“Information security and data protection in the Cloud – Striking a balance between BSI C5 and EU-GDPR” - Webinar

The webinar will do more than just elaborate on how to act in compliance with EU-GDPR, how to make use of Cloud services and how to meet the highest standards of security – it will also provide you with the tools to do so!


Information security and data protection

Information security and data protection are gaining in importance as cyber attacks intensify and stricter provisions of the EU-GDPR will take effect on May 25, 2018. In order to collect and process personal data, dedicated applications to be provided by IT departments will play a critical role in the implementation of the data protection principle “Privacy by Design” (controlled, authorised access to personal data). The “Security by Design” principle furthermore demands that any unauthorised access on personal data is prevented, regardless of whether such an access is attempted from inside or outside of an organisation.

Unfortunately, many businesses are still not fully prepared for the new EU-GDPR and do not know enough about potential resources or tools.

How you can benefit from this webinar:

In the first part of the webinar, Dr. Patrick Grete German Federal Office for Information Security (BSI), will give an overview of the C5 requirements catalogue (Cloud Computing Compliance Controls Catalogue, “C5”). The catalogue is setting new market standards for information security in Cloud services and can be used by businesses as the basis on which to assess the security of Clouds. Dr. Grete will also explain in how far C5 is different from other security certifications.

Thomas Niessen, CEO of the Competence Network “Trusted Cloud“ at the German Federal Ministry for Economic Affairs and Energy, will then elaborate on the changes of EU-GDPR for businesses, the effects on Cloud services and the resulting challenges in meeting compliance requirements.

In the second part of the webinar, Professor Dr. Ali Sunyaev, Chair for Information Systems and Systems Engineering as well as Director of the Research Center for Information System Design (ITeG) at the University of Kassel will demonstrate the tangible benefits of using Cloud services with certificates at times of growing risks of cyber attacks. He will also talk about the importance of information privacy and the “AUDITOR” project, an EU-wide data protection certification of Cloud services.

In the webinar’s final part, Andreas Dangl, Business Unit Executive Cloud Services at Fabasoft, will present a Cloud-based solution that combines security, identity and access management with the process-driven processing of personal data. In a live presentation, he will show how such a solution can meet the requirements of EU-GDPR.

A compact and descriptive webinar with practical examples, highlighting how your business can employ clearly defined processes to maintain records of processing activities for your functional and EU-GDPR-compliant daily work with personal data.

We look forward to your participation!

The speakers:

Ali Sunyaev

Chair for Information Systems and Systems Engineering, University of Kassel

Prof. Dr. Ali Sunyaev is Chair for Information Systems and Systems Engineering at the Faculty of Economics and Management as well as Memeber of the Executive Board of the Research Center for IS Design (ITeG) at the University of Kassel. His research is focused on the design, implementation, evaluation and management of information systems with a strong emphasis on user orientation and information privacy as well as the practical and economic relevance for businesses and organisations, in particular in the domains of the Internet and health services.

Patrick Grete


Holding a doctorate in physics, Dr. Patrick Grete has been working at BSI in the area of IT baseline protection as well as business continuity management and has been accompanying audits on ISO 27001 certificates on the basis of IT baseline protection and Cloud computing since 2011. He is also a lecturer to the emergency officers of the Federal Government at the Federal Academy of Public Administration. Furthermore, Dr. Grete is project manager of C5 development.

Thomas Niessen

CEO Trusted Cloud

Thomas Niessen is CEO of the Kompetenznetzwerk Trusted Cloud (Competence Network Trusted Cloud) at the German Federal Ministry for Economic Affairs and Energy (BMWi). Prior to his current position he was a member of management of the Trusted Cloud Programme of BMWi within the framework of which the TC data protection profile was established. He has many years of experience in the management of software and media organisations and has implemented customer solutions for business outsourcing and Cloud projects that comply with data protection regulations.

Andreas Dangl

Business Unit Executive Cloud Services, Fabasoft

Andreas Dangl is Business Unit Executive Cloud Services at Fabasoft, a leading European vendor of software products for the consistent and efficient handling of electronic documents and business records.
His area of interest lies in increasing the quality and effectiveness of organisations, as well as enhancing their motivation using agile methodologies.

You have no time on the above date? Then register to receive a recording of the webinar.
Step 1: Register
Click the "REGISTER FOR THE WEBINAR!" button, fill in the short form and download the event to your calendar. You will receive a confirmation email with a unique link to the webinar.

Step 2: Participate
A short time before the webinar will begin, click the link you have received via email to participate in the webinar. We will send you an email reminder a few hours earlier to make sure you won’t forget.

Step 3: Recording and feedback
After the webinar you will receive another email with a link for downloading the recorded webinar. You can also give us feedback and ask further questions.

Please note: The webinar will be held in German!


By registering for the event the participant accepts that the personal data submitted above is used to process the enquiry and send informational material and is transmitted to Fabasoft International Services GmbH and to Fabasoft Austria GmbH. This consent can be revoked at any time by letter or email to be addressed to Fabasoft International Services GmbH, Honauerstrasse 4, 4020 Linz, Austria, office@fabasoft.com.