Home / People / Philippe Heinzke

Philippe Heinzke, LL.M.

Partner
Rechtsanwalt

Portrait ofPhilippe Heinzke

Philippe Heinzke, LL.M.

Partner
Rechtsanwalt

Contact
CMS Hasche Sigle
Kasernenstraße 43-45
40213 Duesseldorf
Germany
Languages German, English

Philippe Heinzke advises companies on technology-related legal issues, with a focus on the legally compliant implementation of digital business models.

He specialises in IT and data law (GDPR, Data Act, DGA, CRA) and artificial intelligence law (AI Act). He ensures the protection of data in data-driven business models, including IoT data, AI data and personal data, and develops solutions enabling businesses to protect and utilise data in accordance with legal requirements. He also helps companies to protect the IP rights in data and digital assets, in particular copyright and trade secret rights.

In addition to the legally compliant implementation of digital business models, Philippe often drafts and negotiates complex contracts, especially in the context of cross-border data sharing within groups or between customers and suppliers. He has extensive experience in negotiating and concluding project, licence and software agreements.

Philippe also has special expertise in open-source law, having analysed well over a hundred open source licences and working closely with IT partners to identify open source software. At CMS, he is the contact for Open Chain, a standard for ensuring open-source compliance in companies. In the event of breaches of open-source licences, Philippe develops solutions and represents clients in and out of court in disputes.

Philippe joined CMS in 2013 and has been a partner since 2022. Before joining the firm, he worked for several technology companies, most recently as a software developer.

more less

Listed as top 100 lawyer

Kanzleimonitor 2020-2022

Leading lawyer for IT law and contract law

Kanzleimonitor 2020-2022

Recommended lawyer for IT law

Kanzleimonitor 2019, 2020

"very experienced in IT and data protection"

Mandant, IT-Start-up, 2018

Listed as top 100 lawyer

Kanzleimonitor 2020-2022

Leading lawyer for IT law and contract law

Kanzleimonitor 2020-2022

„verhandelt souverän, professionell und lösungsorientiert“

Mandant, internationaler Technologiekonzern, 2020

Recommended lawyer for IT law

Kanzleimonitor 2019, 2020

„exzellente Unterstützung“

Mandant, globales Technologieunternehmen, 2019

"very experienced in IT and data protection"

Mandant, IT-Start-up, 2018

„immer zuverlässig“

Mandant, internationaler Mischkonzern, 2018

Führender Anwalt IT-Recht

Kanzleimonitor 2022/2023

Führender Anwalt Vertragsrecht

Kanzleimonitor 2022/2023

Memberships & Roles

  • International Association of Privacy Professionals (IAPP)
  • International Technology Law Association (ITechLaw)
more less

