Cyber security is one of the key issues that has a significant influence on the digital transformation process. With each new media report on hacks and data theft, the pressure mounts on companies, governments and supervisory authorities. In addition to technical security measures, the “right” organisation and clear rules of conduct for day-to-day work and crisis situations are crucial for dealing with the wide range of threat scenarios.
From a legal perspective, cyber security is an interdisciplinary topic in connection with which a number of laws must be taken into account. These include more general regulations such as the Telemedia Act, the Telecommunications Act or the General Data Protection Regulation, as well as numerous special laws such as the Act on the Federal Office for Information Security, the Atomic Energy Act and the Energy Industry Act. The Banking Act or the Fiscal Code are also relevant for cyber security.
Gleiss Lutz’s full service approach comes into play here in particular: Lawyers from different legal areas – from IT to employment and data protection, compliance, antitrust, banking and finance through to tax law – work hand in hand on projects in connection with IT, data and network security. We help companies to develop tailor-made cyber security policies and establish cyber security-related risk assessment and preventive measures as fixed components of their compliance systems. We draw up and negotiate outsourcing, housing, hosting, cloud computing as well as SaaS agreements, in particular in the areas relevant for security. We are particularly experienced when it comes to the legal assessment and legal protection of critical infrastructures. We represent our clients vis-à-vis the supervisory authorities as well as in connection with possible violations of security regulations and the associated liability issues.