Photo of Dr. Ulrich Worm

Ulrich Worm is a partner in the Frankfurt office of Mayer Brown and heads the German Intellectual Property practice. His practice focuses on technology related advice.

Ulrich advises clients in IP related matters, including patent, trade secrets, design right, trademark and copyright matters as well as on licensing, co-operation and other technology transfer agreements. He represents clients in patent infringement and nullity proceedings and in trade secrets litigation cases before courts in Germany. In addition to litigating IP cases before German courts, he coordinates pan-European and cross-Atlantic litigation cases. Further to his IP litigation practice, Ulrich advises on patent related matters such as patent license and other technology transfer agreements and is experienced in fighting counterfeiting of patent, design right and trademark protected products.

His practice further covers IT-related matters, including advising on cloud services, software licensing agreements, SaaS agreements, software development projects, e-commerce, and related data protection and privacy questions.

Read Ulrich's full bio.

 

On 25 May 2022, the European Commission published Questions and Answers for the New  Standard Contractual Clauses to provide practical guidance on the use of standard contractual clauses (SCCs) and help organisations with their General Data Protection Regulation (GDPR) compliance efforts. The Commission confirmed that the Q&A document will be regularly updated.

Continue reading.

On March 25, 2022, the United States and the European Union jointly announced an “agreement in principle” to a new trans-Atlantic data privacy framework to facilitate the cross-border transfer of personal data (the “Framework”).1 As part of the Framework, the US has made “unprecedented commitments” related to intelligence collection and surveillance practices.2 The

The UK Online Safety Bill was proposed by the UK government to establish a new regulatory framework to tackle harmful content online and usher in a new age of accountability for tech companies. The bill will impose a duty of care on companies that offer user-generated content, in addition to search engines, to protect users

Seitdem die Datenschutz-Grundverordnung in Kraft trat, stehen Entwickler und Forschende im Bereich der automatisierten und vernetzten Mobilität immer wieder vor schwierigen Fragestellungen:

  • Welche Daten lassen sich wie DSGVO-konform verarbeiten? Was ist erlaubt, was nicht?
  • Wie können diese Daten anderen zur Verfügung gestellt werden?
  • Welche Unterschiede gibt es hierbei zwischen Universitätsinstituten, öffentlichen Einrichtungen und Unternehmen?

Continue

Today, 28 June 2021, the European Commission formally adopted two adequacy decisions with respect of transferring personal data from the European Economic Area (the “EEA”) to the United Kingdom (the “UK”): one under the EU General Data Protection Regulation and one under the EU Law Enforcement Directive. The two decisions come into

Today, 21 June 2021, the European Data Protection Board (the “EDPB”) has published its final Recommendations 01/2020 on supplementary measures to ensure compliance with data protection laws when transferring personal data from Europe (the “Recommendations”).

The adoption of these Recommendations is the latest in a series of developments which demonstrate that it is

As the European Union finalizes new tools that raise the requirements to transfer personal data across borders, and as the trend toward localization and restricting cross-border movement of data continues to develop in Asia, organizations must reassess the rules that restrict sharing data internationally and revise their approach in response to this increasingly restrictive, complex

Today, 4 June 2021, the European Commission has formally adopted new standard contractual clauses for international personal data transfers from the European Union to third countries (“New EU SCCs”).

The 34-page New EU SCCs, which have been adopted to reflect the introduction of the General Data Protection Regulation (“GDPR”) and the

Codes of conduct are documents prepared by associations and other bodies that demonstrate how the General Data Protection Regulation(“GDPR”) applies and can be complied with by participants in particular industries and sectors  under Article 40 of the GDPR. Businesses may voluntarily adhere to codes of conduct to demonstrate their ability to comply with