Publications

  • Datenzugangsansprueche nach dem Data Act, BetriebsBerater (BB) 2024, Heft 12, 649, co-author: Bjoern Herbers, Michael Kraus
  • Data Act: Ein neuer Baustein des europaeischen Datenrechts, GRUR-Prax 2023, Heft 6, 154
  • Der EuGH und die DSGVO - ein Nadeloehr zur Rechtssicherheit, Computer und Recht (CR) 2023, Heft 2, 90-98, co-author: Kevin Leibold
  • Data Act: Auf dem Weg zur europaeischen Datenwirtschaft, Betriebs Berater (BB) 2023, Heft 5, 201
  • Einsatz von Echtdaten zum Test von IT-Systemen kann zulaessig sein, GRUR-Prax 2022, issue 22, 644
  • Ein neues Datenrecht fuer die EU: Digitaler Wandel zum Wohle aller, Betriebs Berater (BB) 2022, issue 18, Umschlagteil, I
  • EuGH-Vorlage zur Zulaessigkeit von DSGVO-Bußgeldverfahren gegen Unternehmen, GRUR-Prax 2022, issue 4, 119
  • Entstehung von Bearbeiterurheberrechten bei moeglichem GPL-Verstoß, GRUR-Prax 2021, issue 18, 532
  • Die kollektive Rechtsdurchsetzung bei Verletzungen des Datenschutzrechts - Teil 2 - Durchsetzungsmoeglichkeiten nach heutigem und zukuenftigem Recht, Computer und Recht (CR) 2021, issue 9, 582
  • Die kollektive Rechtsdurchsetzung bei Verletzungen des Datenschutzrechts - Durchsetzungsmoeglichkeiten nach heutigem und zukuenftigem Recht, Computer und Recht (CR) 2021, issue 5, 299
  • Datenschutz und Cloud-Computing, PRev 2021, issue 2, 101
  • Kein Anspruch auf Schadensersatz bei entgeltfreier Lizenzierung, GRUR-Prax 2021, issue 2, 53
  • Schrems II: Neue Anforderungen an den Transfer personenbezogener Daten in Drittlaender, GRUR-Prax 2020, issue 19, 436
  • Kennzeichenrechtliche Haftung des Werbenden bei Adword-Anzeigen, GRUR-Prax 2020, issue 15, 338
  • Datenverarbeitung zur Vertragserfuellung – Anforderungen und Grenzen, Zeitschrift für Datenschutz (ZD) 2020, issue 4, 189
  • Recht auf Auslistung von Treffern aus Suchmaschinen, GRUR-Prax 2019, issue 24, 545
  • Open-Source-Software in Webapps, Computer und Recht (CR) 2019, issue 11, 697
  • Zum Recht auf Vergessenwerden nach Art. 17 DSGVO, GRUR-Prax 2019, issue 16-17, 396
  • Der Schutz von Geschaeftsmodellen, Legal Management of Innovation, 2018, 136, co-authors: Markus Deck and Paetrick Sakowski
  • Kein Anspruch auf Schadensersatz bei GPL-Verletzung, GRUR-Prax 2017, issue 18, 439
  • Abwägung beim Recht auf Vergessenwerden, GRUR-Prax 2017, issue 15, 355
  • Beweislast beim Recht auf Vergessenwerden, GRUR-Prax 2017, issue 9, 215
  • Softwarelizenzierung mit Creative-Commons-Lizenzen?, Computer und Recht (CR) 2017, issue 3, 148
  • Open-Source-Compliance, Corporate Compliance Zeitschrift (CCZ) 2017, issue 2, 56
  • Unterscheidungskraft durch ungewoehnliche Verkuerzung, GRUR-Prax 2016, issue 21, 480
  • Richtlinie zum Schtz von Geschaeftsgeheimnissen, Corporate Compliance Zeitschrift (CCZ) 2016, issue 4, 179
  • Juristische Fallstricke beim Open-Source-Einsatz im Unternehmen, iX Magazin für professionelle Informationstechnik, iX Special 2016 - Open Source im Unternehmen
  • Vergiss mich: Das Recht auf Loeschung von Suchergebnissen, GRUR-Prax 2015, issue 06, co-author: Jan Freialdenhoven
  • Tell-a-Friend – Ist Online-Empfehlungswerbung noch empfehlenswert?, Kultur & Recht 2014, issue 12
  • Eingesammelt und ausgewertet – was man beim Social-Media Monitoring beachten muss, iX Magazin für professionelle Informationstechnik 2014, issue 06
  • E-Mail Weiterempfehlungen als Werbung? Warum die aktuelle Rechtsprechung des BGH nicht ueberrascht., IP-Update 2014, issue 03
  • Author of various contributions to the CMS Blog and Lexology
more less

Lectures list

  • The Age of AI: Kuenstliche Intelligenz rechtssicher entwickeln undnutzen, OMR Festival 2023 , Hamburg, 09.05.2023
  • Der EU Data Act kommt naeher – was Unternehmen jetzt wissen muessen, Webinar, Online, 25.04.2023
  • Datenrecht- und Datensouveraenitaet, OVHcloud Backstage Event/OVH Partnerkongress, Frankfurt, 02.03.2023
  • Der EuGH und die DSGVO: Ausblick auf anstehende Urteile des EuGH zum Datenschutz in 2023, Praesentation, Webinar, 30.01.2023, co-speaker: Dr Reemt Matthiesen
  • Update Geschaeftsgeheimnis - Take-aways für die Unternehmenspraxis, CMS Webinar, 15.02.2022
  • "Die neuen Standardvertragsklauseln – Übersicht, Tipps zum Umgang und Bedeutung für Datentransfers nach Schrems II", CMS Webinar, 11.06.2021
  • "Schrems II & Cloud Act – Was Unternehmen beachten muessen", OVHcloud Event, 19.05.2021
  • "Update IT- und Datenschutzrecht", SThree Executive Event, 25.02.2021
  • "Der Schutz von Geschaeftsmodellen", Startplatz Accelerator, 05.02.2021
  • "The Protection of Business Models", Startplatz Duesseldorf, 11.08.2020
  • "Key Note: Das Loeschen im Datenschutzrecht", Information Day GDPR, 06.02.2020, Stuttgart
  • "Datenschutz für chinesische Unternehmen", Roadshow Datenschutz für chinesische Unternehmen, Duesseldorf, 05.06.2019
  • "Open Source Compliance", SThree, Duesseldorf, 22.05.2019
  • "Impulsvortrag 'Open Source Compliance'", Coaching Day des Berufsverbands der Compliance Manager (BCM), Duesseldorf, 19.10.2018
  • "Herausforderung Open Source Compliance", Computerfutures, Duesseldorf, 18.01.2018
  • "Herausforderungen durch Digitalisierung", Commercial Roadshow, Duesseldorf, 17/11/2016
  • "Open Source – Freie Software für alle?", Compliance Roadshow, Duesseldorf, 02/11/2016
  • "Know-how-Schutz: Neuerungen. Risiken. Loesungen.", Know-how-Schutz im Unternehmen, Duesseldorf, 07/09/2016
  • "Datenkrake Internet – Warum Sie das Netz (nicht) vergisst", IP-Tea 1/2015, Duesseldorf
  • "Big Data – bigger legal problems?", Bitkom BigData Summit 2014, Hanau
more less

