Employee Monitoring Laws in Germany: Works Council & Compliance Guide

The Legal Framework for Employee Monitoring in Germany

Employee monitoring in Germany operates under a layered legal structure. Three primary laws govern what employers can and cannot do: the GDPR at the EU level, the BDSG at the national level, and the Betriebsverfassungsgesetz (BetrVG) for workplaces with a works council. Understanding how these layers interact is essential before deploying any monitoring tool on German soil.

How do these three laws work together in practice? The GDPR sets the baseline data protection standard across Europe. The BDSG supplements GDPR through Germany's use of the GDPR opening clause in Article 88, adding employment-specific provisions in Section 26. The BetrVG then adds an entirely separate obligation: co-determination. Even if monitoring is lawful under GDPR and BDSG, it cannot proceed without works council agreement where a Betriebsrat exists.

BDSG Section 26: The Employment Data Provision

BDSG Section 26(1) permits the processing of employee personal data when it is necessary for deciding on the establishment of an employment relationship, for carrying out the employment relationship, or for its termination. This provision serves as the primary legal basis for monitoring in German workplaces. The key word is "necessary": employers must demonstrate that monitoring is genuinely required for the stated purpose, not merely convenient or desirable.

Section 26(2) allows data processing based on employee consent, but German courts apply strict scrutiny to whether consent is truly voluntary. The Federal Labour Court (Bundesarbeitsgericht, BAG) has repeatedly noted the inherent power imbalance in employment relationships. Consent must be in writing, given before monitoring begins, and employees must face no negative consequences for refusing.

GDPR Obligations That Apply in Germany

German employers must meet all standard GDPR obligations alongside BDSG requirements. These include conducting a Data Protection Impact Assessment (DPIA) under Article 35 before deploying monitoring, providing transparent information to employees under Articles 13 and 14, applying data minimization principles under Article 5(1)(c), and establishing appropriate retention periods. For a full breakdown of GDPR requirements, see our GDPR employee monitoring compliance guide.

The Grundgesetz: Constitutional Personality Rights

Germany's Basic Law (Grundgesetz) provides constitutional protection for personal dignity (Article 1) and free development of personality (Article 2). German courts interpret these articles as granting employees a "right to informational self-determination" (Recht auf informationelle Selbstbestimmung), established by the Federal Constitutional Court in its landmark 1983 Census Decision. This constitutional right means that disproportionate monitoring can be struck down even when other legal bases appear to be met.

What Employee Monitoring Is Allowed in Germany?

German law permits employee monitoring when it meets three cumulative conditions: there is a lawful basis under BDSG Section 26, the monitoring is proportionate to the stated purpose, and works council co-determination requirements are satisfied. The proportionality assessment is where most employers face practical challenges, because German courts apply a stricter standard than many other EU jurisdictions.

What types of monitoring typically pass the proportionality test? German data protection authorities and labour courts have established patterns through case law and guidance that clarify the boundaries.

Generally Permitted (With Proper Basis)

• Application and website usage logging: Tracking which work applications and websites employees use during work hours, classified as productive or non-productive. The Federal Data Protection Commissioner considers this proportionate when limited to business applications and work hours.
• Work hours and attendance tracking: Automated clock-in and clock-out recording, break tracking, and overtime calculation. The 2019 European Court of Justice ruling in CCOO v. Deutsche Bank confirmed that employers are obligated to record working time accurately.
• Periodic screenshot capture: Screenshots taken at defined intervals (typically every 5 to 15 minutes) during work hours, provided employees are notified. Screenshots must be limited to work applications, and personal content should be blurred or excluded.
• Aggregated productivity analytics: Team-level productivity reports and trend analysis based on activity data. Individual-level performance scoring requires additional justification and is subject to stricter scrutiny.
• IT security monitoring: Monitoring for unauthorized access, data exfiltration attempts, malware, and security policy violations. Courts give employers broader latitude for security-motivated monitoring under Section 26(1) BDSG.

