Personal data protection

Approach

The GDPR (General Data Protection Regulation), adopted in 2016 and effective since 2018, has revolutionized personal data protection in Europe and beyond.

All companies, organizations, and independent professionals are affected. Today, virtually every professional processes personal data — such as names, emails, phone numbers, addresses, bank details, or administrative information — whether concerning clients, employees, or business partners.

Despite this, very few professionals are fully compliant. Even those who once achieved compliance must regularly update their documentation and practices to reflect their current data processing activities.

Beyond the significant risk of sanctions, GDPR compliance is above all a mark of respect for individuals and the protection of their personal information within your professional ecosystem.

I can assist you at every stage of your GDPR compliance journey!

Area of practice

GDPR compliance audits
Records of processing activities (RoPA)
Privacy policies for clients, employees, and business partners
Cookie management policies
Data processing agreements (DPAs)
Contractual clauses for international data transfers outside the European Economic Area (EEA)
Review of contractual clauses relating to data protection across various agreements
IT and data privacy charters
Information security policies
Advisory services on best practices in specific areas (video surveillance, health data hosting, website user journey, etc.)
Data Protection Impact Assessments (DPIA)
Exercise of data subject rights on behalf of individuals
Assistance in responding to data subject requests for professionals
Pre-litigation (formal notice letters) and litigation in cases of GDPR non-compliance
Data breach notifications to the CNIL and affected individuals
External Data Protection Officer (DPO) services

Areas of expertise

Intellectual property

Protection and enhancement of copyrights, trademarks, and other intangible
assets