Education

  • 2014: LL.M in Media Law
  • 2013: Second state examination in law and admitted as a qualified German lawyer
  • 2012: Degree (Diplom Sozialwirt) in business studies, business psychology and sociology
  • 2010: First state examination in law
more less

Expertise

Feed

17/04/2024
CMS data protection update (04/2024)
I. The latest from the data protection authorities and current topics1. EDPB: Launch of coordinated enforcement on the right of accessThe European Data Protection Board (EDPB) selected the right of access...
Law-Now Data Protection Law & IT Security Law
28/03/2024
The data access rights of the Data Act
The data access rights under the Data Act and their restrictions are extensive – we provide an over­view.European legislators have recognised that data is an essential resource which is required for...
Law-Now Data Law
18/03/2024
The DGA is expected to spur on data altruism
Voluntary data donations are intended to make data widely usable. The DGA wants to build trust in data altruism or­gan­isa­tions.The range of applications in which the use of data and information is playing...
Law-Now Data Law
18/03/2024
E-learning | Open source compliance – basics
This e-learning course teaches the basics of open source compliance. The aim of the course is to raise awareness of the advantages as well as the risks and pitfalls of open source software in all these levels of the company. At the end of the course, solutions to identify risks and avoid them as best as possible through appropriate processes are shown. The e-learning course is aimed at everyone in companies who comes into contact with open source software. This includes not only management but also the IT and development department, purchasing, sales and product management.
Publication
18/03/2024
E-learning | Open source compliance for software developers
This e-learning course has been specially designed for software developers. Its purpose is to raise awareness of what needs to be considered from a legal viewpoint when software developers use open source software.
Publication
12/03/2024
DGA: European data strategy for data intermediation services takes shape
Data intermediation services play a key role in the implementation of the European strategy for data. The DGA subjects these to regulation.In addition to the Data Act, the Data Governance Act (DGA), which...
Law-Now Data Law
27/02/2024
Reusing data held by public sector bodies under the DGA
The Data Governance Act should allow data collected with public funds to be reused to benefit so­ci­ety. To­geth­er with the Data Act, the Data Governance Act (DGA) forms a key pillar of the European Commission's...
Law-Now Artificial Intelligence
26/01/2024
2023 in Data Protection
Our article looks back at the developments in data protection law that took place in 2023. We also look ahead to data (protection) law in 2024.It is almost impossible to look back at the big issues in...
Law-Now Data Protection Law & IT Security Law
25/01/2024
News from the CJEU on GDPR compensation
The CJEU clarifies the requirements under Art. 82 GDPR. In addition, further CJEU rulings of practical relevance are pending.At the end of 2023, the European Court of Justice (CJEU) issued several rulings...
Law-Now Data Protection Law & IT Security Law
15/01/2024
An overview of the Data Act
The Data Act is intended in particular to promote the flow and use of data. This article provides an overview.On 27 Novem­ber 2023, the Data Act was adopted by the Council of the European Union after...
Law-Now Data Law
05/12/2023
CMS advises VisionAI on five million euro seed financing round
Berlin - The Bielefeld-based start-up VisionAI has successfully completed a seed financing round. The financing round was led by venture capitalist HV Capital. Well-known business angels also invested...
News
11/09/2023
Webinar - The EU Data Act: What You Need to Know
On 27 June 2023, the EU reached an agreement on the new EU Data Act, a comprehensive new data legislation that will introduce far-reaching rules on access to and use of data in the EU. The EU Data Act aims to boost the EU's data economy by unlocking industrial data, optimizing its accessibility and use, and fostering a competitive and reliable European cloud market.
Event Digital Regulation
Load more articles