Planning for DPI: Deutschland 2020 is Underway
Get The Latest News on Faculty and Sessions

The IAPP Data Protection Intensive: Deutschland 2019 is in the history books. Delegates were treated to two days of practical knowledge and real-world learning from local data protection experts and regulators (see the recap below).

Join Us at Next Year’s Conference

IAPP Data Protection Intensive: Deutschland 2020

9-10 September

Mark your calendars now for next year’s event on 9-10 September in Munich so you don’t miss the opportunity to network and learn from 300-plus data protection professionals. Even better, sign up right now to receive the latest news and alerts so you can find out which hot topics will be addressed by the stellar roster of faculty we are already beginning to assemble.

Sign Up for Event Updates

Stay informed on the IAPP Data Protection Intensive: Deutschland 2020 and other IAPP conferences:

IAPP Data Protection Intensive: Deutschland 2019 in Review

Bavarian Data Protection Commissioner Thomas Petri opened this year’s conference in Munich speaking about challenges in the public sector to meet requirements under the EU General Data Protection Regulation.

Commissioner Petri also highlighted the need to further align practical implementation of the GDPR and passionately spoke about its benefits for citizens in dealing with public authorities and the need to provide more public information on this topic.

In the German session of “The Regulators’ View,” a hot topic of conversation was the use of web-tracking tools. Thomas Kranig, president of the Bavarian Data Protection Authority underlined the position of German DPAs that use of any tracking tools collecting information of website visitors for functions like re-targeting or cross-device tracking requires prior documented consent. He confirmed legal proceedings have begun on Bavarian companies related to this topic and fines will be issued soon.

Barbara Thiel, commissioner at the State Commissioner for Data Protection Lower Saxony, provided insight into her ongoing legal investigations, including health checks on the overall privacy status of approximately 50 companies. Her observation is that companies are struggling to meet minimum IT security standards and to properly conduct privacy impact assessments.

Stefan Brink, commissioner for Data Protection Baden-Württemberg, outlined his perspective on the recent decision allowing DPAs to prohibit use of Facebook Fan Pages in Germany.

Helga Þórisdóttir, data protection commissioner for Iceland, Anu Talus, from the Office of the Data Protection Ombudsman, Finland, and Piotr Drobek, Personal Data Protection Office, Poland, spoke on a panel about enforcement actions in their respective countries and efforts to support and assist DPOs and privacy pros.

As with last year’s event, the session with DPOs speaking to their experience with the GDPR over the last year caught the attention of delegates. Privacy leaders from Birkenstock, BMW, Cerner, Fresenius, Garmin, IBM, PSI Cro and Swiss Re all shared key learnings from their organisations.

Overall, one year on from the GDPR, there was a greater sense of confidence from delegates around compliance with the regulation, and it showed in sessions and questions from the audience that were more focused on the specifics of compliance, program management and the practical nature of process impolementation.


Where Did All the Handouts Go?

All sponsor handouts are now provided in digital format instead of paper. Access them conveniently at

DPI Deutschland 2019 Twitter Highlights

DPI Deutschland Photo Gallery

2019 Keynote Speaker


Prof. Dr. Thomas Petri

Bavarian Data Protection Commissioner

Commissioner Petri will discuss his views on enforcing the fundamental rights of data protection and educating citizens and public authorities on the principles of the GDPR. He will also reveal the local and regional trends he sees that could significantly impact the industry and your work.


2019 Popular Sessions

How to Manage a Privacy Programme

In this session, panelists discussed their experiences managing privacy operations, detailing real-world stories of building and implementing their privacy teams, including pointing out mistakes to avoid, and how to respond appropriately to data breaches.


Talks for DPOs by German DPOs

In this fast-paced, 90-minute session, German DPOs related their experiences a year after the GDPR implementation. The animated and informative discussions from panelists once again made this session one of the most popular.


Global Developments: CCPA and Beyond

The California Consumer Privacy Act of 2018 (CCPA) stands to radically change the way all organisations handle personal data. In this session, delegates heard about new laws and legislative initiatives, and how they will change the way business is done internationally.


The Regulators’ View

In the GDPR era, organisations are in frequent contact with supervisory authorities to get guidance, report breaches, or register risky data protection impact assessments. This panel discussion explored how to work most effectively with regulators, and what they see on the horizon.

Other Conferences

Training 18-19 November
Workshops 19 November
Main Conference 20-21 November

Your source for European data protection policy debate, multi-level strategic thinking and thought-provoking discussion.  The Congress delivers thought leadership, a thriving professional community and unrivalled education.

December 4-5
Live Online

Join this two-day virtual broadcast featuring critical insights to help operationalize your commitment to CCPA compliance.

Conference 12-13 February

Paris to host IAPP multi-language conference.

Join data protection professionals from across Europe for two days of concentrated learning, sharing, and networking in both English and French at the IAPP Data Protection Intensive: France.