Have any Questions? +49 (511) 165 80 40 90

So close and yet so far

Data protection and information security have many points of contact. According to Art. 32 GDPR, the controller must ensure the security of processing. These measures shall be selected taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of the processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons. In this context, measures to ensure information security usually also serve to ensure the security of processing. It therefore makes sense to think about and plan processing security and information security together from the very beginning.

Recognized standards such as the ISO 27000 series, but also less complex standards such as VdS 10000, which is tailored to the needs of SMEs, help in the selection of measures and provide security in implementing measures that are necessary according to the state of the art, but also economically sensible.

We therefore also advise you on information security issues between the technical and legal spheres and work with your IT experts to plan the right technical measures for your IT infrastructure. We are also happy to support you with an information security management system that is closely linked to data protection and complies with recognized standards.

This is how lexICT supports you:

Technical know-how

Regardless of their training as lawyers, our employees have an above-average technical understanding and can therefore optimally provide a link between technology and law.


We offer you concrete and risk-oriented advice so that your measures meet the requirements of the GDPR and ensure secure and economically sensible protection.


The documentation of your IT security concept is important in order to be able to demonstrate to the supervisory authorities in an emergency that you have an appropriate protection concept. We provide assistance in this regard.


... is a data protection consulting firm based in Hanover (Germany) and Vienna (Austria), that places great value on individual consulting and the development of pragmatic solutions. Our team consists exclusively of lawyers who have specialized in data protection and have the certain nerd factor to optimally fill the niche between law and technology.

Contact us

lexICT GmbH
Ostfeldstraße 49
30559 Hannover

+49 (511) 165 80 40 90

+49 (511) 165 80 40 99

Copyright 2024. All Rights Reserved.
Settings saved

Further information can be found in our privacy policy.

You are using an outdated browser. The website may not be displayed correctly. Close