Data protection regulations place legal responsibility upon the shoulders of the data controller who determines how and why personal data of individuals is processed. Policies are important to limit liability but also to avoid commercial and reputation risks.

Data protection and security policies are needed for different reasons. They may be public facing statements of a company's commitment and approach to the collection and use of customer personal data or an internal policy directed at telling employees how personal data collected about them will be handled.


I have expertise in several international data protection and privacy projects in which I provide advice on compliance with data privacy legislation and offer practical approach with regard to key privacy issues, including:
  • Privacy policies & data management plans;
  • Consent forms;
  • Notification to data protection authorities;
  • Security policies;
  • Data processing agreements;
  • Employee monitoring & access to e-mails and logfiles;
  • Data breach notifications;
  • Data retention obligations;
  • Direct marketing;
  • Online advertising and use of cookies;
  • International data transfers (including model contracts and Binding Corporate Rules).
My activity consists of legal reviews, legal opinions, preparation of legal documentation and agreements, legal monitoring of the execution of contracts, participation in negotiations and amicable dispute settlements. 


Contact me