Düsseldorf
+49 211 600 55-166 +49 211 600 55-160 p.kempermann@heuking.de
Languages
German,
English,
Dutch
Practice groups/Expertise
Consulting focuses
- Information Technology (IT)
- Antitrust Law
- Compliance
- Data Protection Law
- Internet Law
- IT-Outsourcing Tech-driven transactions
- Telecommunications Law
- Cyber Security
- Automotive
Vita
- Managing Partner
- Admitted to the Bar since 2006
- Education and former activities
- Legal Trainee (Referendar) in Duesseldorf 2004 – 2006
- LL.M. in Legal Informatics (EULISP), University of Hannover and University of Lapland, Rovaniemi/Fi. 2003 – 2004
- Universities of Bayreuth and Mainz 1997 – 2003
Affiliations
- ITechLaw
- Studienvereinigung Kartellrecht e.V.
- Deutsche Gesellschaft für Recht und Informatik e.V. (DGRI e.V.)
- International Technology Law Association (ITechLaw)
- International Bar Association (IBA)
Dr. Philip Kempermann's Distinctions
Lexology Index 2025
JUVE Handbuch Wirtschaftskanzleien 2024/2025
Leaders League 2024
Handelsblatt: Deutschlands Beste Anwälte 2024
Best Lawyers 2025
Legal 500 EMEA 2024
Legal 500 Germany 2024
WWL Germany 2024
JUVE Handbuch Wirtschaftskanzleien 2023/2024
Lexology Client Choice Awards 2024
Best Lawyers 2024
Handelsblatt: Deutschlands Beste Anwälte 2023
Who´s Who Legal Thought Leaders 2023
Leaders League 2023
Legal 500 Germany 2023
Lexology Client Choice Awards 2022
WWL Germany 2023
JUVE Handbuch Wirtschaftskanzleien 2022/2023
Best Lawyers 2023
Legal 500 EMEA 2022
WWL Germany 2022
Legal 500 Germany 2022
kanzleimonitor 2021/2022
JUVE Handbook Commercial Law Firms 2021/2022
Handelsblatt: Deutschlands Beste Anwälte 2022
Handelsblatt: Deutschlands Beste Anwälte 2021
Best Lawyers 2022
Legal 500 EMEA 2021
Legal 500 Germany 2021
GDR 100 2021
WWL Germany 2021
kanzleimonitor 2020/2021
JUVE Handbook Commercial Law Firms 2020/2021
Handelsblatt: Deutschlands Beste Anwälte 2020
Best Lawyers 2021
Legal 500 EMEA 2020
Legal 500 Deutschland 2020
kanzleimonitor 2019/2020
JUVE Handbuch Wirtschaftskanzleien 2019/2020
Thought Leaders Data 2019
Latest news
Projects
Publications
2025
Compensation for insecure invoice delivery – The Higher Regional Court of Schleswig-Holstein sets high standards for data security
Update Data Protection No. 201, March 5, 2025
EDPB Guidelines on Pseudonymisation: A Guide to Handling Personal Data in a Privacy-Compliant Manner
Update Data Protection No. 199, February 19, 2025
Compensation for unsafe data transfers
Update Data Protection No. 198, January 28, 2025
2024
News from the Federal Court of Justice on damages in the case of scraping – a lose/lose situation for companies and consumers?
Update Data Protection No. 195, December 6, 2024
,
together with
Georg Thomas, LL.M. (University of Glasgow)
LDI NRW confirms: Telecommunications secrecy does not apply to employers who allow the private use of email and telecommunications services
Update Data Protection No. 182, July 7, 2024
,
together with
Julian Rosenfeld
BGH rules on the scope of the right to a copy
Update Data Protection No. 179, May 21, 2024
,
together with
Julian Rosenfeld
Cybersecurity 2024 - Germany
Chambers Global Practice Guide – Cybersecurity 2024
,
together with
Dr. Thomas Jansen
New OLG judgment: Is private email use subject to telecommunications secrecy?
Update Data Protection No. 172, March 6, 2024
Changes to the BDSG and TTDSG - What is changing and what companies need to pay particular attention to
Update Data Protection No. 171, February 28, 2024
ECJ clarifies further questions on compensation for damages and health data
Update Data Protection No. 165, January 3, 2024
EuGH stärkt die Stellung des Datenschutzbeauftragten
WPg 2024, p. 115
,
together with
Georg Thomas, LL.M. (University of Glasgow)
2023
EuGH urteilt zur Haftung und Schadensersatz bei Cyberangriffen
Update Data Protection No. 163, December 18, 2023
,
together with
Julian Rosenfeld
ECJ rules on Schufa scoring – current practices not GDPR-compliant
Update Data Protection No. 161, December 12, 2023
,
together with
Julian Rosenfeld
ECJ on Deutsche Wohnen SE case: GDPR association sanction requires culpability – but not the action of a management body
Update Data Protection No. 159 & Update Compliance 9/2023, December 5, 2023
,
together with
Dr. André-M. Szesny, LL.M.
Der EuGH und Meta-Anwendung und Reichweite von datenschutzrechtlichen Bestimmungen in der Prüfung von nationalen Wettbewerbsbehörden
Der Betrieb, Issue 38, September 18, 2023, pp. 2227-2231
,
together with
Georg Thomas, LL.M. (University of Glasgow)
Meta suffers defeat before the ECJ – National competition authority can find an infringement of the GDPR
Update Data Protection No. 150, July 14, 2023
Drahtseilakt zwischen verschiedenen Rechtsgebieten
In-house Counsel, issue 4/2023, pages 24-26
Der Europäische Gerichtshof konkretisiert den Umfang des Auskunftsrechts
Update Data Protection No. 147, June 29, 2023
,
together with
Julian Rosenfeld
New draft regulation for consent management services (PIMS) pursuant to section 26 TTDSG
Update Data Protection No. 144, June 14, 2023
,
together with
Michael Kuska, LL.M., LL.M.
