Further expansion of competence in the field of IT security law consulting at Piltz Legal
As part of our consulting strategy, we at Piltz Legal are continuously expanding our expertise in the area of IT security law. When advising our clients, it is important for us not only to provide specialist legal know-how, but also to be able to speak the language of IT.
We are therefore pleased that Dr. Carlo Piltz has successfully completed the certificate course for Business Continuity Manager (BCM) according to ISO 22301, ISO 27031 and BSI IT-Grundschutz at Bitkom Akademie. Previously, Johannes Zwerschke had already successfully acquired certification as an IT Security Officer (ITSiBe) / Chief Information Security Officer (CISO) in accordance with ISO/IEC 27001/27002 and BSI IT-Grundschutz.
The expertise he has acquired enables us to provide effective support, particularly in time-critical situations that are sensitive for clients, such as attacks on IT systems and operational disruptions.
News
ECJ ruling on VIN and general aspects of the term 'personal data'
The consequences of the ECJ's decision in Case C-319/22 (also referred to as the ‘Scania case’) of November 9, 2023 will certainly be discussed in the data protection scene for a long time to come. It is already visible that the judgment creates big waves in the automotive industry and related sectors, but also in the data protection community in general. However, it seems doubtable whether this is justified or whether essentially the same aspects as before the decision must be taken into account when clarifying the question of the existence of personal data. In the exact case dealt with by the ECJ, it will first be decided by the Regional Court of Cologne whether the VIN is indeed personal data for vehicle manufacturers and independent operators. The ECJ ruling itself does not yet provide a direct and unambiguous answer
Advocate General at the CJEU: Concerning the appropriateness of technical and organisational measures and compensation for non-material damages in the event of a hacker attack
Advocate General at the Court of Justice of the European Union (CJEU), Giovanni Pitruzzella, published his opinion in case C-340/21 on 27. April 2023 regarding the conditions for compensation for non-material damages and the burden of proof for the appropriateness of technical organizational measures (TOMs) under Art. 32 GDPR in connection with a hacker attack.
Further expansion of competence in the field of IT security law consulting at Piltz Legal
As part of our consulting strategy, we at Piltz Legal are continuously expanding our expertise in the area of IT security law. When advising our clients, it is important for us not only to provide specialist legal know-how, but also to be able to speak the language of IT.