Technology- & IT-Law

ASEAN Digital Ministerial Meeting: ASEAN to expand digital factor

4th ASEAN Digital Ministers’ Meeting 2024: The fourth ASEAN Digital Ministers’ Meeting, a conference of ASEAN member states’ ministers responsible for technology, was held in early February 2024. The ministers will discuss AI governance and regional anti-fraud issues and sign agreements to promote digital innovation and business opportunities.

The annual meeting, formerly known as the Asean Telecommunications and Information Technology Ministers Meeting, shows how Asean is constantly evolving – also with regard to the EU! You can find this article in German in our German-language blog.

Criminal Defense Liability of the management Technology- & IT-Law

Tax problems with DDP clauses and shipping from Asia to Germany

A current article in the magazine PraxisSteuerstrafrecht on the topic of criminal tax law and imports deals with customs law and, in particular, the risks of the DDP (Delivered Duty Paid) delivery condition for imports from China for online retailers. It explains how Chinese suppliers often offer customs declaration and tax payment as part of their service, which sounds tempting but carries legal and tax risks.

The complexity and pitfalls of this practice, such as changing the delivery route, the role of indirect representatives in the customs declaration and the tax consequences, are described in detail. The article makes it clear why caution is required both on the Asian side and on the German recipient side. The topic is also worth a few lines here.

Criminal Defense Liability of the management Technology- & IT-Law

Importing goods from Asia to Germany: What do you need to bear in mind?

What needs to be considered when importing from Asia, especially China or Vietnam – what are the pitfalls when importing goods from China and the Asian region? It is interesting to note that companies sometimes take a rather naïve approach to international trade.

This shows that you sometimes have to be extremely careful – our law firm used to advise clients, especially start-ups, who are dependent on importing products from Asia and China in particular, whether these are manufactured at the client’s request or supplied off the shelf.

Note: Our law firm based in Germany is only active in this area for criminal compliance and IT law, please refrain completely from inquiries regarding other products imported from Asia.


Darknet marketplace Kingdom Market closed

In an internationally coordinated operation, the server infrastructure of the illegal darknet marketplace “Kingdom Market”, which is spread across several countries, has been seized since December 16, 2023 and thus shut down.

Technology- & IT-Law

Lawyer for European IT law

Europäisches IT-Recht

Das europäische IT-Recht ist ein komplexes und dynamisches Rechtsgebiet, das sich mit der Regulierung der Informationstechnologie in der Europäischen Union (EU) befasst. Es umfasst eine Vielzahl von Themen, darunter Datenschutz, Cybersicherheit, elektronischer Handel, geistiges Eigentum und Telekommunikation.

European IT law

Lawyer for European IT law

Your lawyer for European IT law: European IT law is a complex and dynamic area of law that deals with the regulation of information technology in the European Union (EU). It covers a wide range of topics, including data protection, cyber security, e-commerce, intellectual property and telecommunications.

European IT law has a significant impact on the national IT law of the member states, as it creates a common legal framework for the digital single market in the EU. This makes it possible to draw up a fundamental legal assessment for all EU member states in selected areas of IT law at European level.

Specialist lawyer for IT law Jens Ferner (Germany) advises companies on European IT law: The Europeanization of IT law offers companies outside Europe the opportunity to clarify elementary legal issues for the extensive, economically strong EU area in advance. Especially the blatantly important areas such as data law, data protection law and IT security law are subject to Europe-wide regulations!

European IT law: basics and areas of application

European IT law is an integral part of EU law and aims to create a single digital market. It regulates the use and protection of data, the security of networks and information systems, electronic commerce and the rights and obligations of users and providers of IT services.

Some of the most important legal acts in this area are the General Data Protection Regulation (GDPR), the Directive on the security of network and information systems (NIS Directive and NIS2 Directive) and the Directive on electronic commerce. However, there are also legal acts that are not directly attributable to IT law, such as consumer law, which determine which general terms and conditions and other contractual terms and conditions are permissible.

Effects on national IT law

European IT law affects national IT law in a variety of ways. On the one hand, it obliges the member states to adapt their national law to the EU requirements. This leads to a harmonization of IT law throughout the EU, which facilitates cross-border trade and data exchange.

Secondly, it creates a common legal framework for the regulation of IT services, providing legal certainty for providers and users. Thirdly, it can act as a catalyst for reform of national IT legislation by encouraging Member States to modernize their legislation and adapt it to technological developments.

An IT law lawyer with a European focus helps to recognize the overall picture and to interpret national regulations from the outset in such a way that successful lawsuits can be avoided.

EU-wide IT law – something is coming your way …

IT law, including legal issues relating to digitalization, is high on the EU agenda in European IT law. You should be prepared, cleaning up afterwards is just more time-consuming (and therefore more expensive) than taking care of it beforehand. Today, European IT law must be at the top of every digital company’s agenda – waiting is no longer an option!

