Michael Morgenthaler, CIPP/E, CIPP/IT

Deputy Data Protection Officer, Information Security Manager

Michael Morgenthaler is working in Information Security and since 2007 especially in Data Protection and Privacy at SAP AG, Germany. He joined SAP in 2001 and has a broad knowledge and professional expert skills in information security, audit and the legal requirements of European Data Protection Law as well as the relevant global equivalents.

He has certifications as Certified Information Privacy Professional (CIPP/IT) and Europe (CIPP(E)), as Certified Information Security Manager (CISM) and Certified Information System Auditor (CISA) and is member of the board of ISACA Germany Chapter.

As the Deputy Data Protection Officer of SAP AG, Michael is involved in all areas relating to data protection and privacy and processing of personal data by SAP.  In this position he regularly interacts with customers as well with suppliers who process personal data during outsourced business processes.

Mr.Morgenthaler is co-author of the ISACA Germany publication “Audit Guideline for Contractual Data Processing” (in German, published 2011). He is regularly presenting on national and international conferences about Webtracking/WebAnalytics, Data Protection Management Systems and general Data Protection topics.