• Mehr als 3 Millionen Wörter Inhalt
  • |
  • info@itmedialaw.com
  • |
  • Tel: 03322 5078053
Rechtsanwalt Marian Härtel - ITMediaLaw

No products in the cart.

  • en English
  • de Deutsch
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
    • Laws
    • Legal terms
    • Contract types
    • Clause types
    • Forms of financing
    • Legal means
    • Authorities
    • Company forms
    • Tax
    • Concepts
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
Kurzberatung
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
    • Laws
    • Legal terms
    • Contract types
    • Clause types
    • Forms of financing
    • Legal means
    • Authorities
    • Company forms
    • Tax
    • Concepts
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
Rechtsanwalt Marian Härtel - ITMediaLaw

Security precautions for e-mail traffic – Karlsruhe Higher Regional Court specifies requirements

10. August 2023
in Law on the Internet
Reading Time: 3 mins read
0 0
A A
0
verdict g1e83e7cbf 1280
Key Facts
  • Karlsruhe Higher Regional Court ruled on 27.7.2023 which security precautions must be observed when sending emails in business transactions.
  • The case concerned a purchase contract for a used car and a manipulated invoice that led to an incorrect bank transfer.
  • The Mosbach Regional Court dismissed the claim as it found a breach of data protection regulations that did not require end-to-end encryption.
  • The OLG overturned the ruling, but confirmed that there is no legal obligation for end-to-end encryption for company data.
  • Numerous questions about mail security, the circumstances of sending and the fulfillment of the claim remain unanswered.
  • The decision makes it clear that appropriate protective measures are required, while absolute safety cannot be guaranteed.
  • Problems such as social engineering and phishing pose significant challenges for e-mail communication in a business context.

In a ruling published on July 27, 2023 (19 U 83/22), the Karlsruhe Higher Regional Court addressed the question of which security precautions must be observed when sending e-mails in business dealings. However, the decision raises more questions than it answers.

Content Hide
1. The initial case
2. The decision of the lower court
3. The decision of the appellate court
4. Problem in the decision
5. Problem of fulfillment in case of transfer
6. Security issues with e-mail communication
7. Conclusion
7.1. Author: Marian Härtel

The initial case

Between the plaintiff, acting as seller, and the defendant, acting as buyer, a contract of sale was concluded for a used car at a price of 13,500 euros. The plaintiff sent the buyer an invoice for the purchase price by e-mail. Shortly after, the buyer received another email with a manipulated invoice. He transferred the purchase price to the account specified in this. The seller then sued the buyer for payment of the purchase price.

The decision of the lower court

At first instance, the Mosbach Regional Court dismissed the action. It considered the claim for payment of the purchase price by the transfer to the wrong account under § 362 para. 1 BGB as fulfilled. The “orientation guide” of the data protection commissioner for the protection of personal data referred to by the district court obliges the vendor to use end-to-end encryption. Your breach of this had enabled the third party’s access.

The decision of the appellate court

In the second instance, the Karlsruhe Higher Regional Court overturned the verdict and ordered the buyer to pay the purchase price of 13,500 euros. It clarified that there was no legal obligation for end-to-end encryption, as it concerned corporate data. The payment to a wrong account did not satisfy the claim.

Problem in the decision

However, the decision raises more questions than it answers:

  • It remains unclear how the fake e-mail could have come about in the first place.
  • The circumstances of the mail dispatch are not clarified.
  • Whether there is a legal problem or the parties have failed procedurally is not discussed.
  • The key question of who paid the fake bill remains unanswered.

Problem of fulfillment in case of transfer

As a general rule, when a sum of money is transferred, performance has not occurred until the amount owed is received in the creditor’s account. The transfer to a wrong recipient account does not fulfill the requirement. So the problem here is not the safety standards, but the lack of compliance.

Security issues with e-mail communication

Still, the case raises questions about email security:

  • Absolute safety is not owed, but adequate protective measures are.
  • There are no binding standards for securing e-mails in business transactions.
  • Technical solutions such as encryption are reaching their limits.
  • Responsibility lies with both the sender and the receiver.
  • Social engineering, phishing and fake senders are major problems.

Conclusion

The ruling problematizes security standards for e-mail traffic, but does not clarify the core issues. Neither the cause nor the circumstances of the mail dispatch are clarified. The decision makes it clear that email security remains an unresolved issue. Absolute security is impossible, but adequate precautions are mandatory. Increased caution and technical protection are required, especially for sensitive business information.

The full ruling is available here.

Marian Härtel
Author: Marian Härtel

Marian Härtel ist Rechtsanwalt und Fachanwalt für IT-Recht mit einer über 25-jährigen Erfahrung als Unternehmer und Berater in den Bereichen Games, E-Sport, Blockchain, SaaS und Künstliche Intelligenz. Seine Beratungsschwerpunkte umfassen neben dem IT-Recht insbesondere das Urheberrecht, Medienrecht sowie Wettbewerbsrecht. Er betreut schwerpunktmäßig Start-ups, Agenturen und Influencer, die er in strategischen Fragen, komplexen Vertragsangelegenheiten sowie bei Investitionsprojekten begleitet. Dabei zeichnet sich seine Beratung durch einen interdisziplinären Ansatz aus, der juristische Expertise und langjährige unternehmerische Erfahrung miteinander verbindet. Ziel seiner Tätigkeit ist stets, Mandanten praxisorientierte Lösungen anzubieten und rechtlich fundierte Unterstützung bei der Umsetzung innovativer Geschäftsmodelle zu gewährleisten.

