John-Markus Maddaloni is a member of our Data & Technology practice, advising on the full spectrum of European – and particularly German – regulations governing data, cybersecurity, and artificial intelligence (AI). 

His expertise spans both established legal frameworks (such as GDPR) and the emerging digital rulebook (including DORA, the AI Act, and the Data Act). John-Markus supports organisations in designing and implementing complex compliance strategies and programmes, helping them navigate overlapping and rapidly evolving regulatory landscapes. With a deep understanding of technology, he translates legal requirements into practical operational processes – covering areas such as governance design, product assessments, and incident response. He also advises clients in regulatory investigations, litigation, and transactions involving data, cybersecurity, and AI.

John-Markus is fluent in German and English.