• Mehr als 3 Millionen Wörter Inhalt
  • |
  • info@itmedialaw.com
  • |
  • Tel: 03322 5078053
Rechtsanwalt Marian Härtel - ITMediaLaw

No products in the cart.

  • en English
  • de Deutsch
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
Kurzberatung
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
Rechtsanwalt Marian Härtel - ITMediaLaw

Security precautions for e-mail traffic – Karlsruhe Higher Regional Court specifies requirements

10. August 2023
in Law on the Internet
Reading Time: 3 mins read
0 0
A A
0
verdict g1e83e7cbf 1280
Key Facts
  • Karlsruhe Higher Regional Court ruled on 27.7.2023 which security precautions must be observed when sending emails in business transactions.
  • The case concerned a purchase contract for a used car and a manipulated invoice that led to an incorrect bank transfer.
  • The Mosbach Regional Court dismissed the claim as it found a breach of data protection regulations that did not require end-to-end encryption.
  • The OLG overturned the ruling, but confirmed that there is no legal obligation for end-to-end encryption for company data.
  • Numerous questions about mail security, the circumstances of sending and the fulfillment of the claim remain unanswered.
  • The decision makes it clear that appropriate protective measures are required, while absolute safety cannot be guaranteed.
  • Problems such as social engineering and phishing pose significant challenges for e-mail communication in a business context.

In a ruling published on July 27, 2023 (19 U 83/22), the Karlsruhe Higher Regional Court addressed the question of which security precautions must be observed when sending e-mails in business dealings. However, the decision raises more questions than it answers.

Content Hide
1. The initial case
2. The decision of the lower court
3. The decision of the appellate court
4. Problem in the decision
5. Problem of fulfillment in case of transfer
6. Security issues with e-mail communication
7. Conclusion
7.1. Author: Marian Härtel

The initial case

Between the plaintiff, acting as seller, and the defendant, acting as buyer, a contract of sale was concluded for a used car at a price of 13,500 euros. The plaintiff sent the buyer an invoice for the purchase price by e-mail. Shortly after, the buyer received another email with a manipulated invoice. He transferred the purchase price to the account specified in this. The seller then sued the buyer for payment of the purchase price.

The decision of the lower court

At first instance, the Mosbach Regional Court dismissed the action. It considered the claim for payment of the purchase price by the transfer to the wrong account under § 362 para. 1 BGB as fulfilled. The “orientation guide” of the data protection commissioner for the protection of personal data referred to by the district court obliges the vendor to use end-to-end encryption. Your breach of this had enabled the third party’s access.

The decision of the appellate court

In the second instance, the Karlsruhe Higher Regional Court overturned the verdict and ordered the buyer to pay the purchase price of 13,500 euros. It clarified that there was no legal obligation for end-to-end encryption, as it concerned corporate data. The payment to a wrong account did not satisfy the claim.

Problem in the decision

However, the decision raises more questions than it answers:

  • It remains unclear how the fake e-mail could have come about in the first place.
  • The circumstances of the mail dispatch are not clarified.
  • Whether there is a legal problem or the parties have failed procedurally is not discussed.
  • The key question of who paid the fake bill remains unanswered.

Problem of fulfillment in case of transfer

As a general rule, when a sum of money is transferred, performance has not occurred until the amount owed is received in the creditor’s account. The transfer to a wrong recipient account does not fulfill the requirement. So the problem here is not the safety standards, but the lack of compliance.

Security issues with e-mail communication

Still, the case raises questions about email security:

  • Absolute safety is not owed, but adequate protective measures are.
  • There are no binding standards for securing e-mails in business transactions.
  • Technical solutions such as encryption are reaching their limits.
  • Responsibility lies with both the sender and the receiver.
  • Social engineering, phishing and fake senders are major problems.

Conclusion

The ruling problematizes security standards for e-mail traffic, but does not clarify the core issues. Neither the cause nor the circumstances of the mail dispatch are clarified. The decision makes it clear that email security remains an unresolved issue. Absolute security is impossible, but adequate precautions are mandatory. Increased caution and technical protection are required, especially for sensitive business information.

The full ruling is available here.

Marian Härtel
Author: Marian Härtel

Marian Härtel ist Rechtsanwalt und Fachanwalt für IT-Recht mit einer über 25-jährigen Erfahrung als Unternehmer und Berater in den Bereichen Games, E-Sport, Blockchain, SaaS und Künstliche Intelligenz. Seine Beratungsschwerpunkte umfassen neben dem IT-Recht insbesondere das Urheberrecht, Medienrecht sowie Wettbewerbsrecht. Er betreut schwerpunktmäßig Start-ups, Agenturen und Influencer, die er in strategischen Fragen, komplexen Vertragsangelegenheiten sowie bei Investitionsprojekten begleitet. Dabei zeichnet sich seine Beratung durch einen interdisziplinären Ansatz aus, der juristische Expertise und langjährige unternehmerische Erfahrung miteinander verbindet. Ziel seiner Tätigkeit ist stets, Mandanten praxisorientierte Lösungen anzubieten und rechtlich fundierte Unterstützung bei der Umsetzung innovativer Geschäftsmodelle zu gewährleisten.

