Associate
International Privacy and Information Management Practice
Brussels
+32 2 643 58 28 Phone
+32 2 643 58 22 Fax
Download vCard
| Practices |
Consumer Protection
and Privacy
eDiscovery and
Cyber-Investigations
Team
European Data
Protection and
Privacy
Global Technology
Internet &
E-Commerce
Privacy &
Information
Management
Records Management
Retail and Consumer
Products Industry
Technology
|
Practice focuses on all aspects of German and European technology law, in particular on data protection and IT security, e-commerce, e-discovery, records management and IT outsourcing.
Relevant Experience 
- Advised a large US software company for IT security products on German data protection compliance in relation to website transaction process and international data transfers with service providers.
- Advised the largest US oil and gas company on its strategy for international data transfers and compliance with European data protection law, including certification for Safe Harbor membership.
- Represented the German subsidiary of a large US financial services provider before a German data protection authority regarding data protection compliance.
- Advised a global medical technology leader on its strategy for pan-European data protection compliance in 14 countries, including notifications, international data transfers, Safe Harbor membership and implementation of global compliance hotline.
- Conducted a comprehensive data protection audit for a major financial services provider and advised on its strategy regarding binding corporate rules (BCRs) and data transfer agreements.
- Advised a major US provider of BTO software on its pan-European data protection compliance project.
- Advised a major US chemical company regarding data processing outsourcing and international data transfers across Europe and the US.
- Advised a global PC manufacturer on data processing notifications with data protection authorities in more than 20 countries and standard contractual clauses regarding international data transfers between more than 70 corporate entities in- and outside Europe.
- Advised a major US provider of global mailstream solutions on outsourcing of data processing and related vendor contracts.
- Advised the UK branch of a large investment bank regarding several customer relationship management projects and data protection compliance.
- Advised the second largest telematics service provider on German data protection compliance, telecoms and data retention law.
- Advised the leading non-profit organisation for standardisation of electronic product codes and RFID on European data protection issues
- Advised a major Australian services support group operating in 50 countries on company wide human resources privacy compliance program, including policies, procedures, guidelines and management training.
- Advised an US search engine company regarding privacy policies and compliance with the Safe Harbor framework.
- Advised a major US electronic invoicing provider on its e-billing services and spend management software regarding European legal requirements for electronic-signatures, e-invoicing and data protection as well as data security and encryption requirements.
- Advised a major German bank on IT-outsourcing agreements including compliance with European and German data protection law as well as banking regulatory requirements.
Additional Experience
- Currently operating a website (www.china-law.org) on Information Technology and E-Commerce Law in China.
- Advised on IT projects with regard to data protection and e-commerce, legal department of Volkswagen AG, Wolfsburg, Germany, 2001-2002.
- Assistant in project and contract management, Online-Broker SEBdirect GmbH, Frankfurt a. M., Germany, 2000-2001.
- Assistant in product management for internet banking, BfG Bank AG (now SEB Bank AG), Frankfurt a.M., Germany, 1998-2000.
Background
- Legal clerkship, Germany 2003-2005 (inter alia Court of Appeals, Wiesbaden; Data Protection Authority, Darmstadt; Mayer, Brown, Rowe & Maw, Frankfurt).
- Academic Assistant in e-democracy project, Institute of Public Law, Johann Wolfgang Goethe-University, Frankfurt a. M. 2001-2003.
- Renmin (People's) University, School of Law, Beijing, (China Law Program Indiana University, Law School), 05/1998.
- University of Keele, School of Law, Staffordshire, UK, 1997-1998.
