Data privacy and data protection in Denmark

Accura Advokatpartnerselskab

Accura Advokatpartnerselskab's practice has substantial expertise in privacy and data protection law spanning the healthcare, IT, life sciences, finance, labour and employment sectors. The group advises on the data protection aspects of acquisitions and licence agreements and IT security. Jens Harkov Hansen heads up the practice and has expertise in government-related data protection matters and provides regulatory advice on GDPR mandates.

Practice head(s):

Jens Harkov Hansen


‘In addition to the depth of knowledge, Jens Harkov Hansen and his team excel in their ability to provide tangible and operationally manageable solutions to the most complex challenges. The advice is focused on how to achieve the desired outcome and facilitates getting the client to where he wants to go without tripping over the intricacies of the stringent privacy regulations.’

‘Each employee we work with from the Accura team knows our business to the point and what is important for the company in order to balance legal risk management and make business possible for clients, partners and sub-contractors, which secures a positive outcome.’

‘Privacy Super Star Jens Harkov Hansen is literally an inexhaustible source of knowledge on Privacy Law and to my knowledge the leading specialist in the Danish market. No matter what the issue is and irrespective of its complexity, Jens has the solution readily at hand. He is pragmatic, highly approachable and very capable of identifying operational solutions to complex challenges in this space, thus making it a genuine pleasure to solicit his advice.’

Key clients


Coloplast A/S

DR (Danish Broadcasting Company)

MT Højgaard A/S



European Sperm Bank ApS

Mundipharma A/S

Lessor Group A/S


Undersøgelseskommissionen om SKAT

Bang & Olufsen A/S

Anders Andersen Rengøring

Lagkagehuset A/S

Brøchner Hotels A/S

H+H International A/S

M7 Real Estate ApS

Merck & Co., Inc.

Work highlights

  • Assisted European Sperm Bank with a data protection compliance programme.
  • Providing DPO Services to the public commissions of inquiry Tibetkommissionen and Undersøgelseskommissionen om SKAT.
  • Assisting Lessor Group with data protection matters including advising on the processing of personal data in compliance with GDPR.


Bech-Bruun is praised for its data protection regulation knowledge and is regularly involved in providing regulatory advice for the handling of personal data and the related compliance with GDPR. Thomas Munk Rasmussen and Mikkel Friis Rossa jointly lead the practice and are experienced in advising the subsidiaries of international corporations and public authorities on the interaction between data protection law and special legislations relating to the healthcare, banking, finance and marketing sector.

Practice head(s):

Thomas Munk Rasmussen; Mikkel Friis Rossa


‘The team is very competent and consists of experts in the field of data privacy. It is able to guide clients through data protection requirements with a pragmatic approach.’

‘The firm provides proactive and relevant advice that takes into account both our business and the legislation.’

‘The Bech-Bruun Data Privacy team consists of very skilled people who continuously keep themselves updated on relevant developments. They are also very good at finding practical solutions on the level your business is at – and do try to gain knowledge about your business for best advice. It is never a one-size-fits-all solution.’

‘Highly professional and deep insight, hands-on and solution oriented, best-in-class, high availability as well as a quick and short turnaround time.’

‘Two key components are the extensive and vast specialised knowledge within the area and the ability to relate the complex regulation to an even more complex reality of business operating within the scope of these regulations.’

‘The team is highly professional and each team member has specific competencies. Bech-Bruun has some of the best and most outstanding specialists within the field of data privacy and data protection.’

‘The team is always available and treats the client as an important one regardless of the size of the client.’

‘The individuals in the team are likeable, knowledgable and you always feel as if you are working towards a common goal. It is difficult to remind yourself that they are not your colleagues – but externals.’

‘Mikkel Friis Rossa knows the details of our business and therefore always provides relevant and focused advice. He is always at the forefront of the latest judgments, case law and new legislation. Mikkel is proactive and reaches out when it is necessary and always takes into account both our business and the legislation.’

Key clients


Motion Picture Licensing Company Denmark A/S

DSV Group


Municipality of Copenhagen



CASA Group

Municipality of Aarhus

can Europe BV


Nordic Entertainment Group

Rockwool International



Danish Crown


ECCO Shoes

The Central Region of Denmark

The Capital Region of Denmark

Copenhagen Healthtech Cluster

Finance Denmark

The Northern Region of Denmark

The Zealand Region of Denmark

Danske Bank


Maersk Drilling

Nets Group


Work highlights

  • Assisting Danfoss with the development and implementation of a global data protection compliance programme.
  • Advised DSV on its global implementation of GDPR.
  • Advised the jewellery brand Georg Jensen on the GDPR aspects of its establishment of a global loyalty programme.


With extensive experience across cybersecurity and data protection law, Horten's recent work includes handling the implementation of GDPR compliance projects and assisting with the data protection aspects of wider IT, employment, marketing and public law issues; the team also regularly advises on the data privacy regulations relating to social media platforms. Mads Nygaard Madsen is the practice head and acts for companies and public authorities on the processing of data.

