A Q&A guide to data protection in Germany.

This Q&A guide gives a high-level overview of the data protection laws, regulations, and principles in Germany, including the main obligations and processing requirements for controllers, processors, or other third parties. It also covers data subject rights, the supervisory authority's enforcement powers, and potential sanctions and remedies. It briefly covers rules applicable to cookies and spam.

To compare answers across multiple jurisdictions available in our Global Guides product, visit the Global Guides Data Protection Country Q&A Tool.