Home / Insight / GDPR


General Data Protection Regulation

Back to Data protection

The European General Data Protection Regulation (GDPR) has significantly increased the compliance requirements in relation to data protection law. With effect from 25 May 2018, companies throughout Europe and those that process the personal data of EU citizens had to rethink their handling of personal data and change their internal processes accordingly. Since then, processing of personal data within companies has had to comply with the GDPR.

CMS legal advice – mastering GDPR requirements in practice

The CMS data protection team offers clients legal advice on all aspects of the GDPR and related data protection issues. Since the start of 2016, when the countdown began for the GDPR’s entry into force, we have supported companies from across all sectors on a range of projects, both national and international, helping them to prepare for and implement the General Data Protection Regulation. We continue to provide them with dependable legal advice around the GDPR.

In all GDPR compliance matters, our experts on data protection law work closely with in-house legal departments, data protection officers and compliance officers, as well as IT security departments. Together, we ensure that GDPR-compliant data protection management is integrated effectively into all business processes, delivering outstanding compliance thanks to best-in-class legal advice on the GDPR.

GDPR – the next stage: looking ahead to the ePrivacy Regulation

Corporate data protection compliance could soon face even tougher requirements than those imposed by the GDPR, due to the upcoming implementation of the ePrivacy Regulation. It was originally intended to enter into force along with the GDPR, but was postponed several times due to a lack of consensus within the EU. A key aspect of the ePrivacy Regulation are its rules on online tracking.

Further information on the ePrivacy Regulation and registration for our free newsletter can be found here.

GDPR risk: fines for breaching data protection rules

While concerns about a huge wave of warning notices due to breaches of the GDPR have not been realised, the authorities have initiated several GDPR-related summary proceedings in recent months. This shows that any breach of GDPR data protection rules could have serious consequences for your company.

As part of our comprehensive legal advice on the GDPR, we alert companies to the possible risk of fines at a very early stage. We support them in establishing compliance with the GDPR in their operating procedures and processes and continuously monitoring compliance with the rules, with the aim of avoiding GDPR fines.

More information on the risk of fines and the schedule of fines for data protection infringements can be found in the CMS Enforcement Tracker. 

CMS Enforcement Tracker
Data Law Nav­ig­at­or | Ger­many
In­form­a­tion on Data Pro­tec­tion and Cy­ber Se­cur­ity laws...


Show only
08 May 20
Data Law Nav­ig­at­or | Over­view
In­form­a­tion on Data Pro­tec­tion and Cy­ber Se­cur­ity laws...
April 2020
Check­list M&A and GDPR