OUR FOCUS - SPECIALISATIONS
In the increasingly complex everyday life of a company, legal topics overlap and continuously raise a wide variety of questions. Therefore, it is not only the subject area that is important, but also the expertise for practical application and implementation in a wide range of industries.
Piltz Legal has particular expertise in advising and assisting companies as well as public authorities and institutions. Our advice focuses on topics related to digitalisation, data protection, IT security and law, as well as contract law issues in international trade and distribution.
Our focus is on advice, support and preventive positioning, but also on defence in administrative and data protection law proceedings. We see our task as clarifying issues for companies in a practical manner and identifying and minimising legal risks.
ECJ ruling on VIN and general aspects of the term 'personal data'
The consequences of the ECJ's decision in Case C-319/22 (also referred to as the ‘Scania case’) of November 9, 2023 will certainly be discussed in the data protection scene for a long time to come. It is already visible that the judgment creates big waves in the automotive industry and related sectors, but also in the data protection community in general. However, it seems doubtable whether this is justified or whether essentially the same aspects as before the decision must be taken into account when clarifying the question of the existence of personal data. In the exact case dealt with by the ECJ, it will first be decided by the Regional Court of Cologne whether the VIN is indeed personal data for vehicle manufacturers and independent operators. The ECJ ruling itself does not yet provide a direct and unambiguous answer
Advocate General at the CJEU: Concerning the appropriateness of technical and organisational measures and compensation for non-material damages in the event of a hacker attack
Advocate General at the Court of Justice of the European Union (CJEU), Giovanni Pitruzzella, published his opinion in case C-340/21 on 27. April 2023 regarding the conditions for compensation for non-material damages and the burden of proof for the appropriateness of technical organizational measures (TOMs) under Art. 32 GDPR in connection with a hacker attack.