Scope of services according to Art. 37 GDPR and by agreement, e.g :

• Monitoring of GDPR compliance
• Training of employees
• Creation and maintenance of record of processing activities (ROPA)

On an hourly or daily basis, remote or on-site at your company:

• Coaching, support and consulting of executives and/or the entire data protection/privacy team.

On-site and/or online:

A data privacy audit is a voluntary review of your company’s data privacy/ GDPR compliance. I offer:

• Data protection audits in companies on a one-time basis

Data protection requirements are difficult to keep track of, especially for small companies. That is why I support, e.g. yoga studios, start-ups or tax consultants with simple implementation

• Legal advice
• Representation in court

• Data Protection law

Representative of controllers and processors that are located outside the EU, but process personal data in Germany.

I have been working in the legal field of data protection since 2010. During these 12 years, I have held a wide variety of positions in different companies: legal advisor, external data protection officer, internal data protection manager, privacy manager, data protection auditor, and coach in data protection departments. I have always found that there are considerable differences in the level of interest and general acceptance of the topic of „data protection“ itself. Despite this, or precisely because of it, I passionately support companies with my skills and experience. Because data protection is of central importance for every company and for all of us — and is becoming even more important every day.

In 2023, I started my own lawfirm, fritzlaw, as a sole attorney and external Data Protection officer. In addition, I give seminars for different providers and am a lecturer at the Augsburg University of Applied Sciences (Faculty of Computer Science, Lecture: Law).

My working languages are German and English.

From March 2021 to June 2022, I worked in a large international law firm (www.dlapiper.com) in the data protection department and for the Privacy Officer.

Between November 2016 and February 2021, I worked as Privacy Manager in a US medical device company (www.arthrex.com) and oversaw implementation and maintenance of the privacy management system for the Europe, Middle East & Africa (EMEA) region. In addition, I was posted to the US parent company for a few months and was thus able to further expand my international experience as well as my network internationally.

Previously, I worked for 6 years a in a medium-sized law firm in Augsburg (www.jus-kanzlei.de), for which I still work as a freelancer.

I am active in all areas where data protection law advice is needed. I currently serve both large companies (e.g. in the data protection department, human resources department or as an external data protection officer), but also small and medium-sized companies. In doing so, I support companies in understanding data protection law requirements and implementing them in a legally compliant manner. I work on an hourly or daily rate basis, digitally or on-site at your company.

I want to teach as much as possible about data protection to as many people as possible. I think that we can only implement data protection as a fundamental right of every individual if we first comprehensively educate everyone, both the people affected and the companies.

The term „data protection“ in itself is misleading. Because ultimately it is „human protection“ in the sense of protecting humans from surveillance and the misuse of personal data.