Practice head(s):

Mads Nygaard Madsen

Key clients

Dansk Metal

Kiloo A/S

The Municipality of Copenhagen

Rynkeby Foods A/S

Circle K Danmark A/S



Kommuneqarfik Sermersooq

Léonie Sonnings Music Foundation

The Body Shop

Centralorganisationen af industriansatte I Danmark

Universal Robots A/S

DXC Technology

Kromann Reumert

Kromann Reumert has expertise in GDPR regulations and wider data protection policies, procedures and guidelines, and also advises on processing activities, security breaches and regulatory requirements in the e-privacy, telecoms, energy and healthcare sectors. The group also has experience in employee training and awareness and assists with matters relating to employee profiling and the use of location data. Department head Tina Brøgger Sørensen regularly assists with the data protection elements of M&A transactions and the related compliance aspects.

Practice head(s):

Tina Brøgger Sørensen


‘The Data Privacy and Data Protection team at Kromann Reumert is a very professional and dedicated team. The team is always ready to assist – even when the deadline is very tight. The material from the team is of high quality, which makes it easy to use the material directly in my work afterwards.’

‘A high degree of knowledge regarding their fields. The team also had a great mix of people understanding the business needs in how to implement best practice solutions.’

‘The GDPR team at Kromann Reumert works efficiently, always responding quickly to queries, taking quick action and being available whenever needed.’

‘Broad and in-depth knowledge.’

‘Tina Brøgger Sørensen acts very professionally and does a very great job in her legal advice.’

‘Exceptional availability and exceptionally quick understanding of the problem to be handled with good business understanding.’

Key clients

Codan Forsikring A/S

Ørsted A/S

Nobia Denmark A/S

ID-Sparinvest, Filial af Sparinvest S.A.

Saxo Bank A/S

Pandora A/S

Matas A/S

Adform A/S

Synoptik A/S

OFS Fitel Denmark ApS

Arbejdsmarkedets Tillægspension

Sonova Retail Denmark ApS

Toyota Danmark A/S

Letpension A/S

SE a.m.b.a

Eniig a.m.b.a


Toms Group A/S

Telenor A/S

Work highlights

  • Assisted Arbejdsmarkedets Tillægspension with matters in relation to its compliance with GDPR.
  • Assisting Codan Forsikring with matters related to compliance with GDPR.
  • Advising Nobia Denmark on compliance its with GDPR.


Plesner acts on operational compliance mandates, primarily focusing on the implementation of GDPR. The practice also assists with strategic planning mandates relating to personal data, individual privacy issues and the preparation of draft agreements; the team also assists with compliance programmes and the data elements of specific business processes. Group leader Michael Hopp counts banks, IT service providers, energy companies and companies in the transport sector as clients.

Practice head(s):

Michael Hopp

Key clients

Ørsted A/S

Københavns Lufthavne A/S

Nordea Danmark, Filial af Nordea Bank Abp Finland

Semler Gruppen A/S

Gjensidige Forsikring

Danske Bank

Gyldendal A/S

Bonnier Publications A/S

Novozymes A/S

Sund & Bælt Holding A/S

Work highlights

  • Assisting Ørsted with GDPR-related questions.
  • Advising Nets Danmark on GDPR-related issues.
  • Assisted Københavns Lufthavne with its GDPR compliance project and other privacy and data protection mandates including the processing of HR data, regulatory analysis and data-driven marketing issues.

Bird & Bird Advokatpartnerselskab

The team at Bird & Bird Advokatpartnerselskab is a key name for corporations and public authorities, which it regularly advises on GDPR compliance issues. Practice head Michael Gorm Madsen assists with cloud solutions and e-marketing matters, while the wider practice counts retail, biotech, insurance and utility companies on its client roster. Other areas of expertise include data protection and privacy regulatory advice regarding the collection, processing and disclosure of personal data, and handling data breach matters including notifying the Danish Data Protection Agency.

Practice head(s):

Michael Gorm Madsen


‘Very knowledgeable in each and all details of the topic, special sector-specific knowledge which is most valuable.’

‘The ability to work cross-border is a tremendous advantage for a global company.’

‘They are always up to date on the newest development within the GDPR area. They are very commercially oriented and always try to understand the business.’

Key clients

Widex A/S

The Danish Association of pharmacist (Danmarks Apotekerforening)



Danish Ministry of Taxation

Design Society



Danish Ministry of Higher Education and Science

Work highlights

  • Assisting Widex with a GDPR compliance project.
  • Advising Design Society on a GDPR compliance project.
  • Advising I/S Refa on a GDPR compliance project and providing DPO services.

