Risks associated with manipulation and dissemination of private data are an increasingly recognized security concern. In response to this development, this chapter sheds light on privacy in the context of digital networks. More precisely, legal means for personal data protection in an Internet environment is the focal point. In addition to legal means, information security is conceived of as a critical success factor and will therefore also be taken into consideration. Of particular interest in this context is the new EU General Data Protection Regulation (GDPR) that will be applicable as law in all Member States by 25 May 2018. The analysis presented in the chapter emphasizes the importance of the EU’s responsibility to protect its citizens from privacy infringements due to insufficient security measures. Only time will tell how efficient the somewhat new legal requirements for information security such as pseudonymization as laid down in the GDPR will turn out in practice.