Membership
- Member, Brussels Bar, E-list
- Member, Frankfurt am Main Bar
- Member, Association for Data Protection and Data Security (GDD), Germany
- Member, German Association for Law and Information Technology (DGRI)
- Member, European Outsourcing Association Germany e.V. (EOA)
- Member, International Technology Law Association (ITechLaw)
- Member, International Association of Privacy Professionals (IAPP)
Awards and Professional Recognition
- Winner of the Academic Prize 2006 for Best Data Protection Dissertation, awarded by the German Association for Data Protection and Data Security (GDD)
Education - Dr. jur. in Data Protection, Johann Wolfgang Goethe-University, Law School, Frankfurt a. M, 2006
- Second State Law Exam, Wiesbaden, Germany, 2005
- LL.M. in Computer & Communications, Centre for Commercial Law Studies, Queen Mary, University of London, 2005
- First State Law Exam, Johann Wolfgang Goethe-University, Law School, Frankfurt a. M, 2001
Languages
| 2007 |
Co-author, European Union Data Protection, in: Cronin/Weikers, Data Security and Privacy Law: Combating Cyberthreats, Chapter 11 |
|
| February 2007 |
Co-author, Privacy Primer: An Overview of Global Data Protection Laws, prepared for the Mortgage Bankers Association (MBA) |
|
| 2006 |
Co-author, Rechtsprobleme der Kryptografie, in: Hoeren/Sieber, Handbuch Multimedia-Recht, Teil 17, 1-46 |
|
| 2004 |
Author, The protection of databases under EU and US law – Sui generis right as an appropriate concept? - Part I -US Law and Part II - EU Law, Computer Law & Security Report Vol. 20, Issue 4, 2004, 288-292 and Issue 5, 377-383 |
|
| 2004 |
Author, Datenschutz in Großbritannien und Nordirland - Ein Länderbericht unter Berücksichtigung der Sonderterritorien Guernsey, Jersey und Isle of Man, Datenschutz & Datensicherheit 2004, 33-39 |
|
| 2002 |
Author, Qualität und Effektivität von Gütesiegeln - Eine Übersicht über nationale und internationale Angebote, Datenschutz & Datensicherheit 2002, 672-678 |
|
| 2002 |
Author, Gütesiegel als vertrauensbildende Maßnahme im E-Commerce - Motive, Modelle und Rechtsgrundlagen, Datenschutz & Datensicherheit 2002, 597-600 |
|
| 2001 |
Author, E-Geld auf dem Vormarsch? - Rechtliche Rahmenbedingungen elektronischen Geldes, Multimedia & Recht 2001, 731-736 |
|
Hunton & Williams News
| 06/08/10 |
Speaker, Die Änderungen der europäischen e-Privacy Richtlinie, DuD 2010 - Datenschutz und Datensicherheit, Berlin, Germany |
|
| 04/29/10 |
Speaker, Die neuen EU Standardvertragsklauseln für Auftragsdatenverarbeiter, GDD-Fachtagung Datenschutz International 2010, Berlin, Germany |
|
| 01/26/10 |
Speaker, Legal Risks of Data Loss, ASIS International Information Assets Protection Conference, London |
|
| 11/20/09 |
Speaker, Drittlandtransfer - Neue EU - Standardvertragsklauseln sowie die Anwendbarkeit des neuen § 11 BDSG, DAFTA 2009, Cologne, Germany |
|
| 10/28/09 |
Speaker, Ensuring Global Data Protection Compliance - EU/Global Challenges in Data Privacy Laws and Regulations, Corporate Executive Board, General Counsel Roundtable, Brussels |
|
| 04/23/09 |
Speaker, Neue EU Standardvertragsklauseln für Auftragsdatenverarbeitung in Drittstaaten?, GDD-Fachtagung Datenschutz International 2009, Berlin, Germany |
|
| 12/09/08 |
Speaker, Privacy & Data Security Update December 2008 - European Developments, ABA Antitrust Section/Privacy & Security Committee, Brussels |
|
| 04/23/08 |
Speaker, Aktuelle datenschutzrelevante Themen aus Brüssel, VATM - Arbeitskreis Sicherheit und Datenschutz, Munich, Germany |
|
| 04/02/08 |
Speaker, Kundendatenschutz und internationale Onlinedienste, GDD-Fachtagung Datenschutz International 2008, Berlin, Germany |
|
| 10/23/07 |
Speaker, Building Transparency into RFID Deployment: Challenges for Applications of Sensorbased Technology, The IAPP Privacy Academy 2007, San Francisco |
|
| 09/13/07 |
Speaker, US E-Discovery Rules vs. European Data Protection Law, The International Data Protection Intensive 2007, London |
|
| 09/13/07 |
Speaker, Reclassification of Processors as Controllers - The SWIFT case, The International Data Protection Intensive 2007, London |
|
| 11/17/06 |
Speaker, Online Profiling and Data Protection, 30th Annual Data Protection Symposion 2006 (DAFTA), Cologne, Germany |
|
| 03/27/06 |
Whistleblowing Hotlines in Europe, Data Protection and Data Security Conference 2006 (DuD) Berlin, Germany |
|
|
Dr. Jörg Hladjk
|
|
|
