Principaux dossiers

Principaux dossiers

Principaux dossiers

• Joined 26 organisations in a European Commission-funded project that draws on big data to improve the health and well-being of European citizens. The team carries out legal research and analysis while monitoring to ensure the project complies with the requirements of the EU General Data Protection Regulation (GDPR) and privacy.
  
• Leading a consortium of legal experts overseeing the European Blockchain Sandbox, one of the most high-profile developments in the European Tech sector in recent times.
  

Principaux dossiers

Principaux dossiers

• Representing the social network app Grindr before several EU data protection authorities and related to the compliance of this App with the GDPR. Also advised Grindr on key EU regulatory matters, including GDPR, the Digital Services Act, and the AI Act, and led the development of the company’s EU engagement strategy, coordinating with EU institutions, Member State regulators, and diplomatic missions. Provided strategic counsel on platform governance, LGBTQ+ safety, and health data, including crisis response and public affairs engagement.
  
• Advised ByteDance (TikTok) in multiple lawsuits against the popular social media platform TikTok in the United States on EU regulatory matters and provided advice on various regulatory submissions before the European Commission under EU digital rules, such as the Digital Service Act and Digital Markets Act. Also provided strategic public policy advice for ByteDance’s EU regulatory strategy.
  
• Representing Booking Holdings, the well-known travel services intermediary, in legal proceedings in the U.S. against Ryanair. The European data protection team supported these proceedings on issues relating to data access requests.
  

Principaux dossiers

• Assisting Companyweb during a data protection vendor due diligence, which led to its acquisition by Altares Dun & Bradstreet.
  
• Assisting Resmed as their external Data Protection Officer. This involves advising the company on all data protection related matters, such as, amongst others, the concepts of controller and processor, data processing agreements, international data transfer issues, general GDPR compliance matters and complex issues involving processing of health data.
  
• Advised Utiq on various aspects of the e-Privacy Directive and the recently adopted Data Governance Act.
  

Principaux dossiers

• Advising Komatsu on international GDPR compliance.
  
• Assisting Samsonite Europe in a comprehensive GDPR audit of its pan-European marketing infrastructure and campaigns.
  
• Representing some digital privacy organisations in high-profile GDPR infringement proceedings before the Brussels Court of Appeal against the European ad-tech sector organisation IAB Europe.
  

Principaux dossiers

• Lead global data protection counsel for Mastercard, including, in the EU, advising the client on the roll-out of various new products and services, and on EU fintech regulations such as DORA and FIDA.
  
• Advising OpenAI on a number of EU data protection compliance and AI regulatory matters and ongoing data protection investigations.
  
• Advising Google on numerous regulatory issues, including the interplay between the GDPR and the DMA and the consequences of the draft regulation on the cross-border investigation under the GDPR.
  

Principaux dossiers

• Represented Mediahuis in an appeal against a data protection case initiated by NOYB before the Belgian data protection authority regarding cookie banner design. Obtained the annulment of the DPA’s decision, which also led to the dismissal of several other complaints filed by NOYB with the Belgian Data Protection Authority against other service providers.
  
• Assists Google in litigation before the Belgian Data Protection Authority and before the regular courts regarding the right to be forgotten.
  
• Assists a leading online advertisement platform in a cease-and-desist action before the courts regarding cookie consent.
  

Principaux dossiers

Principaux dossiers

• Acting as a trusted legal advisor for data protection, EU data regulation and cybersecurity to bpost NV (the Belgian postal operator) for wide-ranging advisory, compliance and contentious matters, including advice on recent EU data legislation, and acting in important proceedings before the Belgian Data Protection Authority.
  
• Advising Unia and Myria on a comprehensive data protection compliance project, including assistance on data protection compliance documents, privacy notices and ad hoc questions from the Data Protection Officer.
  
• Assisting Levi Strauss on multiple aspects of data protection compliance, including in the context of online advertising, and acting as their go-to data protection legal adviser.
  

Principaux dossiers

• Advised a major energy provider on GDPR, telecom and AI Act compliance in the context of deploying a company-wide AI tool, including assisting with AI system qualification, data protection strategy, consent and transparency obligations, and governance safeguards — all delivered ahead of the first AI Act deadline.
  
• Serving as a longstanding trusted advisor to Viapass, the Belgian interregional toll authority, our firm provided comprehensive legal support on the kilometre charge system, including this year on legislative drafting, contractual structuring and multi-stakeholder legal alignment across all Belgian regional governments, toll chargers and service providers.
  
• Representing a client in a landmark case on the right to be forgotten that was referred to the Court of Justice, which will define the boundaries between data protection and fundamental rights this year.
  

Principaux dossiers

Principaux dossiers

• Advises Lifeline Scientific on the analysis of data protection aspects of public tenders, including assessment and contract review regarding data transfers to China from several EU countries.
  
• Advised Euroclear, a global financial market infrastructure service provider, on a comprehensive and complex cybersecurity and data protection assessment in view of its acquisition of a strategic 49% stake in Banco Inversis.
  

Principaux dossiers

• Advised TIP, the largest EU trailers and trucks leasing and renting company, on all its high-profile data protection questions in relation to their operations, including advice on data subject access requests in the UK, the launch of a new platform and the transfer of personal data within and outside the group.
  

Principaux dossiers

• Continues to advise EFPIA, a prominent and high-profile trade body, on the application of data protection law to the collection, use and sharing of health and genetic data for scientific research purposes.
  
