It-sikkerhed og compliance bliver fortsat vigtigere for organisationer og enkeltpersoner på grund af den teknologiske udvikling, risici og nye lovkrav.

It- og cybersikkerhed prioriteres i stigende grad af lovgivere, organisationer, individer og tilsynsmyndigheder.

Onlinetransmissioner og behandling af data har iboende risici, som skal begrænses gennem overholdelse af lovgivningen, risikovurderinger og passende tekniske og organisatoriske foranstaltninger.

Udover GDPR er følgende EU-initiativer og -regler blandt andet relevante for cybersikkerhed:

  • NIS2-direktivet (cybersikkerhedskrav for en række sektorer og tjenester)
  • E-databeskyttelsesdirektivet og -forordning (databeskyttelse og elektronisk kommunikation)
  • European Electronic Communications Code (EECC) (teleudbyder og udbydere af nummeruafhængige interpersonelle kommunikationstjenester)
  • Forordningen om cybersikkerhed (Cybersecurity Act – ramme for cybersikkerhedscertificering af produkter og tjenester)
  • DORA (sektorspecifik forordning om digital operationel modstandsdygtighed i den finansielle sektor)
  • CER (direktiv om kritiske enheders modstandsdygtighed)
  • Forordningen om cybersikkerhed og Forordningen om informationssikkerhed (cybersikkerhed i forbindelse med Den Europæiske Unions institutioner, organer, kontorer og agenturer).

Mange brancher er underlagt generelle eller sektorspecifikke regulatoriske cybersikkerhedskrav og skal sikre overholdelse af disse.

Sikkerhedsstandarder og revisionserklæringer

Informationssikkerhedsstandarder som fx ISO 27001 overholdes ofte af organisationer for at kontrollere og styre it-sikkerhed og risici.  Nogle it-leverandører kan også være ISO-certificerede, og flere og flere kunder kræver certificeringer af deres leverandører.

Mange it-leverandører indhenter årlige revisionserklæringer fra uafhængige revisorer som ISAE 3000, 3402 type I eller II (International Standard on Assurance Engagements – Assurance Reports on Controls at a Service Organisation). Revisionserklæringerne bruges til at dokumentere og vurdere status for en it-organisation og tilstrækkeligheden af interne kontroller. Nogle it-kunder kan kræve en revisionserklæring, som kan medføre en konkurrencefordel for den it-leverandør, der har en sådan erklæring.

Juridisk bistand inden for alle regulatoriske it-sikkerhedskrav

Vi yder juridisk bistand inden for alle regulatoriske it-sikkerhedskrav, herunder håndtering af complianceprocesser, support i håndteringen af cyberangreb og dialog med relevante myndigheder. Du får adgang til en bred vifte af juridiske færdigheder inden for området, men lige så vigtigt vil du møde en dybdegående forståelse af din virksomhed og branchen som helhed.

Vi samarbejder herudover tæt med vores specialister inden for blandt andet Persondata, Compliance, It, Tech & Digitalisering, Finansiering, Offentlig virksomhed & Forvaltning og M&A & Selskabsforhold.

Ratings

TMT

Chambers_Partners_logo

What the team is known for
Bech-Bruun is a well-known law firm offering strong expertise in IT mandates. The department is well placed to advise on the procurement of IT systems, often acting for state bodies. The team also assists with IT contracts, SaaS agreements, master service agreements and application maintenance agreements. The lawyers additionally represent clients in litigation and arbitration proceedings. Data protection compliance is also an area of focus for the team, as well as defending clients in cases pertaining to breach of GDPR.

Strengths
"The lawyers have great skills and the ability to understand the realities for companies. They are very service-minded, quick at responding and friendly."

"Bech-Bruun always delivers swift answers."

"The team are quick to understand the challenges and questions, skilled and forthcoming."

"Bech-Bruun go the extra mile to understand the commercial aspect in their legal guidance."

"The lawyers are always extremely available."

Work highlights
Bech-Bruun acted for Region Zealand on a tender regarding a new ERP system and IT consultancy.

Notable practitioners
Niels Andersen remains a trusted adviser for his strength in a broad array of IT mandates. He assists with tender processes involving master service agreements and application maintenance agreements. He is also highly experienced in IT disputes, including arbitration proceedings.

Mikkel Friis Rossa enters the data protection rankings, with numerous sources highlighting his business-oriented approach. He assists with the creation of global data privacy compliance programmes, in addition to representing clients in disputes regarding breach of GDPR.

"We very much value the legal expertise and commercial understanding that Mikkel brings to our business. He has an in-depth knowledge of complex privacy matters and the ability to create business value out of legal problem-solving."

"He is very skilled and has a friendly approach."

"Mikkel is always ready for a call. He understands the need for risk-based advice in a complex business context."

"He is a very experienced lawyer in this field. He is responsive and always available for any queries about urgent matters."

"He has a great sense of the commercial needs."


Chambers and Partners Europe 2023, Information Technology

Information Technology

Legal_500_logo

Ranked: Tier 1

The ‘experienced and skilled‘ team at Bech-Bruun handles the full scope of IT matters, from traditional system development and operational service agreements, to emerging technology issues relating to blockchain, IoT, and robotics. Based in Copenhagen, co-head Niels M. Andersen advises domestic and overseas corporates on public and private procurements, transfers and due diligence in addition to contract management related IT issues. Mikkel Friis Rossa co-heads the practice from Aarhus, and consistently ‘goes the extra mile‘ when advising corporates on strategic digital transformation projects, using his expertise at the intersection between data protection and IT law. Senior associate Joachim Bjerregaard handles contractual and regulatory issues within the IT and telecoms spaces. 

‘One of the most experienced and skilled in the field.’

‘Mikkel Friis Rossa deserves a special mention, for standing out positively. Mikkel goes the extra mile, regardless of the client need. He is always available and dependable.’

Legal 500, Information Technology, 2023

Telecoms

Legal_500_logo

Ranked: Tier 2

Bech-Bruun houses a strong IT, outsourcing and telecoms practice which often advises pension funds and corporates on transactional and contentious issues, including transmission rights and streaming mandates, often with a regulatory angle. Mikkel Friis Rossa and Niels M. Andersen jointly head up the practice from Aarhus and Copenhagen respectively. Andersen often advises domestic and international corporates such as Samsung and Microsoft on distribution agreements and regulatory requirements in relation to their products and services.

Legal 500, Telecoms, 2023

BB

Vil du ringes op?

Fortæl os, hvornår du har tid til at tale. Så ringer en af vores specialister dig op.