Data Protection Law in Austria

The General Data Protection Regulation (GDPR), which has been directly applicable in all member states since 25 May 2018, forms the foundation of Austrian data protection law together with the national Data Protection Act. The aim is to protect natural persons when processing personal data and to ensure the free movement of data within the EU. The regulations therefore provide for a large number of obligations for controllers and processors - from lawful processing to documentation and information obligations to reporting data breaches (data breaches). Violations can be penalised with severe fines.

What we do: Our expert has extensive experience in advising companies, authorities and public bodies in particular on all matters relating to data protection law. We support our clients in the implementation of GDPR-compliant processes, prepare and review data protection information (e.g. on websites) and represent them before the data protection authority and in administrative court proceedings. Among other things, we provide support with data protection impact assessments, the notification of data breaches to the data protection authority and in the event of requests for information or cancellation by data subjects.