FRATCH

Recommended expert

Grafrath, Germany

Experience

Feb 2023 - Mar 2024

1 year 2 months

Frankfurt am Main, Germany

Data Protection Officer and Information Security Advisor

Mobility inside Plattform GmbH

Creating guidelines and policies for the HR, product management, development, and IT administration departments, as well as all company-wide policies
Advising on building and maintaining the record of processing activities (RoPA)
Reviewing and expanding contracts under Article 28 GDPR
Reviewing and expanding documents under Articles 44 and following of the GDPR
Conducting individual and group trainings (around 10 people) up to executive management (C-level)
Data protection contact for public transport associations across Germany
Preparing for certification readiness according to BSI Basic Protection

Achievements:

Developed a database-driven system for generating customer-specific privacy policies
Resolved issues with all transport companies through structured communication, clear arguments, and quality delivery

Jul 2022 - Oct 2022

4 months

Unterschleißheim, Germany

Senior Consultant for Information Security and Data Protection

glacier-ac GmbH

Developing management systems to meet TISAX, ISO 27001, and GDPR requirements for OEM customers and Tier 1 and Tier 2 suppliers

Sep 2019 - Jun 2022

2 years 10 months

Munich, Germany

Data Privacy Expert, Staff Unit at Bavarian State Tax Office (BayLfSt)

secunet Security Networks AG

Preparing and conducting data protection audits in the ELSTER information network, including data protection impact assessments (DPIAs)
Performing ISO 27001/BSI Basic Protection audits in a government environment
Information security training sessions
Creating and revising the logging policy, cryptography concept, backup concept, training concept, home office policy, document control policy, and data and asset classification policy
Introducing new IT clusters into the ISMS scope

Achievements:

Significantly improved data protection quality and documentation in the ELSTER and authega information clusters for the Bavarian State Tax Office (BayLfSt)
ELSTER was fully audited for data protection in 2022

Nov 2018 - Jun 2024

5 years 8 months

Germany

Data Protection Officer

Self-employed

Serving clients as an external data protection officer
Advising on information security projects and data protection policies
Risk factor analysis and identification of protective measures

Clients:

MAGNA sweets GmbH
moving GmbH
NAVUM GmbH
Projektil GbR

May 2017 - Jun 2018

1 year 2 months

Magdeburg, Germany

Software Consultant for ERP Systems

SelectLine Software GmbH

Aligning requirements from the specification document with the ERP software capabilities (SCOR processes, warehouse logistics, CRM, accounting)
Presenting the ERP software on-site using customer-specific process examples to management, departments, and key users
Documentation in BPMN

Dec 2016 - Mar 2017

4 months

Germering, Germany

ERP Consultant for ERP Systems

Step Ahead AG

Planning and implementation of ERP projects
Customizing the GUI and adapting it to customer processes

Jun 2016 - Nov 2016

6 months

Starnberg, Germany

Inside Sales Executive / Technical Pre-Sales

estos GmbH

Technical support for partners and existing customers
Product presentations and customer consulting

Mar 2014 - May 2016

2 years 3 months

Munich, Germany

Technical Staff Member in the IT Department

Bavaria Direktmarketing GmbH

Import and export of data, data validation, enrichment, preparation, and analysis in Excel
Trainer for apprentices

Mar 2013 - Feb 2014

1 year

Germany

SEO Agency

Self-Employed

Market analysis for the viability of an SEO agency
Creation of various websites and implementation of SEO measures

Apr 2010 - Feb 2013

2 years 11 months

Munich, Germany

Project Manager and CRM Consultant

CuT Alexander v. Sivers

Project responsibility for the company-wide roll-out of CRM software to clients of the IT service provider
Customizing the software interface and aligning it with customer processes
1st and 2nd level support for CRM software
Implementation of a commercial document structure and monitoring document flow
Establishing measures to reduce the open item volume

May 2000 - Mar 2010

9 years 11 months

Germany

Owner and Managing Director

Medienhaustechnik Lotze

Acquisition, planning and execution of high-end media technology projects for private clients during the construction phase in the DACH region
Programming and designing GUIs to control entertainment electronics in heterogeneous environments and integrating them into building management systems
Regular evaluation of BWA, SuSa and open item lists

Feb 1998 - Apr 2000

2 years 3 months

Munich, Germany

Member of the Sales Exam Committee and Managing Director

Hifi-Forum München GmbH

Securing the company's order pipeline
Shaping business policy under the franchise agreement

Mar 1992 - Jan 1998

5 years 11 months

Retail Sales and Inside Sales Representative

ELO-Touch Systems GmbH; AVNET Alfapower GmbH; Radio Arndt Inh. Harald Behr

Industries Experience

See where this freelancer has spent most of their professional time. Longer bars indicate deeper hands-on experience, while shorter ones reflect targeted or project-based work.

