. August 2023
Briefing

von Dr. Paul Voigt, Lic. en Derecho, CIPP/E und Alexander Schmalenberger, LL.B.

Klicken Sie hier für Details
Datenschutz & Cyber-Sicherheit

China: A practical insight into China SCCs and their impact on businesses

Michael Tan, Julian Sun, Paul Voigt and Wiebke Reuter look at what China's new SCCs mean for businesses looking to export personal data from China to the EU.

24. April 2023
In-depth analysis

von mehreren Autoren

Klicken Sie hier für Details
Datenschutz & Cyber-Sicherheit

Information Security Considerations (Germany)

7. März 2023
In-depth analysis

von Dr. Paul Voigt, Lic. en Derecho, CIPP/E

Klicken Sie hier für Details