Rechtsanwalt · Attorney-at-law · Since 1999

Uncharted territory,
navigated.

Where legal precision meets strategic creativity.

Cyberlaw & Software Licensing

Licensing, SaaS, enterprise contracts. Contract negotiation and dispute resolution.

Litigation

Litigation, arbitration, WIPO proceedings.

Cybersecurity

Incident response, NIS2 compliance, regulatory frameworks.

Asset Recovery

Crypto, blockchain, cross-border tracing. Working exclusively with the finest investigation agencies in the market.

AI & Emerging Tech

EU AI Act, smart contracts, regulation.

IP & Media Law

Patents, trade secrets, digital rights.

No precedent?No problem.

Represented the Federal Republic of Germany at WIPO when neo-Nazis hijacked kanzleramt.biz. Built a novel argument for unregistered government trademark rights — a first in domain arbitration. Domain transferred.

WIPO Case D2002-0599 →

Software contracts,secured.

Software doesn’t respect borders. Neither should your licensing strategy. Contracts built for how technology actually moves.

When an encryption technology company needed clients to audit their code without open-sourcing it, we pioneered a new model: published source code under proprietary license protection. Full transparency, zero IP loss — a framework that didn’t exist until we built it.

Regulatory Insight

NIS2 compliance,sorted.

⚠ NIS2 Directive — In force across the EU

The NIS2 Directive has fundamentally expanded the scope of mandatory cybersecurity obligations across the EU. Where NIS1 covered a narrow set of operators, NIS2 now captures mid-size and large entities across 18 critical sectors — from energy and transport to digital infrastructure, manufacturing, and financial services.

Non-compliance carries significant exposure: fines up to €10 million or 2% of global turnover for essential entities, plus personal liability for management. We advise on gap analyses, incident reporting obligations, supply chain security requirements, and board-level governance — before regulators come calling.

Discuss your NIS2 posture →

Are you in scope?

NIS2 applies to mid-size (50+ employees or €10M+ turnover) and large entities in 18 sectors. Many companies are surprised to discover they qualify — including managed IT service providers, waste management, and postal services.

Incident reporting: 24 hours

Significant incidents must be reported to the national authority within 24 hours of becoming aware of them. A full report follows within 72 hours. Getting this process right before an incident occurs is essential.

Management liability

Unlike NIS1, NIS2 explicitly holds management bodies accountable for cybersecurity risk oversight. Directors who fail to implement adequate measures can face personal liability. Governance documentation is no longer optional.

Supply chain obligations

Entities must assess and address cybersecurity risks in their supply chains — including contractual obligations on vendors. This has significant implications for procurement, vendor due diligence, and existing contract portfolios.

Your data,protected.

GDPR, cybersecurity regulation, cross-border data transfers — navigated with precision.

Stolen assets,recovered.

Former Global Head of Blockchain Partnerships at Deutsche Telekom. First-hand crypto expertise applied to tracing and recovering assets — across jurisdictions, chains, and borders.

Asset recovery demands more than legal knowledge — it requires operational intelligence and a trusted network. We work exclusively with the finest investigation and intelligence agencies in the market, bringing together legal strategy and on-the-ground expertise to maximise recovery outcomes.

The regulators aren’t ready.Enforcement isn’t delayed.

August 2, 2026. That’s when EU AI Act penalties go live — up to €35M or 7% of global turnover. The Commission missed its own deadline for high-risk guidelines. Standardization bodies missed theirs too.

If you’re deploying AI in the EU and haven’t classified your systems by risk category, you’re running out of runway. High-risk systems in hiring, credit scoring, or law enforcement need conformity assessments, technical documentation, and EU database registration — all before August. The Digital Omnibus may buy breathing room, but betting your compliance on a legislative delay is not a strategy.

Friedrich Kurz
About

Counsel for
uncharted territory.

Rechtsanwalt Friedrich Kurz, MBA (GB). Practicing since 1999 with a focus on the legal frontiers of technology — where regulation is still catching up to innovation.

EU AI Act compliance, NIS2 cybersecurity regulation, cross-border asset protection — areas where established playbooks don't exist yet. Clients include intelligence consultancies, software companies, and investment funds.

Previously Global Head of Blockchain Partnerships at Deutsche Telekom. WIPO domain dispute veteran (D2002-0599).

25+
Years in practice
MBA
University of Bradford, UK
WIPO
Domain dispute pioneer
DT
Global Head Blockchain, Deutsche Telekom
How I Work

Senior partner expertise.Without the overhead.

A lean, fully digital practice means no layers, no delegation, no associates learning on your file. You work with me — directly, every time.

No physical office overhead, no jurisdictional constraints: I operate wherever the matter requires, on your timeline. The result: large-firm quality counsel at a fraction of large-firm rates.

Fee structures are discussed openly in the first conversation.

Quarter-hour billing

Transparent, precise, no rounding up. You pay for what you get.

Retainer model

Predictable costs and priority access for ongoing advisory needs.

Fully digital

Cloud-based, location-independent, available across time zones.

Direct access

No associates, no juniors. Your matter gets senior attention from day one.

One of the few solution oriented lawyers I know and clearly one with the best understanding of complex matters and implications of technology. When time is at essence, there’s no one I’d rather have on the phone.
Benjamin Rohé
CEO, Monarch
Friedrich has an in-depth understanding of both technology and, of course, legal matters. But above all, he has an unerring eye for the key risks involved in contract drafting and negotiation, and knows how to implement them elegantly. Truly a great help and a very effective long-term ally at your side.
Lukas Weber
Co-Founder, Vimcar

Ready to protect
your innovation?

Phone
+49 30 23 88 98 40
Fax
+49 30 23 88 98 41
Email
fk@smartcontracts.berlin
LinkedIn
Connect →

Rechtsanwalt Friedrich Kurz, MBA · Dubrowstraße 18 · 14163 Berlin

Impressum — Legal Notice

Information pursuant to § 5 TMG

Rechtsanwalt Friedrich Kurz, MBA
Dubrowstraße 18
14163 Berlin, Germany

Contact

Phone: +49 30 23 88 98 40
Fax: +49 30 23 88 98 41
Email: fk@smartcontracts.berlin

Professional Designation

Rechtsanwalt (Attorney-at-law), Federal Republic of Germany. Member of Rechtsanwaltskammer Berlin. Admitted to all Amts-, Land- and Oberlandesgerichte.

Rechtsanwaltskammer Berlin · Littenstraße 9 · 10179 Berlin · rak-berlin.de

Professional Regulations

  • Bundesrechtsanwaltsordnung (BRAO)
  • Berufsordnung für Rechtsanwälte (BORA)
  • Fachanwaltsordnung (FAO)
  • Rechtsanwaltsvergütungsgesetz (RVG)

brak.de/fuer-anwaelte/berufsrecht/

Professional Liability Insurance

HDI Gerling Firmen und Privat Versicherung AG
Postfach 10 22 51 · 70018 Stuttgart

Privacy Policy

This is a static website. No cookies, no tracking, no data collection. When you contact us, your data is processed under Art. 6(1)(b)/(f) GDPR for handling your request only.

Supervisory authority: Berliner Beauftragte für Datenschutz und Informationsfreiheit

datenschutz-berlin.de