Criminal Compliance und Datenschutz im Konzern

This thesis discusses the data protection requirements that apply to corporate compliance departments of international corporate groups based in Germany and provides practical solutions with regard to data protection requirements. Besides reviewing individual compliance measures with respect to their legitimacy on data protection requirements, it examines the effects of intra-group data transfers in the absence of a group privilege and discusses the additional requirements for inter-company transfers abroad. The thesis examines the current legal situation pursuant to the German Federal Data Protection Act (BDSG). Moreover, it addresses in detail and critically evaluates the new legal situation in accordance with the validity of the General Data Protection Regulation (GDPR) and the new BDSG 2017. The author wrote this thesis extra-occupationally in cooperation with an international corporate group and is now working as an attorney in the field of data protection law.