Data protection criminal law


Data is the raw material of the 21st century. While Big Data has become a catchphrase and data has become an essential asset – "the new oil" – data protection is a new area that is particularly important to European legislators.

The European General Data Protection Regulation (GDPR) poses major challenges for companies. It is binding for all companies in the European Union. Originally planned as a standardisation of European data protection law, the GDPR contains a multitude of rights for the consumer. Companies of any kind, beyond the internet industry, are obliged to implement the new regulations. Regulations include e.g. the appointment of a data protection officer and various information and documentation rights for customers.
There is a risk of severe penalties, as national supervisory authorities have to impose fines for certain data protection infringements. These sanctions can be severe. Of particular note is the introduction of corporate liability, under which fines are calculated on the basis of total group sales - with fines of up to EUR 20 million or, in the case of companies, up to 4 percent of total worldwide sales.


In this complex legal, good advice is important. This includes the connection of the provisions of data protection law with the latest developments of the authorities in respective countries.

We provide services in data protection criminal law across a range of matters, including:

  • Consulting and development of compliance systems to ensure compliance with national and European data protection law;
  • Identification of risk areas;
  • Advice on dealing with authorities, in particular with regard to measures such as fines and prohibitions;
  • Conflict resolution, including criminal defence and representation in proceedings under data protection criminal law.

Contact Person Picture

Alexander von Chrzanowski

Associate Partner

+49 3641 4035 30

Send inquiry

Deutschland Weltweit Search Menu