Dr. Daniel Pauly

Daniel has specialised experience in the field of cybersecurity and cyber incident response.

Another focus of his legal practice is advising on the regulatory framework of personal and non-personal data, i.e. in particular on data protection law, banking secrecy, the Data Act and other initiatives and regulations of the so-called European Data Strategy.

He also regularly advises in the field of digitalization – in particular in the automotive sector – including big data, artificial intelligence, cloud computing, blockchain, software development, licensing and maintenance as well as the various forms of near- and offshoring.

Finally, he has knowledgeable expertise in the field of charging infrastructure for electric cars.

Rankings

Daniel is considered one of the "most renowned lawyers for data protection" and one of the "most renowned lawyers for digitalization" in Germany (Handelsblatt 2022) and for technology (Handelsblatt 2023).

He is also listed as one of the "most renowned lawyers for compliance" in Germany (WirtschaftsWoche 2019).

Daniel is co-editor and co-author of Paal / Pauly, commentary on the GDPR and the German Federal Data Protection Act.

He regularly publishes on cybersecurity and incident response, IT and data protection, and gives lectures and seminars.

Daniel is a member of the German Association for Law and Information Technology (Deutsche Gesellschaft für Recht und Informatik, DGRI).

Work highlights

Daniel has led on many of the German market’s most significant data protection, IT, outsourcing and automotive transactions. These include advising:

• DP World: Advising on the legal implications of a cyberattack and in particular on communication with the relevant supervisory authorities.
• A German leasing company: Advising on the data protection implications including any notification obligations as a result of a ransomware attack.
• Hurtigruten: Advising on the implications of a cyberattack, including notification and setting up a hotline to handle customer inquiries.
• E.ON: Advising on the drafting and negotiation of contracts for the development of a Europe-wide fast charging network for Mercedes.
• A provider of a risk intelligence database: Representation before German courts of first instance including higher regional courts in data protection disputes.
• Leading car manufacturers: Advising on numerous digitalization projects, including in the fields of functions-on-demand (in a number of jurisdictions), over-the-air update legal issues (in a number of jurisdictions), the legal protection of the electrification strategy and the legal implications of the digital key.

Daniel has been working as a lawyer since 2003. He has worked as an associate at Linklaters since 2006 and was promoted to partner in 2013.

Daniel is a member of the German Association for Law and Information Technology (Deutsche Gesellschaft für Recht und Informatik,DGRI).

Daniel studied law and political science at the University of Bonn, the Institute of Political Sciences of Aix-en-Provence (IEP d’Aix-en-Provence, France) and the University of Constance, before completing a doctorate in law at the University of Oldenburg.

He speaks German and English.

Daniel frequently writes in legal journals and speaks at seminars on IT and data privacy.

• Co-editor and co-author of Paal / Pauly, commentary on the GDPR and the German Federal Data Protection Act.

• Co-author of “Protection of Trade Secrets under the Data Act” (Schutz von Geschäftsgeheimnissen nach dem Data Act), Beck, MultiMedia und Recht (MMR), edition 3/2024

• 3rd German General Counsel Congress, 01/2024 Berlin, Lecture: Cybersecurity - food for thought for the immediate improvement of corporate security

• British Chamber of Commerce in Germany (BCCG), 01/2024 Berlin, Presentation to the Mobility Expert Group: The Data Act and its implications for the automotive industry

• Inhouse Matters 2023: Everything that moves the legal market, 12/2023 Frankfurt, Moderation of the panel Cybersecurity & Cyberthreat