News

Things to know about data protection

Wave as graphic

Categories

Reset filter
Businessman use pen drawing shield hud. the importance of insurance in the digital age.
© Garun Studios / stock.adobe.com | #625054486

Unencrypted transmission of health data

The Spanish supervisory authority Agencia española protección datos (AEPD) imposed several fines on a pharmacy in Catalonia. The pharmacy had accessed the health data of nursing home residents without legal basis...

Read article

Enforcement Data Security
Cyborg hand holding a Contactless credit card payment concept 3d rendering
© Production Perig / stock.adobe.com | #230372126

Essential Insights: Automated Decisions, GDPR & the EU AI Act

Hamburg sets a precedent for automated decisions. A company in Hamburg was fined ( 492,000 EURO ) for rejecting credit applications through fully automated algorithms without proper explanation or human review.

Read article

Enforcement General Obligations Data Security
Cybersecurity concept, hacker accessing personal data, network security, data protection, digital crime, dark web, internet privacy, cyber attack, artificial intelligence, online fraud.
© khunkornStudio / stock.adobe.com | #1547998447

Regular monitoring and updating of the Technical and Organizational Measures

The UK Information Commissioner's Office (ICO) has fined the service provider Capita £14 million. The reason: inadequate security measures, which led to a massive hacker attack in March 2023.

Read article

Enforcement Data Security
DSA (Digital Services Act) introduced by the European Union. New rules for online safety, content moderation, and platform transparency.
© Sidney vd Boogaard / stock.adobe.com | #1426893422

European Data Protection Board publishes guidelines on the interaction of European rules on digital and data protection law

The European Data Protection Board has published guidelines on the interaction of the Digital Services Act (DSA) and the General Data Protection Regulation (GDPR) on 12 September 2025.

Read article

General Obligations Data Security
Cookie banner box with the heading “We use cookies” and two buttons of the same color, ‘Accept’ and “Decline.”
© Generated with AI / chatgpt.com

Reject All” Must Be As Easy As “Accept All” – Even for Non-EU Websites

A German court ruled in March 2025 that cookie consent banners must present a “Reject All” button as clearly and prominently as “Accept All” – and this applies to any website targeting users in the EU, regardless of where the company is based.

Read article

Cookies Consumer Rights Data Security
ecommerce concept with a person using a smartphone and laptop, online shopping cart on a virtual screen, showcasing internet store transactions, online
© CinimaticWorks / stock.adobe.com | #1002576316

Advocate General Clarifies Online Marketplace Liability in Data Misuse Case

On February 6, 2025, Advocate General Maciej Szpunar of the Court of Justice of the European Union (CJEU) delivered an opinion in Case C-492/23, clarifying the liability of online marketplace operators concerning...

Read article

Data Security
AI cyber security or technology scam alert concept. Businessman showing data protection or warning about using AI technology to access malicious software
© PB Studio Photo / stock.adobe.com | #948521932

CNIL Guideline – AI Systems and the GDPR

As artificial intelligence (AI) continues to reshape industries, regulatory bodies are tightening their oversight to ensure data protection remains a priority. In response, France’s data protection authority, CNIL, has released...

Read article

Data Security
data transfer concept, internet server connection
© Song_about_summer / stock.adobe.com | #459460758

DPF feedback period – rewieving the functioning of the cross-border agreement on data transfer

Since the GDPR is effective, data transfer from EU citizens to third countries has been a challenge for states that are not explicitly declared as secure by the EU Commission under an adequacy decision.

Read article

Data Security

Almost EUR 14mn for illegal data transfer of cybersecurity giant

The importance of data protection can be hard to grasp for not only individuals but also companies.

Read article

Data Security

Privacy settings

We use cookies on our website. Some of them are essential, while others help us improve this website and your experience.

In this overview you can select and deselect individual cookies of a category or entire categories. You will also receive more information about the cookies available.
Group essential
Name Matomo
Technical name
Provider
Expire in days 72
Privacy policy
Use Use without cookies
Allowed
Group external media
Name Calendly
Technical name __cf_bm,__cfruid,OptanonConsent
Provider Calendly LLC
Expire in days 365
Privacy policy
Use To arrange appointments via the provider Calendly
Allowed
Name Contao CSRF Token
Technical name csrf_contao_csrf_token
Provider Contao
Expire in days 0
Privacy policy
Use Serves to protect the website from cross-site request forgery attacks. After closing the browser, the cookie is deleted again.
Allowed
Name Contao HTTPS CSRF Token
Technical name csrf_https_contao_csrf_token
Provider Contao
Expire in days 0
Privacy policy
Use Serves to protect the encrypted website (HTTPS) against falsification of cross-site requests. After closing the browser the cookie is deleted again
Allowed
Name PHP SESSION ID
Technical name PHPSESSID
Provider Contao
Expire in days 0
Privacy policy
Use PHP cookie (programming language), PHP data identifier. Contains only a reference to the current session. There is no information in the user's browser saved and this cookie can only be used by the current website. This cookie is used all used in forms to increase usability. Data entered in forms will be e.g. B. briefly saved when there is an input error by the user and the user receives an error message receives. Otherwise all data would have to be entered again
Allowed
Privacy Policy | Privacy Policy