DE | EN | RU (0)69 76 75 77 80Mon. - Fri. from 8am to 8pm, Sat. from 8am to 5pm

Data Protection: Companies Must Appoint an EU Representative

Dec 14, 20 • Privacy LawNo Comments

Data Protection: Companies Must Appoint an EU RepresentativeSince May 25, 2018, the EU General Data Protection Regulation (GDPR) requires, among other things, the appointment of an EU representative for businesses with customers within the European Union. The EU representative is to be responsible regarding the obligations resulting from the GDPR for the companies. Failure to appoint such an EU representative is likely to result in heavy fines.

EU representative required in case of company headquarters outside the EU

According to Art. 27 of the GDPR, the appointment of one or more EU representatives, depending on the size of the company, is also required for a company headquartered outside the EU if the company

  • offers goods or services to persons in the EU, or
  • monitors the behavior of individuals in the EU

and is thus subject to the GDPR.

Responsibilities of the EU representative within the company

An EU representative guarantees the observance of rights and freedoms of affected persons in data processing. Furthermore, he or she serves as a contact person for affected persons or supervisory authorities for questions relating to the processing of personal data, in addition to or also instead of the controller or a processor.

The appointment of an EU representative is not necessary if the processing of personal data occurs sporadically. However, this is the exception rather than the rule.

Election and appointment of the EU representative

When selecting the EU representative, it must be ensured that the representative is established in the EU member state where the processing of personal data is to take place. The appointment of the EU representative must be made in writing. In addition, his or her activities within the company must also be recorded in writing. Furthermore, the representative must be named as an authorized representative and, in particular, specified as such in the data protection declaration.

It is recommended that the EU representative who is to be appointed is familiar with the provisions of the GDPR in order to be able to expertly answer any questions from data subjects or supervisory authorities.

WINHELLER provides EU representatives for your company

In order to avoid fines and to ensure lawful handling of personal data subject to the GDPR, the appointment of an EU representative is essential. Our experienced attorneys for data protection law will gladly assume the role of the EU representative for your company! WINHELLER is therefore your ideal source of support for supervisory authorities and data subjects with regard to inquiries in connection with the GDPR. We are happy to offer our service to you at an individual fixed price. Feel free to contact us and we will submit a quote.

Continue reading:
Companies May Issue Warnings of GDPR Violations in Germany
Creating a data protection concept for your company

Stefan Winheller

Attorney Stefan Winheller has specialized in tax law for about 20 years, especially in the areas of cryptocurrencies, foundations/nonprofits and international tax law.

>> show profile

Leave a Comment

Your email address will not be published. Required fields are marked with *

WINHELLER Blog via Newsletter

Subscribe to our free newsletter and receive regular updates on German business law by e-mail. (Mandatory fields are marked with *)

German Business Law News (4 times a year)
I would like to subscribe to the selected newsletter and for that purpose give my consent to WINHELLER to process my above mentioned data. I have read the "Information for Data Processing in the Newsletter Subscription". I understand that I can revoke my consent at any time with effect for the future by clicking the unsubscribe button within the newsletter. *