Home / Insight / GDPR

GDPR

General Data Protection Regulation

Go to International - The transitional period until the ePrivacy Regulation comes into effect

The European General Data Protection Regulation (GDPR) has significantly increased the compliance requirements in relation to data protection law. With effect from 25 May 2018, companies throughout Europe and those that process the personal data of EU citizens had to rethink their handling of personal data and change their internal processes accordingly. Since then, processing of personal data within companies has had to comply with the GDPR.

CMS legal advice – mastering GDPR requirements in practice

The CMS data protection team offers clients legal advice on all aspects of the GDPR and related data protection issues. Since the start of 2016, when the countdown began for the GDPR’s entry into force, we have supported companies from across all sectors on a range of projects, both national and international, helping them to prepare for and implement the General Data Protection Regulation. We continue to provide them with dependable legal advice around the GDPR.

In all GDPR compliance matters, our experts on data protection law work closely with in-house legal departments, data protection officers and compliance officers, as well as IT security departments. Together, we ensure that GDPR-compliant data protection management is integrated effectively into all business processes, delivering outstanding compliance thanks to best-in-class legal advice on the GDPR.

GDPR – the next stage: looking ahead to the ePrivacy Regulation

Corporate data protection compliance could soon face even tougher requirements than those imposed by the GDPR, due to the upcoming implementation of the ePrivacy Regulation. It was originally intended to enter into force along with the GDPR, but was postponed several times due to a lack of consensus within the EU. A key aspect of the ePrivacy Regulation are its rules on online tracking.

Further information on the ePrivacy Regulation and registration for our free newsletter can be found here.

GDPR risk: fines for breaching data protection rules

While concerns about a huge wave of warning notices due to breaches of the GDPR have not been realised, the authorities have initiated several GDPR-related summary proceedings in recent months. This shows that any breach of GDPR data protection rules could have serious consequences for your company.

As part of our comprehensive legal advice on the GDPR, we alert companies to the possible risk of fines at a very early stage. We support them in establishing compliance with the GDPR in their operating procedures and processes and continuously monitoring compliance with the rules, with the aim of avoiding GDPR fines.

More information on the risk of fines and the schedule of fines for data protection infringements can be found in the CMS Enforcement Tracker. 

CMS Enforcement Tracker
GDPR Enforcement Tracker Report 2023
A warm welcome to the fourth edition of the GDPR Enforcement Tracker Report...
Data Law Navigator | Germany

Explore more

CMS Breach Assistant

Feed

12/03/2024
DGA: European data strategy for data intermediation services takes shape
Data intermediation services play a key role in the implementation of the European strategy for data. The DGA subjects these to regulation.In addition to the Data Act, the Data Governance Act (DGA), which...
20/11/2023
Data protection and cybersecurity laws in Germany
Data protection 1. Local data protection laws and scope Data processing operations are governed by the Federal Data Protection Act (Bundes­datens­chutzge­setz – BDSG) of 30 June 2017, as last amended...
Comparable
28/03/2023
European Parliament and Council ready to start negotiations on EU Data...
In February 2022 the European Commission presented its proposal for the EU Data Act, which – if adopted - will introduce a far-reaching legal regime on access to and use of non-personal data in the...
09/09/2021
The Changing Face of Cyber Claims
A cyber insurance loss study in Continental Europe
16/08/2021
Data protection and security
Expert legal advisers
28/04/2020
Checklist M&A and GDPR
The scope of the EU General Data Protection Reg­u­la­tion (GDPR) extends to M&A transactions. Sanctions for in­fringe­ments of data protection rules include, amongst others, a fine of up to EUR 20 million...