Blog

13
Mar
von
Dr. Thomas Helbing

The Data Protection Authority for the German federal state of Schleswig-Holstein ("Unabhängiges Landeszentrum für Datenschutz - ULD", the "DPA") has published in June 2010 a paper about cloud computing under German data protection law. The most doubtful statement is that the usage of clouds outside the EU might be in violation of German data protection law.

In this analysis I give an overview over some statements of the paper, explain the legal background and analyze the DPA's position.

26
Mar
von
Dr. Thomas Helbing

On 5 February 2010 the Commission of the European Union (EU) has updated the set of standard contractual clauses for the transfer of personal data to processors in non-EU countries. The old clauses are repealed with effect from 15 May 2010.

24
Mar
von
Dr. Thomas Helbing

This post contains suplementary information to Thomas Helbing's presentation "Data Protection Law Requirements to Cloud Computing Agreements in the European Union" of 24 March 2010 at the CloudSlam 2010 Conference.

02
Feb
von
Dr. Thomas Helbing

The amended German data protection law obliges parties to data processing agreements to include into their contracts clauses on breach notifications, audit rights, subcontractingand a couple of other aspects. Nonconforming contracts can trigger administrative fines of up to € 50,000. Agreements already in place should be reviewed and policies implemented to ensure the compliance of future contracts.

Saving...