{"id":65822,"date":"2018-02-22T11:36:01","date_gmt":"2018-02-22T09:36:01","guid":{"rendered":"https:\/\/www.lhr-law.de\/?page_id=65822"},"modified":"2023-11-22T15:38:16","modified_gmt":"2023-11-22T13:38:16","slug":"lhr-guide-gdpr","status":"publish","type":"page","link":"https:\/\/www.lhr-law.de\/en\/law-firm\/downloads\/lhr-guide-gdpr\/","title":{"rendered":"LHR Guide: GDPR"},"content":{"rendered":"
\n
\n

LHR Guide: Negative Rating<\/h1>\n<\/p>\n

The 5 biggest mistakes and the 5 best ways to react<\/h2>\n

Download now for free<\/a><\/p><\/div>\n<\/p><\/div>\n

\n
\n

LHR Guide: General Data Protection Regulation (GDPR)<\/h1>\n

How to avoid fines and warnings – A guide in 16 points<\/h2>\n

Download now for free<\/a><\/p><\/div>\n<\/p><\/div>\n

\n
\n
\n
\n

A data protection breach rarely comes alone – and on 25.5.2018 the GDPR<\/h2>\n

A must for all companies that come into contact with personal data: preparing for the new rules of the GDPR.<\/p>\n

Violations may result in fines<\/strong> of up to \u20ac 20,000,000 or up to 4 % of the total annual turnover achieved worldwide and Warning letters<\/strong> and Injunctions<\/strong> by consumer associations and competitors.<\/p>\n

We will show you a overview<\/strong> about the new regulations and 16 points<\/strong>, that you have to observe.<\/p>\n

\n
\n

1. general, goals, principles<\/h3>\n<\/div>\n
\n

You will learn everything about the objectives and principles of the Regulation, e.g. protection of personal data and free movement of personal data.<\/p><\/div>\n

\n

2. the core of the GDPR: What is personal data?<\/h3>\n<\/div>\n
\n

What many do not know: Any kind of information about a natural person can be a personal data. This applies, for example, to the color of one’s hair, information about which hairdresser one goes to, and the date of the last haircut.<\/p><\/div>\n

\n

3. processing prohibition with permission reservation<\/h3>\n<\/div>\n
\n

In principle, the GDPR prohibits the processing of personal data. An exception is only made to this prohibition insofar as the processing of personal data serves the fulfillment of a contract or pre-contractual measures, as long as this is done at the request of the person concerned, or consent is given.<\/p><\/div>\n

\n

4. technical data privacy<\/h3>\n<\/div>\n
\n

According to Art. 24 DSGVO<\/a> you have to ensure data protection by technical and organizational measures.<\/p><\/div>\n

\n

5. documentation requirements<\/h3>\n<\/div>\n
\n

From now on, you must document all your data processing activities. If applicable, you may be required to prove that you have complied with the requirements of the GDPR (accountability obligation).<\/p><\/div>\n

\n

6. big data analytics<\/h3>\n<\/div>\n
\n

In the future, you will generally require consent for Big Data analytics.<\/p><\/div>\n

\n

7. are there any commissioned data processors (CDP)?<\/h3>\n<\/div>\n
\n

What is new is that the GDPR already prescribes certain content requirements for the contract between you and any CDP.<\/p><\/div>\n

\n

8. is a data protection officer (DPO) necessary?<\/h3>\n<\/div>\n
\n

The requirements for the appointment of a data protection officer change significantly as a result of the GDPR.<\/p><\/div>\n

\n

9. the information requirements \/ the privacy policy<\/h3>\n<\/div>\n
\n

With the GDPR, the information obligations for entrepreneurs are significantly expanded.<\/p><\/div>\n

\n

10. the right to be forgotten<\/h3>\n<\/div>\n
\n

The right to be forgotten is a new feature of the GDPR. Under certain conditions, all data of the data subject must be deleted.<\/p><\/div>\n

\n

11. the right to data portability<\/h3>\n<\/div>\n
\n

Users can now take their data from your company with them when they move to another company.<\/p><\/div>\n

\n

12. data transfer to a third country<\/h3>\n<\/div>\n
\n

With regard to cross-border data transfer to a third country, there are a few points to consider.<\/p><\/div>\n

\n

13. the obligation to report data breaches<\/h3>\n<\/div>\n
\n

Any breach of the protection of personal data must be reported to the supervisory authority within a period of 72 hours.<\/p><\/div>\n

\n

14. the one-stop store principle<\/h3>\n<\/div>\n
\n

If cross-border data processing occurs in your company, you no longer have to deal with several data protection authorities. Thanks to the one-stop-shop principle, only the lead supervisory authority is your contact.<\/p><\/div>\n

\n

15. special obligations for employers \/ employee data protection<\/h3>\n<\/div>\n
\n

With regard to employee data protection, the GDPR contains an opening clause that allows member states to create their own statutory regulation.<\/p><\/div>\n

\n

16. consequences of violations<\/h3>\n<\/div>\n
\n

Violations may result in fines of up to \u20ac20,000,000 or up to 4% of total annual global sales, as well as warnings and injunctions from consumer associations and competitors.<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"

LHR Guide: Negative Rating The 5 biggest mistakes and the 5 best ways to react Download now for free LHR Guide: General Data Protection Regulation (GDPR) How to avoid fines and warnings – A guide in 16 points Download now for free A data protection breach rarely comes alone – and on 25.5.2018 the GDPR […]<\/p>\n","protected":false},"author":48,"featured_media":37914,"parent":32348,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"landingpage.php","meta":{"content-type":"","footnotes":""},"class_list":["post-65822","page","type-page","status-publish","has-post-thumbnail","hentry"],"_links":{"self":[{"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/pages\/65822","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/users\/48"}],"replies":[{"embeddable":true,"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/comments?post=65822"}],"version-history":[{"count":1,"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/pages\/65822\/revisions"}],"predecessor-version":[{"id":65823,"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/pages\/65822\/revisions\/65823"}],"up":[{"embeddable":true,"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/pages\/32348"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/media\/37914"}],"wp:attachment":[{"href":"https:\/\/www.lhr-law.de\/en\/wp-json\/wp\/v2\/media?parent=65822"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}