Auditors, lawyers, tax consultants and management consultants: Four perspectives. One solution. Worldwide. Find out …
Our clients entrust us with their most important legal matters. Learn more about our legal services!
Tax laws are complex and dynamic. We face the challenge of tax law together with you - find out more.
Company shares to employees: Gift or salary?
BAG overturns forfeiture clause for share options after termination
Baker Tilly advises biotech startup Real Collagen GmbH investment by US investor
Countdown to September – The EU Data Act and its implications
Electronic salary statements: BAG allows purely digital provision
Baker Tilly starts the year 2025 with 23 new Directors
Industry-specific knowledge is essential in order to create the best conditions for customised solutions. Find out …
After ECJ ruling: Financial investors still have no direct access to medical care centers
Hospital reform: New exemption from merger control in the hospital sector
Benefit from bundled interdisciplinary competencies, expert teams and individual solutions. Learn more!
On October 8, 2024, the German Federal Ministry of Labor and Social Affairs and the German Federal Ministry of the Interior and Community published a draft bill for an Employee Data Act (“BeschDG-E”). With a view to the increasingly digital world of work, it is intended to create legal certainty in the handling of employee data. Among other things, the draft contains regulations on the voluntary nature of consent in the context of employment and on information rights for data subjects with regard to the use of surveillance measures, profiling and artificial intelligence (AI).
Art. 26 of the German Federal Data Protection Act (“BDSG”) currently regulates data processing for the purposes of the employment relationship. However, on March 30, 2023 (Case C-34/21), the ECJ ruled that Art. 23 of the Hessian Data Protection and Freedom of Information Act (“HDSIG”) violates the GDPR. This is problematic insofar as Art. 23 HDSIG is identical in wording to Art. 26 BDSG. The German Federal Labor Court (“BAG”) (Case no. 1 ABR 14/22) has therefore ruled that Art. 26 BDSG is only partially applicable.
The draft bill for the Employee Data Act is intended to take into account and regulate the increasing (new) challenges of digitalization in the relationship between employees and employers. The German government has set itself the goal of promoting the innovative and responsible handling of employee data. For the sensitive context of employment, this means that a reasonable legal framework combines innovative data use with strong data protection for employees. But what does the draft bill regulate in detail?
In part, the draft bill provides legal certainty and codifies the existing legal situation. In some cases, however, companies will also be confronted with more administrative work, e.g., due to new information obligations regarding the use of AI applications and administrative requirements for the appointment of data protection officers or the management of applicant data. It remains to be seen how this draft will develop in the legislative process. We hope that some points will be revised.
As soon as a new regulation comes into effect, the company’s own contracts (employment contracts, privacy notice, etc.) and operational processes (recruiting, performance management, time recording, security systems, etc.) must be reviewed accordingly and adapted if necessary. In view of the break-up of the “traffic-light” coalition, it currently appears questionable whether this legislative process will be implemented in the short term. We advise companies to observe the further legislative process, to evaluate possible scenarios now and to check what implications they would have for their respective organizations.
View all news