Data Privacy Consulting for International Clients

Our data privacy consulting guides you through the applicable legal rules in Germany and the EU and ensures your company’s compliance with the rules of the EU General Data Protection Regulation (GDPR) and other specific privacy laws.
In the past years, we have been working actively with companies and institutions introducing new business models to the EU market, e.g. in the health sector, or in the advertising industry.

For companies outside the EU, we also offer services as a European representative or European DPO according to GDPR. Contact us now! 

We offer different consulting packages, including an analysis of the existing level of data privacy in your company and identify potential lacks and risks. Our Clients receive a detailed report of the check-up results as well as concrete recommendations to improve the existing level of compliance, and a suggestion for an individual data protection concept. Our concept is built on the conviction that a high level of data privacy facilitates the realization of new business models and actively contributes to the success story.

Our data privacy consulting is based on the Client’s individual needs and may include the following topics:

  • the use of cloud services including questions of appropriate Technical and Organizational Measures
  • the processing of sensitive data (health data, social data)
  • IT security law, in particular in sectors of critical infrastructure (e.g. health, transport, IT & telecoms)
  • Identifying options for privacy certifications & giving a Legal Expert Opinion for the EuroPrise Privacy Seal
  • rights to transfer and sell data
  • “ownership” questions of data
  • anonymization and pseudonymization of personal data
  • data processing agreements (DPAs) and joint controller agreements
  • data from website users (tracking data/webanalytics)
  • data privacy requirements for online marketing
  • the use of employee data
  • solutions for data protection audits
  • the use of internet and email for private purposes
  • the use of private hardware for professional use (Bring Your Own Device)
  • prospective changes in the legal situation (e.g. envisaged EU E-Privacy Regulation)
  • communication with regulatory authorities and respective proceedings and controls, if necessary

If you have any questions please contact me:

Dr. Jana Jentzsch

Jana is a bar-certified lawyer for information technology law and CIPP/E certified by IAPP.
She advises international clients in EU data privacy law.

Call us: +49 40 22 86 83 86 0  or e-mail us

Jana Jentzsch studied law at the Universities of Bonn, Milan (Italy) and Cologne. During her studies, she worked as a freelance journalist for a publishing house in Bonn. After passing the First State Examination, she earned a Master of Laws (LL.M.) degree in International Air and Space Law from the University of Leiden (Netherlands). As part of the LL.M. degree, she completed traineeships at the Permanent Court of Arbitration in The Hague and the European Space Agency in Paris. Jana wrote her doctoral thesis in English at the University of Cologne under the supervision of Prof. Dr. Stephan Hobe („Satellite Imagery for Verification and Enforcement of Public International Law“).

During the clerkship for the bar exam, Jana worked in the business and press departments of the German Embassy in Washington D.C. After the Second State Examination in 2005, she was admitted to the Frankfurt bar. Jana worked as an attorney at the international business law firm Lovells (now merged to Hogan Lovells LLP) in Frankfurt in the practice group technology, media, telecommunications (TMT). Subsequently, she moved to Hamburg and worked in the prominent Hamburg media law firm Prinz Neidhardt Engelschall. During this time, Jana represented companies and individuals in high-level media law disputes.

Jana is particularly interested in cases which involve software licensing, software maintenance, software projects and data processing.

2023

“Legally well equipped for the SAP S/4 HANA conversion, CC Competence Center Summit E/3 Salzburg, June 01, 2023

“Cloud software and export control law”, SACS Leipzig, September 13, 2023

“Legally well equipped for the SAP S/4 HANA conversion, USU Workshop at DSAG Bremen, September 18, 2023

2022

“Specific legal challenges of cloud software licensing”, SACS Congress, Frankfurt, September 21, 2022.

2020

“Setting up and implementing software projects successfully” (together with Dr. Daniel Taraz), Software Asset Management Strategies (SAMS), Berlin, March 03, 2020.