Prohibited or Heavily Restricted

• Continuous video monitoring of workstations: The BAG has ruled that permanent camera monitoring of individual workstations violates employee personality rights. Video monitoring is permitted only in specific areas with documented security justification (cash registers, server rooms) and clear signage.
• Keystroke content capture: Recording the actual content of what employees type (as opposed to measuring keystroke activity intensity) exceeds proportionality in the view of most German data protection authorities.
• Private email and messaging monitoring: When employers permit private use of work email or devices, monitoring private communications is prohibited. Even when private use is banned, monitoring email content (rather than metadata) faces significant legal risk.
• Audio recording without consent: Section 201 of the German Criminal Code (StGB) criminalizes recording private conversations without the consent of participants. This applies to all workplace audio recording outside of explicitly consented call center quality assurance scenarios.
• Covert monitoring without criminal suspicion: Secret monitoring is permitted only when there is a documented, concrete suspicion of a criminal act, less intrusive measures have been exhausted, and the monitoring is limited in scope and duration. The BAG confirmed these requirements in its 2017 decision (2 AZR 681/16).

How to Deploy Compliant Employee Monitoring in Germany: Step by Step

Deploying employee monitoring software in Germany requires a structured process that addresses legal, organizational, and technical requirements simultaneously. Skipping steps or reversing the order creates legal exposure. The following sequence reflects the order that German data protection authorities and labour lawyers recommend.

1. Conduct a Data Protection Impact Assessment (DPIA): Before selecting software or approaching the works council, document the monitoring purpose, the types of data you plan to collect, the legal basis under BDSG Section 26, risks to employee rights, and mitigation measures. The DPIA is required under GDPR Article 35 and forms the foundation for all subsequent steps.
2. Define the monitoring scope: Based on the DPIA, determine which monitoring features are necessary and proportionate. Apply the three-step proportionality test to each feature. Document why each feature is suitable, necessary, and appropriate. Document which alternatives you considered and rejected.
3. Engage the Betriebsrat: Present the DPIA and proposed monitoring scope to the works council. Provide technical documentation about the monitoring software's capabilities, including features that will be disabled. Allow the Betriebsrat time to review, ask questions, and consult with external experts if requested. German law allows the works council to retain external technical or legal advisors at the employer's expense (BetrVG Section 80(3)).
4. Negotiate the Betriebsvereinbarung: Draft a works agreement that specifies every element of the monitoring program: features activated, data collected, retention periods, access controls, employee notification procedures, complaint mechanisms, and audit schedules. Both parties sign the agreement before any software installation begins.
5. Notify employees in writing: Inform all affected employees about the monitoring program before it starts. The notification must cover what is monitored, why, who has access to the data, how long data is retained, and employees' rights under GDPR Articles 15 through 22. German best practice is to provide this notification in both digital and paper form, with employee acknowledgment.
6. Configure the software: Set up the monitoring tool to match the Betriebsvereinbarung exactly. Disable any features not covered by the agreement. Configure work-hours-only collection, data retention auto-deletion, role-based access controls, and any screenshot blurring or content exclusion rules. eMonitor supports all of these configurations out of the box.
7. Document and audit: Maintain records of the DPIA, Betriebsvereinbarung, employee notifications, software configuration, and any changes over time. Schedule periodic audits (the Berlin Commissioner for Data Protection recommends annual reviews) to verify that actual monitoring practices match the documented agreement.

Organizations without a works council skip steps 3 and 4 but must still complete the DPIA, define proportionate scope, notify employees, and configure the software to match. The absence of a Betriebsrat does not reduce BDSG or GDPR obligations.

Key German Court Decisions on Employee Monitoring

German court rulings provide the most reliable guidance on what monitoring practices survive legal challenge. The Federal Labour Court (BAG) and Federal Constitutional Court (BVerfG) have issued decisions that define the practical boundaries of workplace monitoring. These rulings carry significant weight because German labour law operates heavily on precedent.

Which decisions matter most for employers deploying monitoring software? The following cases represent the most frequently cited precedents.

BAG, 2 AZR 681/16 (2017): Covert Monitoring Limits

The BAG ruled that covert video monitoring of an employee suspected of theft was unlawful because the employer had not exhausted less intrusive measures first. The court established that covert monitoring requires: (1) a concrete suspicion of a criminal act or serious breach, (2) no less intrusive means of investigation, and (3) proportionate scope and duration. Evidence obtained in violation of these conditions is inadmissible in dismissal proceedings.

