Dr. Nils Lölfing

I am a counsel in our Technology & Communications Sector Group. I provide pragmatic and solution-driven advice to our clients on all issues around data and information technology law, with a strong focus on and experience with AI and machine learning projects.

My experience includes providing expert advice to clients on various aspects of technology, data and data protection law, in particular GDPR, mobile commerce, ecommerce and the commercialization of data ("Data as an asset"). I have designed and run GDPR compliance programmes as well as provided advice on other complex GDPR and data law issues to a number of major companies, including several DAX 40 companies.

Over the years, I have gained particular experience in hot topics such as the Internet of things, (personal and non-personal) data, machine learning and AI.

I also advise both providers and customers in the preparation and negotiation of complex IT agreements and projects, in addition to IT hardware manufacturers on issues of European and German product safety and compliance matters, including representation before market surveillance authorities.

I regularly coordinate legal matters with my international colleagues within our firm's international network, which I was able to expand through my secondment to Bird & Bird's London office in 2018/2019.

• Analysis for a leading pharmaceutical company regarding the potential impact of the draft EU Artificial Intelligence Act on access to and commercialization of data in the healthcare sector.
• Advising on cutting-edge data law issues for a leading cloud provider in a project for the German government on the regulation and commercialization of data for AI and machine learning, with regard to the healthcare sector.
• Advising on various data and data protection law issues including for DAX 40 companies but also many international clients. This includes – next to GDPR implementation projects – advising on pioneering AI projects in relation to GDPR as well as on the utilisation and commercialisation of geolocation data under GDPR.
• Advising on multiple commercial contracts, including data protection law (e.g. data use and licensing issues), such as cloud and data-driven business models and their contractual design in an international context (e.g. the set-up of an IoT platform).
• Advising on various technology transactions, examples include the purchase of an innovative health app company and the purchase of a review platform.
• Advising innovative IT hardware manufacturers on product safety and product compliance matters, including representation before various market surveillance authorities.
• Advising a leading European quantum hardware company on a stellar project involving the implementation of a Quantum Computer in Germany.
• Other projects include, for example, advising a subsidiary of the German government in sensitive and highly complex litigations around its provision of electronic identification, authentication and trust services.