


Data protection law: What are TOM?
In data protection law, the abbreviation "TOM" stands for "technical and organizational measures" in the area of data security. These serve to protect personal data. You can find out what measures are available here and what your company should bear in mind here.....
Data subject rights - How quickly must I respond?
The GDPR provides data subjects with a number of rights under data protection law that require a response from the respective company. But how quickly do you as a company actually have to respond to a request from a data subject? Which...
Exam: Data protection officer in operational practice
The appointment of a data protection officer is mandatory for many companies. But how does the data protection officer actually perform in practice once he or she has been appointed? Among other things, this is also the content of a current audit of the European...
EU-U.S. Data Privacy Framework
On July 10, 2023, the new EU-U.S. Data Privacy Framework (DPF) was adopted as the successor to the Privacy Shield. The DFP thus represents an important development to address transatlantic data privacy challenges. Learn...
3 things you need to know about email archiving
Nowadays, a large part of business communication takes place via e-mail. As great as the advantages of digital communication are, it is important to remember that the handling of stored or at least storable data involves a certain...
5 shortcomings of German data protection after 5 years of the GDPR
The GDPR has been in force as the European standard for data protection since May 25, 2018. However, there are still some shortcomings, especially in the enforcement of the GDPR by German authorities. Find out here what the five shortcomings are in German data protection after...
Apps for health - What does data protection say?
Digitization is not stopping at the health and care sector. It is possible that digital health and care applications could be the solution to the challenges facing the German health and care system. However, these...
Where to put data on immunization status?
The corona pandemic made it necessary for many employers to record the vaccination status of employees. Particularly in the area of facility-based mandatory vaccination, this also had to be documented and proven if necessary. With the end of the...
Using Microsoft 365 in a privacy-compliant way?
The data protection risks of Microsoft 365 have long been known. Nevertheless, many companies continue to use the software service. Find out what the DSK's "Working Group for Microsoft Online Services" has come up with on this topic here. DSK on Microsoft 365 The...
Electronic health record as an opt-out?
The electronic patient record (ePA) has been available since January 1, 2021, but so far only as an opt-in solution (application solution). How an opt-out solution (objection solution) can be designed in the future is now being examined. What is the electronic...