German Companies Largely Underestimate and Fail to Comply with NIS2 Cybersecurity Directive
Many German firms unaware of and failing to meet NIS2 cybersecurity directive requirements, risking heavy penalties and cybersecurity breaches.
Data protection policy
Top stories
All data protection policy news
German Companies Largely Underestimate and Fail to Comply with NIS2 Cybersecurity Directive
Many German firms unaware of and failing to meet NIS2 cybersecurity directive requirements, risking heavy penalties and cybersecurity breaches.
German Businesses Embrace AI with Focus on Data Sovereignty and Compliance
German companies are increasingly adopting AI while focusing on data sovereignty and compliance by shifting to local and European cloud solutions amid geopolitical concerns.
Majority of Germans Support Government Restrictions on Foreign Acquisitions to Protect Digital Sovereignty
A survey shows 79% of Germans back government restrictions on foreign acquisitions, especially from Russia and China, emphasizing the need to protect digital sovereignty amid rising foreign investments in Germany.
German Companies Ramp Up Cybersecurity Investments Amid Cyberresilience Gaps
German companies are increasing investments in cybersecurity and AI-driven security, yet many face challenges in cyberresilience and backup protection.
German Companies Face Challenges in Implementing Effective GDPR Data Deletion Practices
German companies are enhancing data deletion processes to meet GDPR demands amid operational challenges, involving documented procedures and customer consent.
Germany to Enforce Stricter AI Regulations with Heavy Penalties from August 2026
Germany will enforce strict AI transparency rules and deepfake regulations from August 2026, with potential fines up to €15 million for non-compliance.
German Businesses Face Intensifying Cybersecurity Threats and Push for Digital Sovereignty in 2026
German companies in 2026 face escalating cyber threats and cloud vulnerabilities, prompting a strategic shift towards digital sovereignty and advanced resilience measures.
Germany and EU Face Geopolitical and Regulatory Challenges in Pursuit of Digital Sovereignty
Germany and the EU navigate complex geopolitical and regulatory landscapes to secure digital sovereignty against dominant global tech powers and shifting world orders.
German Companies Grapple with Shadow AI Risks Amid Rising Employee Use
Around 40% of German companies are challenged by employees secretly using private AI tools, leading to data security risks and prompting calls for technical regulation strategies.
Legal Opinion Confirms US Authorities' Access to European-Hosted Data, Urging German Government Action
A legal opinion confirms US authorities can access EU-hosted data held by US firms, prompting calls for German government to enhance digital sovereignty protections.
Germany’s Afghan Resettlement Policy Faces Criticism Amid Revoked Promises and Data Sharing Concerns
Germany’s revocation of Afghan resettlement promises and sharing of personal data with Afghan authorities prompt concerns over refugee safety and policy consistency.
Hessian Data Protection Authority Approves Microsoft 365 Use in Public Administration with Conditions
Hessian data protection authority permits Microsoft 365 use in public administration under strict data privacy conditions, ensuring legal compliance and user configuration standards.
Microsoft Introduces New GDPR Compliance Tools for German Businesses
Microsoft Germany has introduced new GDPR-focused compliance tools including the M365-Kit, Cloud Compendium, and data protection impact assessment templates to support businesses.
Germany Leads in Implementing UNESCO's Neurotechnology Ethics Guidelines
Germany is leading the national implementation of UNESCO's neurotechnology ethics guidelines, focusing on ethical standards and protections amid rapidly advancing technologies.
BSI Warns of GDPR Violations Due to Outdated Exchange Servers in Germany's Public Sector
German cybersecurity agency BSI warns that thousands of outdated Exchange servers pose GDPR compliance risks, affecting public institutions such as hospitals and schools.
Digital Minister Wildberger Criticizes Excessive Data Protection Officers and Pushes Federal Modernization Agenda
Digital Minister Karsten Wildberger criticizes Germany's surplus of data protection officers and promotes a federal modernization agenda targeting digitalization and bureaucracy reduction by 2029.
German Companies Struggle with Digital Sovereignty and Access Control Security
German companies face major hurdles in digital sovereignty and cybersecurity, with few having strategies and most lacking robust access controls, risking their competitiveness and security.
Research Data Center for Health Launches in Berlin to Boost Medical Research with Secure Data Access
The FDZ Gesundheit in Berlin has started operations, granting researchers secure access to extensive statutory health insurance data from 2009 to 2023 to drive medical research and healthcare improvements.
Germany Rejects EU's Chat Control Regulation Over Privacy and Security Concerns
Germany firmly opposes the EU's proposed chat control regulation, citing privacy and security risks that threaten encrypted communications and likely blocking the EU initiative.
New Digital Tools and Security Guidelines for German Businesses
German businesses enhance digital maturity and security with new initiatives.
German Companies Face Compliance Deadline for European Data Act
German companies must comply with the European Data Act by fully implementing it, addressing various challenges and costs involved.
Debate Intensifies in State Parliament over Police Identification and US Software Use
Niedersachsen parliament debates police anonymity and US software use.