About Us

Services

Worldwide At Home

Careers

DE

EN

Contact Us

Contact Us

Contact Us

Contact Us

Contact

Contact

Expertise

Data Protection Law

Our Services

Employment Law

Occupational Pension Schemes

Data Protection Law

EU Regulatory & Compliance

Corporate Law

Trade & Distribution Law

Real Estate

International Tax Advisory

International Business Law

IT & Cyber Security Law

M&A and Joint Ventures

Succession Planning

Private Equity & Venture Capital

Litigation & Dispute Resolution

Transport Law

Data Protection


Data protection is not mere formality — it is a matter of governance, risk management, and trust.

We advise companies in a pragmatic and implementation-focused manner on the introduction, development, and defence of data protection structures — from GDPR compliance to dealings with supervisory authorities and the management of security incidents.

How can data protection be implemented efficiently and in a legally compliant way? How can it be embedded as an integral part of your quality and compliance system?


How We Support You


  • GDPR compliance and governance

  • External data protection officer support and organisational advisory

  • Data protection audits and training

  • IT forensics

  • Internal investigations and interfaces with employment law and compliance


Key Areas of Advice


GDPR Compliance and Governance


How can your organisation become data protection compliant without slowing down its core business?

The General Data Protection Regulation places significant demands on organisations, processes, and documentation. We support you in implementing these requirements in a legally sound and practical manner.


  • Design and optimisation of data protection management systems

  • Drafting and review of privacy notices, data processing agreements, and internal policies

  • Advice on technical and organisational measures (TOMs)

  • Ongoing support and compliance auditing


In cooperation with DGD Deutsche Gesellschaft für Datenschutz GmbH, we offer integrated solutions that align legal, organisational, and operational requirements.


External Data Protection Officer Support and Organisational Advisory


How can data protection be effectively embedded within your organisation?

We advise and support external data protection officers for mid-sized companies as well as public authorities. Data protection only works when it is understood and applied across all levels of the organisation.


  • Advisory support and sparring for external data protection officers

  • Awareness building for management and senior leadership

  • Training for specialist departments and employees

  • Establishing clear responsibilities and escalation channels


Data Protection Audits and Training


How can you demonstrate data protection compliance internally and externally?

Regular data protection audits are a key control measure under the GDPR. They create transparency, provide documentation, and strengthen legal certainty.


  • Regular internal data protection audits

  • Documentation of compliance with legal requirements

  • Preparation for audits and reviews by supervisory authorities

  • Data protection training for employees on a regular and event-driven basis


New employees can be introduced in a structured way to data confidentiality obligations, while departing employees can be removed from relevant processes in a data-protection-compliant manner.


IT Forensics


How should your organisation respond to cyberattacks, suspicious incidents, or internal investigations?

Cyberattacks, phishing, and data theft can cause significant economic damage. Modern IT forensics makes it possible to reconstruct deleted or manipulated data and establish a reliable basis for decision-making.


  • Forensic analysis of IT systems and data carriers

  • Investigation of data protection and security incidents

  • Support with internal investigations

  • Preservation of evidence for employment law or criminal law proceedings


Particularly in employment disputes or cases involving suspected digital offences, forensic findings can be decisive — including in exonerating those accused.


Internal Investigations and Interfaces with Employment Law and Compliance


How can data protection be used as a strategic advantage?

Data protection is a core element of modern corporate governance. When properly embedded in business processes, it strengthens trust among clients, business partners, and employees — and clearly differentiates your organisation from competitors.


We support you in:


  • integrating data protection sustainably into your business processes

  • clearly defining responsibilities

  • identifying and minimising risks at an early stage

  • establishing data protection as part of your wider compliance and governance framework


Our Full-Service Approach


Data protection is about managing interfaces: IT, employment law, compliance, corporate law, and, in international settings, cross-border requirements. We take these interdependencies into account and, where needed, coordinate with external data protection officers, IT specialists, and other advisors.


You benefit from:


  • clear and practical advice without overregulation

  • effective implementation instead of paper compliance

  • structured project management and clearly defined responsibilities

  • advice focused on risk minimisation, growth, and governance




Contact


Ulrich Baumann - Partner
+49 89 23 23 73 6-16
ulrich.baumann@oikon.law

Contact

Book your first call with us!

Get in Touch

Get in Touch