Tags: E‑mailIT Security

Weitere spannende Blogposts

Game promotion: take advantage of opportunities with professional advice!

Game promotion: take advantage of opportunities with professional advice!
27. November 2019

The situation The entire industry of computer game developers in Germany is certainly pleased that the Federal Government has decided...

Read moreDetails

Unsuccessful constitutional complaint against obligation to transmit IP addresses

Court case via internet chat
7. November 2022

It does not violate the German Basic Law that the provider of an e-mail service is obliged, in the context...

Read moreDetails

Online shops and obligation to take back electrical appliances

Online shops and obligation to take back electrical appliances
18. July 2019

In a recent judgment, the Landgericht Duisburg ruled that the obligation to take back old electronic devices also applies to...

Read moreDetails

Permission to send an e-mail, allows to send an e-mail

Copyright in the digital world: What’s next for AI image generators?
21. February 2023

The headline for this blog post sounds a bit like a click trap, doesn't it? However, there is a funny...

Read moreDetails

Demolition hunters on eBay not necessarily abused by law

Taxes on regular eBay sales
11. July 2019

The Federal Court of Justice recently delivered an interesting verdict on an old phenomenon, the so-called demolition hunters. In the...

Read moreDetails

Attorney Härtel in the metaverse – so somehow: The chatbot

Attorney Härtel in the metaverse – so somehow: The chatbot
12. January 2023

AIs are currently on everyone's lips. And all tech-savvy lawyer who is an IT nerd myself and primarily advises and...

Read moreDetails

Digitization of contract creation and client communication

Digitization of contract creation and client communication
7. November 2022

Currently, I am working and planning on a major change that I hope will roll out in 2021. Although I...

Read moreDetails

Debcon – the fax garbage probably starts again

File sharing and instruction by parents
7. November 2022

Debcon is a red rag for numerous IT lawyers who also handle file-sharing cease-and-desist letters. The reason for this is...

Read moreDetails

Attention: Vouchers to existing customers can be advertising!

Attention: Vouchers to existing customers can be advertising!
12. December 2018

In the case of a gaming chair, the District Court of Frankfurt (Az.: 2-03 O 372/17) has decided that sending...

Read moreDetails
Scrum contract

Scrum contract

16. October 2024

A scrum contract is a special form of IT project contract that takes into account the principles and methods of...

Read moreDetails

GmbH & Co. OHG

10. November 2024
Federal Ministry of Justice and Consumer Protection (BMJV)

Federal Ministry of Justice and Consumer Protection (BMJV)

1. July 2023
White Paper

White Paper

10. November 2024
Sales representative

Sales representative

1. July 2023

Podcast Folgen

8315f1ef298eb54dfeed2f5e55c8b9da 1

Erste Testfolge des ITMediaLaw Podcast

26. August 2024

Erste TestfolgeLiebe Leserinnen und Leser,ich freue mich, heute den ersten Testlauf unseres brandneuen IT Media Law Podcasts zu präsentieren! In diesem Podcast...

Rechtliche Herausforderungen und Chancen durch KI-Influencer und virtuelle Mitarbeitende

Rechtliche Herausforderungen und Chancen durch KI-Influencer und virtuelle Mitarbeitende

19. April 2025

In dieser Episode wird die rechtliche Einordnung von virtuellen Mitarbeitenden und KI-Influencern im Marketing untersucht. Der Fokus liegt auf den...

Die Romantisierung des Prinzips ‘Fail Fast’ in Startups – Wann wird Scheitern zur Täuschung gegenüber Beteiligten?

Die Romantisierung des Prinzips ‘Fail Fast’ in Startups – Wann wird Scheitern zur Täuschung gegenüber Beteiligten?

20. April 2025

In diese Episode wird die komplexe Beziehung zwischen dem 'Fail Fast'-Prinzip und den Verantwortlichkeiten der Gründer gegenüber Investoren und Mitarbeitern...

Rechtliche Herausforderungen innovativer Geschäftsmodelle

Rechtliche Herausforderungen innovativer Geschäftsmodelle

26. September 2024

In dieser fesselnden Podcast-Episode tauche ich als IT- und Medienrechtsanwalt tief in die Welt der rechtlichen Herausforderungen ein, die mit...

  • Privacy policy
  • Imprint
  • Contact
  • About lawyer Marian Härtel
Marian Härtel, Rathenaustr. 58a, 14612 Falkensee, info@itmedialaw.com

Marian Härtel - Rechtsanwalt für IT-Recht, Medienrecht und Startups, mit einem Fokus auf innovative Geschäftsmodelle, Games, KI und Finanzierungsberatung.

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
  • en English
  • de Deutsch
Kostenlose Kurzberatung