Experienced in Information Technology (24.5 years), Construction (10 years), Retail (8 years), Professional Services (6 years), Government and Administration (3 years), and Advertising (3 years).

Information Technology

Construction

Retail

Professional Services

Government and Administration

Advertising

Business Areas Experience

The graph below provides a cumulative view of the freelancer's experience across multiple business areas, calculated from completed and active engagements. It highlights the areas where the freelancer has most frequently contributed to planning, execution, and delivery of business outcomes.

Experienced in Information Technology (20.5 years), Project Management (13 years), Accounting (11 years), Customer Service (9 years), Sales (8.5 years), and Legal (5.5 years).

Information Technology

Project Management

Accounting

Customer Service

Sales

Legal

Summary

As an experienced data protection expert, I have been implementing information security and data privacy projects for over 5 years to ensure the security of sensitive data.

My primary goal is to strengthen the company's compliance and ensure that all processes meet legal data protection requirements.

I see myself as an advisory partner in your company, aligning management systems with each other.

For me, this involves not only data protection and compliance with information security standards (NIS2, Data Act, Cyber Resilience Act, AI Act, Trade Secrets Act, etc.) but also identifying your company's risk factors.

Skills

Complex Products
High-quality Products
Close To The Customer
Legal Certainty And Innovation

Languages

German

Native

Education

Sep 1988 - Feb 1992

Bebo-Wager Vocational School Augsburg

Intermediate school certificate · Radio and Television Technician · Augsburg, Germany · 2.5

Certifications & licenses

Lead Auditor ISO 27001

Lead Auditor ISO 27701

BSI Basic Protection Practitioner

IT Security Manager

Quality Officer

Trainer Qualification Exam

IHK

Information Security Officer

Data Protection Officer

Profile

Created

August 2024

Last Update

January 2026

Need a freelancer? Find your match in seconds.

Try FRATCH GPT

Frequently asked questions

Do you have questions? Here you can find further information.

Where is Steffen based?

Steffen is based in Grafrath, Germany and can operate in on-site, hybrid, and remote work models.

What languages does Steffen speak?

Steffen speaks the following languages: German (Native).

How many years of experience does Steffen have?

Steffen has at least 32 years of experience. During this time, Steffen has worked in at least 13 different roles and for 13 different companies. The average length of individual experience is 2 years and 5 months. Note that Steffen may not have shared all experience and actually has more experience.

What roles would Steffen be best suited for?

Based on recent experience, Steffen would be well-suited for roles such as: Data Protection Officer and Information Security Advisor, Senior Consultant for Information Security and Data Protection, Data Privacy Expert, Staff Unit at Bavarian State Tax Office (BayLfSt).

What is Steffen's latest experience?

Steffen's most recent position is Data Protection Officer and Information Security Advisor at Mobility inside Plattform GmbH.

What companies has Steffen worked for in recent years?

In recent years, Steffen has worked for Mobility inside Plattform GmbH, glacier-ac GmbH, secunet Security Networks AG, and Self-employed.

Which industries is Steffen most experienced in?

Steffen is most experienced in industries like Information Technology (IT), Construction, and Retail. Steffen also has some experience in Professional Services, Advertising, and Government and Public Administration.

Which business areas is Steffen most experienced in?

Steffen is most experienced in business areas like Information Technology (IT), Project Management, and Accounting. Steffen also has some experience in Customer Service, Sales, and Legal and Compliance.

Which industries has Steffen worked in recently?

Steffen has recently worked in industries like Professional Services, Information Technology (IT), and Government and Public Administration.

Which business areas has Steffen worked in recently?

Steffen has recently worked in business areas like Legal and Compliance, Information Technology (IT), and Quality Assurance (QA).

What is Steffen's education?

Steffen attended Bebo-Wager Vocational School Augsburg for Radio and Television Technician.

Does Steffen have any certificates?

Steffen has 8 certificates. Among them, these include: Lead Auditor ISO 27001, Lead Auditor ISO 27701, and BSI Basic Protection Practitioner.

What is the availability of Steffen?

Steffen is immediately available part-time for suitable projects.

What is the rate of Steffen?

Steffen's rate depends on the specific project requirements. Please use the Meet button on the profile to schedule a meeting and discuss the details.