The EU’s digitalization policy has become extremely complex – and you may only be indirectly affected by IT law. We want to and will at least briefly write something about all the important topics and specialist IT lawyer Jens Ferner will of course provide advice:

  • AI Act: Artificial Intelligence Act (AI Regulation and AI Directive) [Here with us]
  • CRA: Cyber Resilience Act [Here with us]
  • CSAM: Regulation on Child Sexual Abuse Material
  • DGA: Data Governance Act und Data Act [Hier bei uns]
  • DMA: Digital Markets Act
  • DORA: Digital Operational Resilience Act
  • DSA: Digital Services Act
  • ECA: European Chips Act [Hier bei uns]
  • EPVo: ePrivacy Regulation
  • MaRisk: Minimum requirements for risk management
  • MiCA: Markets in Crypto-Assets
  • NIS2: Directive on Security of Network and Information Systems [Hier bei uns]
  • Supply Chain: Supply Chain Due Diligence Act
  • TTPF: EU-US Transparency Privacy Framework
  • Geoblocking Regulation (EU) 2018/302: Elimination of unjustified discrimination in online purchases [Here with us]
  • P2B regulation for more fairness [Here with us]
  • eEvidence-Verordnung [Hier bei uns]

Important EU legal acts in European IT law

There are several EU directives and regulations that shape national IT law. Here are some of the most important ones, although our website provides a more in-depth overview:

  1. General Data Protection Regulation (GDPR): This regulation is a central component of European data protection law. It lays down strict rules for the processing of personal data and gives citizens extensive rights in relation to their data. The GDPR has a significant impact on national IT law, as it must be implemented by all EU member states.
  2. Directive on the security of network and information systems (NIS Directive): This directive is the first EU-wide legal instrument for cyber security. It obliges Member States to develop national strategies for the security of network and information systems and to comply with a set of minimum security requirements. It is supplemented by the Cyber Resilience Act, which will have a noticeable impact on product compliance.
  3. Directive on electronic commerce (E-Commerce Directive): This directive regulates various aspects of electronic commerce in the EU, including the liability of online service providers, commercial communications and electronic contracts.
  4. Copyright Directive in the Digital Single Market: This directive aims to modernize copyright law in the EU and adapt it to the digital age. It contains provisions on the liability of online platforms for copyright-protected content and on access to works for educational purposes.
  5. Computer programs: The EU Directive on the legal protection of computer programs (Directive 2009/24/EC) is an important legal instrument that regulates the copyright protection of computer programs in the European Union. It was originally adopted in 1991 and later replaced by Directive 2009/24/EC. The Directive clarifies that computer programs are protected by copyright in their expression. This means that the source code and object code of a program are protected, but not the ideas and principles on which the program is based. The Directive also contains provisions on the rights of rightholders, including the right of reproduction, distribution and communication to the public. However, it also provides for exceptions to these rights, e.g. for copying or modifying a program for personal use or for reverse engineering for the purpose of interoperability. The EU Directive on the legal protection of computer programs has a significant impact on the national IT law of the member states, as it creates a common legal framework for the copyright protection of computer programs in the EU. It obliges the member states to adapt their national laws to the requirements of the directive in order to ensure uniform protection of computer programs throughout the EU.
  6. Directives on contracts: The Consumer Rights Directive, the Digital Content Directive and the Sale of Goods Directive shape contract law in IT law.
  7. Regulation on Consumer Protection Cooperation (CPC Regulation): This regulation lays down rules for cooperation between national consumer protection authorities in the EU, including the enforcement of consumer protection laws in the digital area.

These legal acts have a significant impact on national IT law, as they create a common legal framework for the regulation of IT services in the EU and oblige the member states to adapt their national laws to the EU regulations.

Conclusion on European IT law

European IT law plays a decisive role in shaping the digital single market in the EU. It has a significant impact on national IT law, as it creates a common legal framework for the regulation of IT services and obliges member states to adapt their national laws to EU regulations. In view of the rapid technological development and the increasing digitalization of the economy and society, it can be assumed that European IT law will continue to play a key role in shaping national IT law in the future.

Technology- & IT-Law

European platform regulation

European platform regulation is a multi-layered topic that spans several legal acts. These legal acts are of fundamental importance to IT lawyers, as they form the basis for understanding and applying the legal framework in the digital world. This is where it becomes particularly clear why IT law needs to think not only on a national level, but rather in terms of European IT law.

The following are some of the key pieces of legislation governing the regulation of platforms, websites and data in the EU.

Criminal Defense Cybercrime

EUGH: Prohibition of exploitation in case of insufficient possibility of defense

In the course of the current rulings on data retention, the EU Court of Justice (C-339/20 and C-397/20) has ruled in a further case on a certain handling in France. What appears on the surface to be a pure data retention issue turns out, on closer inspection, to be a potentially landmark decision for the German criminal justice system.

Technology- & IT-Law

GDPR: Compensation for the use of a name in advertising is measured according to license analogy

The Cologne Higher Regional Court (OLG), 15 U 3/23, has reached an interesting decision on the unauthorized use of personal data in advertising: According to the OLG, the amount of damages under the GDPR is (also) to be measured according to what is usually paid as a license fee for an advertising use. The OLG explicitly refers to the license analogy that is customary in Germany for the assessment of damages in copyright law – which is also to be applied in data protection law.

Technology- & IT-Law

Damages for Copyright Infringement in Germany: License Analogy

License analogy as the basis for calculating damages after copyright infringement: Regularly in the case of copyright infringement, someone wants to calculate damages using the so-called license analogy. The idea behind this license analogy in German law is that the infringer of a right should not be in a better position than the lawful user – and is then treated as if a proper license had been concluded, which of course must be remunerated. But how is this license measured?

In everyday life, I often encounter laypersons, but also lawyers, who obviously do not know the details of the license analogy. Rather, they tend to confuse the calculation of damages with the schematic application of some remuneration guidelines. However, this is not how it works. In the following, some explanations on the application of the license analogy in copyright law.

Labour law

Vehicle advertising: remuneration is often remuneration for work

According to the Federal Fiscal Court (BFH, VI R 20/20), remuneration paid by an employer to its employees for advertising by the employer on the license plate holder of the employee’s private car is remuneration for work if the “advertising rental agreement” concluded has no independent economic substance.