Skip to main content

General Data Protection Regulation (GDPR)

As of May 25, 2018, the General Data Protection Regulation (GDPR) will be applicable, and thereby will override existing national data protection rights, for example the current German Federal Data Protection Act (FDPA). Many of the basic rules are similar to those of the Privacy Directive from 1995. However, there are some significant changes to these principles as well as substantial new obligations for businesses.

It remains less than half a year until the GDPR becomes applicable. The new data protection law in Germany has already been passed and will also come into force on 25 May 2018 (the so-called FDPA-new).

We have constructed this website in order to help you to understand the General Data Protection Regulation, by clarifying the relationship between the GDPR and the recitals of the GDPR as well as between the GDPR and the FDPA-new. In detail:

> The recitals are linked to the corresponding GDPR articles;

> The articles of the GDPR are linked with

           - the relevant recitals;

           - the applicable provisions regarding the administrative fines;

           - the corresponding clauses in the FDPA-new; as

           - the corresponding GDPR commentary by Paal/Pauly.

We hope to ease the access to the GDPR and German privacy legislation for you. For any questions and suggestions we remain at your disposal.

You will find links to relevant legislation in German and English (if available) in the area of data protection below:


Bundesdatenschutzgesetz - neu

Federal Data Protection Act - new

EU Datenschutzgrundverordnung

EU General Data Protection Regulation

Bundesdatenschutzgesetz - alt

Federal Data Protection Act - old

The text of the GDPR: © European Union,, 1998-2017