Papers & Books

Consent for personal data processing under GDPR One of the basic principles of personal data processing under the EU’s General Data Protection Regulations (“GDPR”) is the lawfulness principle. This means that the processing of personal data must have a lawful basis. The most common basis that is generally relied upon for personal data processing is […]

EU Artificial Intelligence Act In April 2021, the European Commission proposed the first EU regulatory framework for artificial intelligence (AI). The proposed AI act is the first-ever attempt to enact a horizontal regulation for AI. Now the EU lawmakers are starting negotiations to finalize the new regulations, with substantial amendments to the Commission’s proposal including […]

Record of processing activities under GDPR A data controller (or processor) under the EU’s General Data Protection Regulation (“GDPR”) has many obligations it must adhere to in order to best protect the personal data being processed. One such obligation is creating and maintaining a Record of Processing Activities (“RoPA”). This is a basic yet effective […]