Dr. Christian Schröder heads Orrick's IP/IT & Data Privacy Practice Group in Germany in Orrick’s Düsseldorf Office. Christian advises medium sized (Mittelstand) companies to large multinationals on IP, Unfair and Deceptive Trade Practices, E-Commerce, IT and Data Privacy/Data Protection.
He is listed in Germany's leading lawyer ranking magazine JUVE as frequently recommended data privacy expert and clients recommend him to JUVE for his "reliable and actionable advice". Christian and his practice are also ranked by Legal 500 Germany and Legal 500 EMEA for being among the leading German and European data privacy practices (2019), clients referred to him and his team as "Top data privacy expert", "extremely knowledgeable", and "able to explain complex legal issues in an easily understandable way so that both legal and economic decisions can be made". Christian Schröder is recommended for his "data protection expertise and quick comprehension as well as his entrepreneurial acumen." Christian is also ranked by the German business Journal WIWO as one of the best German IT and Data Privacy practitioners .
Christian provides IP/IT advice in M&A transactions and advises on IP focused joint ventures. He supports companies on the set-up of webshops, outsourcings, license agreements, in cases of trademark or unfair and deceptive trade practice issues as well as on hard and software license and IT project agreements.
As a core member of Orrick's global Cyber, Privacy & Data Innovation practice, Christian has a special focus on data privacy/data protection matters. In particular, Christian advises on a risk-based approach to privacy, on implementing databases and new software applications, in particular, cloud based solutions. He advises on data privacy contracts, internal data privacy policies, binding corporate rules, user agreements on BYOD, whistleblowing schemes, e-discovery, security breaches, and intra-group data sharing on a national and international basis. He also regularly defends companies against unfair access to their know-how by competitors and against unfair poaching of customers and employees.
Christian is a contributing author to several data privacy books. The Kühling/Buchner: DS-GVO, 2. ed. published March 2018, is considered one of the leading comprehensive EU General Data Protection Regulation (GDPR) commentaries drafted by renowned German academics, former and current chairmen of German data protection supervisory authorities, and other leading private practice practitioners specializing in this area. Christian drafted the fifth chapter on international data transfers.
He also contributed to Forgó/Helfrich/Schneider: Betrieblicher Datenschutz, 2. Auflage/ 2. edition, released in April 2017. This is a handbook on Corporate Data Privacy, which contains comprehensive and practical advice on data privacy compliance for medium to larger companies, in particular, multinationals. Christian authored the chapters on Data Privacy in M&A Transactions and Whistleblowing and Compliance and, in his PhD-thesis authored a comparison between U.S. and German data privacy laws.
Christian writes frequently for Orrick's Trust Anchor blog and publishes articles in Germany's leading data privacy journal ZD. He provides litigious and non-litigious advice and represents clients before supervisory authorities and patent and trademark offices.
Prior to working in private practice, Christian interned with the Federal Data Protection Commissioner and www.epic.org.
Data Privacy / Cybersecurity
GDPR Compliance Programs: Advising various mid to large sized multinational companies on GDPR compliance, understanding international data flows, drafting data sharing agreements, setting up compliance structure and privacy-by-design programs, assisting with Privacy Impact Assessments, and revising data privacy policies. Some of these clients are among the worldwide leading technology companies.
Connected Cars: Advising global tech companies and car manufacturers on data privacy implications with Connected Cars and on international data transfers.
International Data Transfer Mechanisms: Developing and implementing enterprise-wide compliance programs, including (online) customer and employee privacy policies, cookie compliance, terms of service, and end user licensing agreements relating to core privacy and related consumer-protection issues.
Employee Monitoring and Works Council Agreements: Advising several global companies in connection with the implementation of employee monitoring schemes and cross-border data flows, international transfer (both intra-group transfers and third-party transfers) of employee data from countries outside of Europe to a service provider in Europe (and vice versa) and, developing a global HR data privacy approach; drafting and representing clients in works council agreements relating to the implementation and use of IT applications.
Representation before Supervisory Authorities: Representing a global event organizer in supervisory procedures regarding data privacy matters.
Vendor Data Processing Agreements: Advising several global tech companies on tailored data processing agreements which include cloud services with various sub-processors.
Data Privacy and E-Commerce: Advising several international companies on data privacy and e-commerce law matters, inter alia on using personal data for direct marketing, and collecting and using personal data in the online environment.
Travel and Ed-Tech Data Privacy: Advising leading travel and Ed-Tech companies on data privacy issues specific to their businesses.
Advising Tech Start-ups on Data Privacy: Advising numerous mid-sized start-ups from the U.S. and Germany regarding IT and data privacy matters, i.e. to develop marketable products and services that align with consumer privacy and data protection principles. Also, drafting privacy policies, terms and conditions, and vendor contracts, as well as evaluating cutting-edge and disruptive technologies and businesses on privacy compliance and consumer protection concepts.
Cybersecurity and Data Breach Incident Plans: Counseling major computer software companies on Cybersecurity and incident plans.
Strategic Cloud Computing
Advice: Providing strategic advice to key
cloud computing market players in relation to data protection and information
Post-M&A Integration Issues: Integrating a German affiliate into the group's internal data sharing/access schemes and, in this context, conducting challenging negotiations with IT providers and the affiliate's works council (Betriebsrat).
IT Licensing: Advising a leading U.S. software manufacturer on its EU and German software licensing terms & conditions and regularly conducting negotiations with its customers.
IT Licensing: Advising a U.S. cloud software provider on its German licensing terms & conditions.
Unfair Trade and IP
Unfair Trade Practices Litigation: Representing several software and e-commerce companies in unfair competition litigation, e.g. regarding unfair advertising and breach of consumer protection regulations.
Trademark Prosecution and Litigation: Advising various small to large national and international companies on trademark prosecution and litigation.
M&A Technology/Joint Venture Transactions