Data is valuable. Whether classified business information or personal data, all forms of information can have significant value. If personal information falls into the wrong hands, there can be many undesirable consequences, such as information manipulation or identity fraud. Not to mention, reputational and financial consequences for the organization. Because the dangers of failing security systems are great and the consequences of cyber incidents are often incalculable, information security negligence is even punishable today.

Legislation related to information security was until recently enshrined in the Data Protection Act (Wbp), but this has been replaced by the General Data Protection Regulation (AVG). The Telecommunications Act, the ePrivacy Regulation and the Network and Information Security (NIS) Directive also require organizations and companies to handle various forms of information in a risk-oriented manner.

With the introduction of the AVG, many companies and organizations have had to rethink how they manage information. This file provides an overview of what is currently going on in the field of information security related to privacy and helps you get started within this topic.