BAG, 1 ABR 16/17 (2019): Software-Based Behavioral Monitoring

The BAG confirmed that software capable of recording keystrokes and taking screenshots constitutes a "technical device designed to monitor behavior" under Section 87(1)(6) BetrVG, triggering mandatory co-determination. The employer had argued that the software's primary purpose was IT security, not behavioral monitoring. The court rejected this argument, holding that the software's capability to monitor behavior, regardless of its stated purpose, triggers co-determination rights.

ECHR, Barbulescu v. Romania (2017): Notice Requirement

While not a German court, the European Court of Human Rights ruling in Barbulescu v. Romania directly affects German monitoring law. The Grand Chamber held that employers must inform employees before monitoring begins, specify the nature and extent of monitoring, explain the degree of intrusion, and provide legitimate reasons. German courts reference this decision when evaluating whether employers met their notification obligations.

ECJ, CCOO v. Deutsche Bank (2019): Working Time Recording Obligation

The European Court of Justice ruled that EU member states must require employers to establish objective, reliable, and accessible systems for measuring daily working time. This decision strengthened the legal basis for time tracking systems in Germany and led to ongoing legislative efforts to codify working time recording requirements in German law. Employers can cite this ruling as supporting justification for time and attendance monitoring.

Remote Employee Monitoring Under German Law

Remote work in Germany expanded significantly after 2020, with the Federal Statistical Office (Destatis) reporting that 24.2% of German employees worked from home at least partially in 2023. This shift raised new legal questions about monitoring employees outside the traditional office environment.

Does remote work change the monitoring rules? The legal framework remains identical: BDSG Section 26, GDPR, and BetrVG co-determination apply regardless of where the employee works. However, practical application differs because home environments introduce third-party data (family members, personal belongings, private activities visible in the background).

Additional Safeguards for Remote Monitoring

German data protection authorities have issued guidance recommending specific safeguards for remote monitoring: screenshot capture must blur or exclude personal content visible on screen; webcam activation for monitoring purposes is prohibited without explicit, voluntary, written consent; audio recording is prohibited in home environments; monitoring must be limited to work hours with clear start and end boundaries; and employees must have the ability to pause monitoring for personal activities during breaks.

eMonitor addresses these requirements through work-hours-only tracking (monitoring activates only when the employee clocks in), configurable screenshot blurring, and the absence of webcam or audio monitoring features that would create compliance risk in German home offices.

Common Compliance Mistakes When Monitoring Employees in Germany

German monitoring compliance failures typically fall into predictable patterns. Based on published decisions from German data protection authorities and labour courts, the following mistakes recur most frequently.

Deploying Software Before Betriebsrat Agreement

The most common and most consequential mistake. Some employers install monitoring software during a "trial period" and plan to negotiate with the works council afterward. German labour courts have consistently ruled that even a trial installation triggers Section 87(1)(6) co-determination rights. The Betriebsrat can seek an injunction, and any data collected during the unauthorized period is inadmissible. In one case before the Arbeitsgericht Muenchen, an employer was ordered to delete six months of monitoring data collected without works council agreement.

Using Global Monitoring Policies Without German Adaptation

Multinational companies frequently attempt to apply their global monitoring policy in Germany without modification. A monitoring policy that is lawful in the United States or United Kingdom may violate German proportionality standards, co-determination requirements, or both. German subsidiaries of international companies need a Germany-specific Betriebsvereinbarung that reflects local legal requirements, even when the parent company operates under different standards elsewhere.

Failing to Distinguish Capability from Activation

German works councils and data protection authorities evaluate monitoring software based on its full technical capabilities, not just the features currently activated. If the software is capable of keystroke logging, the Betriebsvereinbarung must address keystroke logging, even if the employer does not plan to use it. eMonitor's approach of granular, independently toggleable features helps here: the Betriebsvereinbarung can explicitly list which features are enabled and which are contractually disabled, reducing the scope of what the works council must evaluate.

Repurposing Compliance Data for Performance Evaluation

Data collected for one purpose (IT security, time tracking, regulatory compliance) cannot be repurposed for a different purpose (performance evaluation, disciplinary action) without a separate legal basis. German courts apply the purpose limitation principle strictly. An employer who collects time tracking data for payroll purposes cannot later use that same data to build a case for dismissal based on productivity concerns without demonstrating a separate lawful basis under BDSG Section 26.

Frequently Asked Questions About Employee Monitoring in Germany

Related Compliance and Feature Resources