Gorrissen Federspiel

Gorrissen Federspiel's expertise in domestic and cross-border compliance projects allows it to handle data policy updates and other data protection mandates for a range of noteworthy clients. The practice also advises on the implementation of binding corporate rules and assists with data transfer schemes including the data aspects of technology outsourcings. Practice head Tue Goldschmieding is experienced in digitalisation programmes and the related regulatory and contractual issues, handles the implementation of new business intelligence models and assists with the use of artificial intelligence for data analysis.

Practice head(s):

Tue Goldschmieding

Key clients

Novo Nordisk


Vestas Wind Systems



Work highlights

  • Assisting Ramboll Group with the implementation of a global GDPR compliance project.
  • Advising Vestas on the global implementation of GDPR.
  • Advising Carlsberg on the global implementation of GDPR.

Lund Elmer Sandager

Lund Elmer Sandager's practice advises on GDPR compliance and regularly assists with data documentation, project management issues and the data implementation elements of IT and technology projects; members of the practice also act as DPO for several companies. Practice head Torsten Hylleberg counts IT, automotive and media companies as clients and handles the interpretation and implementation of data privacy regulations. The team is also active in data litigation.

Practice head(s):

Torsten Hylleberg

Skau Reipurth & Partnere

Skau Reipurth & Partnere's practice focuses on GDPR compliance work and individual data protection with notable expertise in employment law and HR specific data privacy measures. Mette Vestergaard Huss and Bo Enevold Uhrenfeldt jointly head up the group and act for associations, unions and non-corporate entities on data privacy issues. The team also represents employers and employees in data-related employment litigation.

Practice head(s):

Mette Vestergaard Huss; Bo Enevold Uhrenfeldt

Key clients

Dansk Magisterforening

Kemp & Lauritzen

Danske Skoleelever

ELF Development

Dyrenes Beskyttelse

Dansk Bibliotekarforbund



SMV Danmark

Work highlights

  • Assisting Dansk Magisterforening with risk analysis and compliance issues.
  • Advising Total Exploration and Production Denmark on insight requests from an employee in connection with a litigation process.
  • Advising Kemp & Lauritzen on a compliance process.


Clemens combines expertise in employment, corporate immigration and data protection law to assist with the implementation of GDPR compliance programmes and undertake reviews of data protection measures. Group leader Tommy Angermair is experienced in advising on data protection measures with employment aspects. Clients include retailers, manufacturers, construction companies and IT businesses.

Practice head(s):

Tommy Angermair

Key clients




Mjølner Informatics



Kyocera Unimerco Tooling


XL Byg

Work & Co

Work highlights

  • Assisted Mjølner Informatics with a GDPR compliance project.
  • Advising Ikast Betonvarefabrik on a GDPR compliance project.
  • Advising Sportmaster on a GDPR group compliance project across 100 stores.

Nielsen Nørager

Nielsen Nørager focuses its data protection expertise on matters related to trade and industry and also advises on the use of data by public authorities. The practice assists with the preparation and implementation of data protection compliance projects and handles inspections by the Danish Data Protection Agency. Anders Valentiner-Branth and Claude Winther Nielsen jointly lead the practice and are experienced in data protection litigation and data breach procedures.

Practice head(s):

Anders Valentiner-Branth; Claude Winther Nielsen

Key clients

The Municipality of Gladsaxe

The City of Copenhagen

Rejsekort A/S

The Danish Trade Union Confederation (FH)

The Danish Association of Social Workers

Columbus A/S

Atea A/S

Work highlights

  • Assisted Atea with various legal assessments regarding data protection and data privacy law.
  • Developing administrative guidelines regarding parking law including assessments of data protection and data privacy issues.
  • Representing the Municipality of Gladsaxe in civil lawsuits regarding a personal data breach.


Synch's data privacy and protection expertise is particularly prominent in the development and use of technology and services involving artificial intelligence. Practice head Niels Dahl-Nielsen regularly assists with the implementation of GDPR and advises on data breach preparation and responses including notifying regulators and data subjects. The group's client roster encompasses broadband providers, IT companies, HR services and marketing companies.

Practice head(s):

Niels Dahl-Nielsen


‘Commercial approach.’

‘Synch’s team of GDPR specialists with Niels Dahl-Nielsen as their team lead is swift, thorough and to-the-point in every aspect of their advice.’

‘Very client-friendly and effective use of tech tools to deliver services.’

‘Niels Dahl-Nielsen has a commercial approach and he gives clear and direct advice.’

‘Niels Dahl-Nielsen’s industry knowledge and communication skills make him one of our favourite go-to guys.’

‘Niels Dahl-Nielsen has been a pleasure to work with.’

Key clients

Globeteam A/S


Ugilic ApS

Hiper A/S

Phases ApS

Moodagent A/S

Greener Pastures


Work highlights

  • Advising Hiper on data protection matters.
  • Advising Globestream on data protection issues and the optimisation of internal and external processes.
  • Assisting a financial sector client with matters involving data protection issues including setting up internal processes, drafting contractual framework and providing educational documents for the client’s employees, suppliers and business partners.