Last Updated October 31, 2018

Law and Practice

Authors



Luther Rechtsanwaltsgesellschaft mbH (Cologne) has more than 380 lawyers and tax advisers in ten national and six international offices, of which 16 specialise in outsourcing in the offices in Cologne, Frankfurt, Essen, Berlin and Stuttgart. The firm's key areas of practice are technology, media and telecommunications, data protection law, IT security, and public procurement law in the field of IT.

Cloud computing (the outsourcing of in-house computing processes to external service providers) is already being used by numerous financial institutions, particularly in the banking sector. Because this involves the outsourcing of sensitive information processing, financial service providers must not only comply with the legal requirements of the GPDR; in the banking sector, §25a of the German Banking Act (KWG) and §17 of the German Money Laundering Law (GWG) must also be observed. These provisions contain obligations under banking supervisory law to introduce more precisely defined security systems that guarantee security when outsourcing sensitive information processes. For IT security, a proper business organisation must be in place, in particular appropriate and effective risk management. Another legal source for the protection of information technology is the IT Security Act (BSIG). According to §8a paragraph 1 S1 of the BSIG, operators of critical infrastructure must take appropriate organisational and technical precautions to avoid disruptions to the availability and confidentiality of their information technology systems. Infrastructure from sectors such as energy, finance and insurance as well as information technology and telecommunications are regarded as potentially critical.

Apart from those relating to outsourcing in the supply chain or logistics, a number of sector-specific legal restrictions establish specific measures to be obeyed by the provider, for example in the storage of food or medicine. Since customers remain responsible for any non-compliance by the outsourcing provider, it is of utmost importance to include such measures into the contract.

Luther Rechtsanwaltsgesellschaft mbH

Anna-Schneider-Steig 22
50678 Cologne

+49 221 9937 0

+49 221 9937 110

cologne@luther-lawfirm.com www.luther-lawfirm.com
Author Business Card

Authors



Luther Rechtsanwaltsgesellschaft mbH (Cologne) has more than 380 lawyers and tax advisers in ten national and six international offices, of which 16 specialise in outsourcing in the offices in Cologne, Frankfurt, Essen, Berlin and Stuttgart. The firm's key areas of practice are technology, media and telecommunications, data protection law, IT security, and public procurement law in the field of IT.

{{searchBoxHeader}}

Select Topic(s)

loading ...
{{topic.title}}

Please select at least one chapter and one topic to use the compare functionality.