Data Protection & Privacy 2023 - Germany
Chambers Global Practice Guide – Data Protection & Privacy 2023
,
together with
Dr. Thomas Jansen
Cybersecurity 2023 - Germany
Chambers Global Practice Guide – Cybersecurity 2023
,
together with
Dr. Thomas Jansen
ECJ strengthens Position of Data Protection Officers
Update Data Protection No. 134, February 27, 2023
CJEU puts its foot down on the Right of access – Controllers must name specific recipients
Update Data Protection No. 133, February 23, 2023
,
together with
Julian Rosenfeld
What is a copy? – The Advocate General explains the interpretation of Art. 15 (3) GDPR
Update Data Protection No. 129, January 3, 2023
,
together with
Julian Rosenfeld
2022
New EU-/U.S. Data Protection Agreement on the home straight
Update Data Protection No. 126
Transatlantisches Datenabkommen – kommt der Privacy Shield 2.0?
Digital Markets Act – Wesentliche Inhalte und Bedeutung
Update Datenschutz No. 119
,
together with
Michael Kuska, LL.M., LL.M.
Datenschutzrechtliche Sorgfaltspflichten nach Vertragsende
Update Datenschutz No. 117
Mal wieder: Unverschlüsselter Emailversand möglich?
Update Datenschutz No. 115
ECJ Affirms the Legal Standing of Consumer Associations for the Prosecution of Data Protection Violations
Update Data Protection No. 111
,
together with
Julian Rosenfeld
Cybersecurity 2022 - Germany
Chambers & Partners Cybersecurity Guide 2022
,
together with
Dr. Thomas Jansen
External liability of the managing director for company’s data protection infringements?
Update Data Protection No. 110 | Update Compliance 7/2022
Data Protection & Privacy 2022 - Germany
Chambers & Partners Data Protection & Privacy Guide 2022
,
together with
Dr. Thomas Jansen
2021
Data Protection Update: New EDPB Recommendations on International Data Transfers
Update Data Protection No. 100
Cybersecurity 2021 - Germany
Chambers & Partners Cybersecurity Guide 2021
Data Protection & Privacy 2021 - Germany
Chambers & Partners Data Protection & Privacy Guide 2021
German Supervisory Authorities to Monitor the Implementation of the "Schrems II" Judgment
Update Data Protection No. 91
Lectures
2020
Koorperationsmodelle im Lichte des Datenschutzes
7. Deutscher IT-Rechtstag, 13. bis 14. August in Berlin
2018
Digital Legal Counsel
Zertifikatslehrgang für Unternehmensjuristen, June 2018, Bonn, September 2018, Frankfurt, November 2018, Munich
Collaboration and Data Exchange
IFCLA Conference, Paris, June 7, 2018
2016
Datenschutz-Grundverordnung – Bleibt alles anders?!
Juristenjahrestagung Bundesverband öffentlicher Banken, September 1, 2016
Ermittlungen im Wirtschaftsunternehmen – Ursachen für und Umgang mit dem Ernstfall
Inhouse-Training at an internationa company, Neuss, February 11, 2016
2015
Das neue IT-Sicherheitsgesetz – Welcher Handlungsbedarf besteht?
Cyber Business Breakfast der Deutschen Bank, May, 2015, Hannover
Digital Agenda – Bust or Boom?
German American Chamber of Commerce, April 28, 2015, New York, USA
2014
Buy Global, Deploy Local: Hurdles for Group Wide Cloud Services Deployment
ITechLaw International India Conference, Bangalore, January 30, 2014
2013
ECJ's TVCatchup Case: Is Everything Addressed or Are There Still Open Issues?
Itech Law Webinar, June 27, 2013
Vom Cookie zum Astroturfing – Tools im Netz und deren rechtliche Implikationen
BITKOM Forum Recht, Berlin, April 11, 2013
Benachrichtigung und Auskunftserteilung – Worüber müssen Unternehmen informieren?
Heuking Kühn Lüer Wojtek, March 7, 2013 in Düsseldorf
IT-Compliance und IT-Governance für Nicht-IT-Führungskräfte
Verband die Führungskräfte, January 26, 2012 in Essen
2011
Kundendatenschutz – Das Ende von Werbe- und Akquisemaßnahmen?
Management Circle GmbH, September 27, 2011, Frankfurt/Main
Kartellrechtliches Risiko-Management - Datenschutz- und telekommunikationsrechtliche Herausforderungen; technische Durchführung
Heuking Kühn Lüer Wojtek, September 22, 2011, Düsseldorf
Location Based Services – Ein gesetzlicher Drahtseilakt? Grenzen und Möglichkeiten von LBS
BITKOM Akademie Düsseldorf, Event "LBS – Durchbruch mit Social Media? Location Based Services zwischen Mehrwert und Big Brother", May 3, 2011
Aktuelles zum Datenschutz – Datenschutz beim Outsourcing und Cloud Computing
Heuking Kühn Lüer Wojtek, February 23, 2011, Düsseldorf
2010
Vernetzung 2.0: Rechtsfragen von Datenschutz bis Haftung
BITKOM Akademie Köln, Event "ICTM-Compliance und mehr", May 18, 2010
Lizenzierung & Compliance: Needs-to-Know zwischen Besonderheiten und Fallstricken
BITKOM Akademie Berlin, Event "Secrets of the Cloud: On-Demand-Konzepte - Heiße Wolke oder Durchmarsch?", February 24, 2010