Tags: E‑mailIT Security

Weitere spannende Blogposts

Data protection madness: when theory and practice collide

f317f7f3f7914aba4fccb4f129a8060c
26. June 2024

Data protection madness: when theory and practice collide I normally write very neutral, factual articles in my blog on various...

Read moreDetails

Cheating in esport: Can I monitor employees?

Cheating in esport: Can I monitor employees?
6. December 2019

For numerous reasons, the topic of cheating in esports is currently very hot and controversial. But can I actually track...

Read moreDetails

Podcasts and the law: What you need to know!

Podcasts and the law: What you need to know!
7. February 2023

This blog post is about the right way to handle podcasts from a legal perspective. I'll try to explain what...

Read moreDetails

Membership in an online forum may not be terminated “just like that

Membership in an online forum may not be terminated “just like that
7. November 2022

The current Corona crisis means that news about judgments and other developments in IT law are also becoming scarcer. Every...

Read moreDetails

Permission to send an e-mail, allows to send an e-mail

Copyright in the digital world: What’s next for AI image generators?
21. February 2023

The headline for this blog post sounds a bit like a click trap, doesn't it? However, there is a funny...

Read moreDetails

ECJ: “Address” is not e-mail address or IP address

Publication of sales advertisements and classification as a trader
7. November 2022

In the case of illegal uploading of a film to YouTube, under the IPR Enforcement Directive, the rights holder can...

Read moreDetails

Data protection information according to DSGVO/GDPR

Data protection information according to DSGVO/GDPR
7. November 2022

One of my clients recently received a large data protection request regarding his personal data. Since I do advise my...

Read moreDetails

Extended Black Week..Is that even allowed?

Extended Black Week..Is that even allowed?
8. January 2024

I just received an email from my old gym that made me wonder. It was about the extension of their...

Read moreDetails

Unwanted email advertising by advertising partners

Unwanted email advertising by advertising partners
3. May 2019

In fact, it was thought that the times of court rulings on spam advertising were over. Either the perpetrators of...

Read moreDetails
So langsam nimmt der Shop Form an
Internally

So langsam nimmt der Shop Form an

3. July 2025

Mein neuer ITMediaLaw-Shop füllt sich stetig mit Inhalten und Angeboten – von praxisnahen E-Books über umfassende Bundle-Pakete bis hin zu...

Read moreDetails
Dark Patterns: UX-Tricks im Visier von Gesetzgeber und Gerichten

Dark Patterns: UX-Tricks im Visier von Gesetzgeber und Gerichten

2. July 2025
Altersverifikation im Internet: Pflichten für Anbieter in Deutschland und Europa

Altersverifikation im Internet: Pflichten für Anbieter in Deutschland und Europa

30. June 2025
KI-Training und Urheberrecht: US-Gericht setzt auf Fair Use – was bedeutet das für KI und was gilt in Deutschland?

KI-Training und Urheberrecht: US-Gericht setzt auf Fair Use – was bedeutet das für KI und was gilt in Deutschland?

26. June 2025
KI-Codetools und Open-Source-Lizenzen: Risiken für Entwickler

KI-Codetools und Open-Source-Lizenzen: Risiken für Entwickler

25. June 2025

Podcastfolge

Rechtskette beim Spieleentwickler

Rechtskette beim Spieleentwickler

19. April 2025

In dieser kurzen Episode diskutieren Anna und Max die Bedeutung der Rechtekette im Game Development – ein zentraler Aspekt für...

Read moreDetails
Rechtliche Herausforderungen innovativer Geschäftsmodelle

Rechtliche Herausforderungen innovativer Geschäftsmodelle

26. September 2024
Rechtliche Grundlagen und Praxis von Open Source in der Softwareentwicklung

Rechtliche Grundlagen und Praxis von Open Source in der Softwareentwicklung

19. April 2025
Der unkonventionelle Anwalt: Ein Nerd im Dienste des Rechts

Der unkonventionelle Anwalt: Ein Nerd im Dienste des Rechts

25. September 2024
Influencer und Gaming: Rechtliche Herausforderungen in der digitalen Unterhaltungswelt

Influencer und Gaming: Rechtliche Herausforderungen in der digitalen Unterhaltungswelt

25. September 2024

Video

Mein transparente Abrechnung

Mein transparente Abrechnung

10. February 2025

In diesem Video rede ich ein wenig über transparente Abrechnung und wie ich kommuniziere, was es kostet, wenn man mit...

Read moreDetails
Faszination zwischen und Recht und Technologie

Faszination zwischen und Recht und Technologie

10. February 2025
Meine zwei größten Herausforderungen sind?

Meine zwei größten Herausforderungen sind?

10. February 2025
Was mich wirklich freut

Was mich wirklich freut

10. February 2025
Was ich an meinem Job liebe!

Was ich an meinem Job liebe!

10. February 2025
  • Privacy policy
  • Imprint
  • Contact
  • About lawyer Marian Härtel
Marian Härtel, Rathenaustr. 58a, 14612 Falkensee, info@itmedialaw.com

Marian Härtel - Rechtsanwalt für IT-Recht, Medienrecht und Startups, mit einem Fokus auf innovative Geschäftsmodelle, Games, KI und Finanzierungsberatung.

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
    • Laws
    • Legal terms
    • Contract types
    • Clause types
    • Forms of financing
    • Legal means
    • Authorities
    • Company forms
    • Tax
    • Concepts
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
  • en English
  • de Deutsch
Kostenlose Kurzberatung