
EINBLICKE & NEWS
EU AI Act: Where Data Controllers Stand After the 2026 Omnibus
The EU has finalised the AI Act simplification package, moving high-risk deadlines to Dec 2027. What deployers and controllers should do now.

Cookie Compliance: 5 Evidence Gaps Auditors Keep Finding
CMP logs, consent scope, dark patterns, and what “proof” looks like in practice across EU/UK guidance.
Weiterlesen →
Vendor Risk in SaaS: SCCs, TIAs & Practical Controls
How to operationalise vendor reviews without slowing teams down — a tiered approach that works.
Weiterlesen →
DPIA Done Right: Risk Triggers Your Teams Will Actually Use
Turn DPIAs into a lightweight guardrail — where they sit in tickets, PRs, and launch checklists.
Weiterlesen →
Security Baselines Every Privacy Programme Should Adopt
From hardening and identity to logging and encryption — privacy-by-design in action.
Weiterlesen →
Outsourced DPO: What “Good” Looks Like
Scope, independence, reporting lines and cadence — what to expect from an effective DPO engagement.
Weiterlesen →
Company Formation: KYC Evidence Clients Forget
A short checklist to avoid back-and-forth with banks and corporate service providers.
Weiterlesen →Machen Sie aus Einblicken Taten.
Steht eines dieser Themen auf Ihrer Roadmap, machen wir daraus einen konkreten Plan — mit prüfungsfesten Nachweisen ab Tag eins.
„Diese Einblicke haben unsere DSFA und unseren Lieferanten- Review-Prozess geprägt. Wir bekamen konkrete Formulierungen und Kontrollen, die direkt in unsere Abläufe passten.“
Compliance-Leiterin, europäisches SaaS