“Legal challenges in the migration to SAP S/4 HANA”, Webinar Snow for SAP Forum, July 14, 2020

2019

“Legal challenges in the S/4 HANA migration process”, Snow for SAP Forum, Hamburg, November 20, 2019

“Pitfalls in licensing Oracle via SAP”, DOAG Conference Nuremberg, November 19, 2019

“Oracle Java: What’s new? And is Oracle allowed to do that?”, with Michael Paege, DOAG Conference Nuremberg, November 19, 2019

“Effects of the GDPR on Oracle Cloud offerings”, publication in Red Stack Magazine, April 2019; p. 8-10

2018

“The new SAP licensing policy on digital access – legal considerations”, E-3 Magazine Forum, Heidelberg, September 18, 2018

Author in Intveen/Gennen/Karger “Handbuch des Softwarerechts”, here § 2 Projektvorgehensmethoden, Projektorganisation (with Sascha Kremer) and § 8 “Beraterverträge bei IT-Projekten” (with Dr. Mathias Schneider), Deutscher Anwaltverlag, Bonn, 2018.

2017

“Indirect use of SAP software from a legal perspective”, Snow for SAP Forum, Hamburg, June 16, 2017

2016

“Legal foundations of license optimization”, VOICE, Baden-Baden, 12 October 2016

“Legal Implications of SAP Indirect Usage”, Stockholm, April 2016

2015

“Requirements for legally compliant cloud computing”, Hamburg, April 2015
“Legal foundations of a license audit”, Stuttgart, March 2015
“The scope of application of SAP’s General Terms and Conditions”, Cologne, March 2015
“SAP: Legal principles of measurement and indirect use”, Berlin, February 2015
“Used licenses in the audit”, Berlin, February 2015

2014

“Data protection & data security liability trap”, Hamburg and Düsseldorf, November 2014
“License Optimization from a Legal Perspective”, Stockholm, October 2014
“Legal foundations of a license audit”, Munich, May 2014
“Legal framework for used software after the ECJ ruling of 03.07.2012”, Leverkusen, May 2014
“Current legal issues in dealing with used software”, Berlin, February 2014

2013

“Legal framework for used software after the ECJ ruling of July 3, 2012”, Hamburg and Cologne, November 2013
“Data protection – important topics for management”, Hamburg, September 2013
“Bring Your Own Device (BYOD) – Legal aspects”, Hamburg, September 2013

IT-Security

In an increasingly digitalized world, protecting data and systems is more important than ever. At MARAIT, we understand the importance of robust IT security and specialize in helping companies protect themselves from the ever-growing threats, especially from cyberspace. There are a number of laws and regulations in the field of IT security, especially in connection with protecting data and ensuring the security of information technologies, which must be constantly observed. The provisions of the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) play a decisive role here.

Due to constant change, companies must always be prepared for new challenges in cyber security. The EU has also recognized this and has therefore created a range of new legislation:

  • Cybersecurity Act,
  • NIS-2-Directive,
  • CER-Directive,
  • Digital Operational Resilience Act (DORA),
  • Cyber Resilience Act (CRA) 

In view of this, it is crucial to understand the regulatory framework and to know how to reconcile it using state-of-the-art protection mechanisms. We can help you with this!

Our services/offerings include, among others:

  • Analysis of the status quo: We check whether the processes and standards you use for IT security comply with the legal requirements and which measures you need to implement to achieve legal compliance.
  • Implementation of IT security measures: We offer comprehensive legal support and advice on the selection and implementation of IT security measures in your company. In doing so, we take into account technical aspects as well as labor law and co-determination requirements. Our aim is to provide you with comprehensive legal support to ensure that your IT security measures are not only effective, but also comply with legal requirements.
  • Training and awareness-raising: We offer training and awareness-raising programs to make your employees aware of the dangers in cyberspace and enable them to practice security-conscious behaviour. After all, your own employees are often the first line of defense against cyber attacks. We also inform you about legal requirements, such as the data security requirements of the GDPR, and findings from case law.
  • Incident response: In the event of a security incident, we provide you with recommendations for action so that you are prepared to react immediately and appropriately in an emergency. Our team will also help you to investigate incidents, minimize their impact and take appropriate measures to restore security.
  • Network: If required, we work together with certified technical specialists and auditors in the field of IT security who are also authorized to carry out acceptance tests, e.g. in accordance with BSI basic protection or ISO 27001. The involvement of IT security specialists can also be useful when preparing for an audit.

Contact us via our contact form or give us a call to find out more about how we can help you strengthen your IT security and protect your company from cyber threats.

Contact us

040 / 22 86 83 86 – 0

mail@marait.de

Contactform

Neuer Wall 75
20354 Hamburg

Route

info