• Advising The Dun & Bradstreet Corporation, an American provider of commercial data, analytics, and insights for businesses, and its Austrian affiliate Bisnode on a critical case before the CJEU.
  
• Continues to assist IAB Europe, a EU industry representation acting for the interactive advertising sector, in an investigation by Supervisory Authorities.
  

Principaux dossiers

• Provide guidance to Vias Institute on negotiating data protection-specific agreements, especially with public authorities, concerning the use of personal data for road accident studies.
  
• Managed strategic GDPR implementation and compliance exercises for several multinational companies in various sectors.
  
• Provided coordinated responses and interventions for several companies in the event of large, multi-jurisdictional cyber breaches.
  

Principaux dossiers

• Assists the Belgian government in the long-lasting litigation regarding data retention and data protection in general, both before the Constitutional Court and the Court of Justice.
  
• Assists the Belgian DPA in a proceeding filed against a decision prohibiting the Ministry of Finance and banks from transferring personal data of ‘accidental’ US taxpayers to the IRS (based on FATCA).
  
• Assists the EDPB and the EDPS in all the proceedings against their decisions before the General Court and the Court of Justice.
  

Principaux dossiers

• Advise a leading global consumer packaged goods company on a range of advice related to global privacy and data protection issues.
  
• Serve as EU privacy counsel for a well-known global retailer.
  
• Provide a leading global direct selling company with a range of advice related to global privacy and data protection issues, including GDPR compliance matters, and also AI governance issues.
  

Principaux dossiers

• Representing IAB Europe, the European-level association for the digital marketing and advertising ecosystem, in litigation on the limits to the notions of “personal data” and “controller” and assisting it and the adtech industry in the management of evolutions to the widely implemented Transparency and Consent Framework.
  
• Acted as sole external counsel and strategic advisor for Danone throughout the process of the highly significant acquisition of a large database of microbiome data.
  
• Assisting and accompanying Meta in a Regulatory Sandbox project before the UK ICO relating to the use of Privacy-Enhancing Technologies for ad attribution.
  

Principaux dossiers

• Representing the Belgian Data Protection Authority before the Court of Justice in the framework of a preliminary ruling regarding the data protection law concept of “data controller” (C-231/22) and before the Market Court (Brussels Court of Appeal); before the Market Court (Brussels Court of Appeal) in the framework of annulment proceedings brought by the Belgian State (Communauté française) against a prima facie decision issued by the Authority with respect to an alleged breach of a data subject’s right to access; and, before the Market Court (Brussels Court of Appeal) in relation to two appeals launched by DPG Media against two of the DPA’s (administrative) decisions in a complaint procedure.
  
• Assisting Volkswagen AG in complying with data protection regulations for a number of different functionalities that Volkswagen AG wishes to implement in its connected vehicles
  
• Assisting Eurojust in annulment and damages proceedings initiated against this agency before the General Court of the European Union by six individuals for alleged unlawful processing by Eurojust of the applicants’ personal data (group chats and metadata) intercepted by national authorities from the servers of the crypto-communication services Sky ECC, EncroChat and Exclu.
  

Principaux dossiers

• Assisted clients with an NIS2 applicability assessment and the drafting of related compliance documentation.
  
• Represented Meta Platforms Ireland in court litigation in Belgium.
  
• Assisted and represented a client in enforcement proceedings before the Belgian Data Protection Authority.
  

Principaux dossiers

• Advised MediCheck, a digital health platform facilitating medical checks for employees via examination doctors, in the aftermath of a major cybersecurity incident involving the unauthorised access and publication of approximately 50,000 sensitive medical documents. The breach, attributed to the organised cybercriminal group Killsec, targeted MediCheck’s systems and resulted in the public release of confidential medical reports in an attempt to extort ransom payments. The compromised data related to employees of several of MediCheck’s high-profile clients, including DHL Aviation, Bpost, and H&M.
  
• Advised Ciner Glass Belgium NV on the localisation and legal compliance of its whistleblowing platform, “We Speak Up,” ensuring full alignment with Belgian data protection and whistleblowing legislation. The matter involved a comprehensive review and adaptation of the whistleblowing policy, privacy notices, and consent forms to reflect the requirements of the Belgian GDPR and the Belgian Whistleblowing Act.
  
• Selected by NMBS (the National Railway Company of Belgium) through a competitive public procurement process to provide ongoing legal support on data protection matters, with a particular focus on the deployment of new technologies.
  

Principaux dossiers

• Assisted Catalina Marketing France with data protection compliance for its loyalty programmes by conducting a detailed DPIA and Legitimate Interest Assessment to identify key risks and propose mitigation measures.
  
• Conducted an accelerated GDPR due diligence review for Strada Partners in the context of a potential M&A transaction, analysing extensive documentation to identify compliance risks. Delivered a detailed report outlining key red flags, supported by case law and regulatory guidance, and provided practical, evidence-based recommendations to help the buyer mitigate risks effectively.
  
• Assisted Petcore Europe with the GDPR compliance of a saas platform for the exchange of data related to the recycling of plastics.
  

Principaux dossiers

• Representing Black Tiger in a litigation against the Belgian Data Protection Authority before the Markets Court.
  

Principaux dossiers

• Advised Formation Bio on EU data protection, AI and clinical trial regulation implications of its first-of-its-kind collaboration with Sanofi and OpenAI to use AI to accelerate drug development and bring new medicines to patients more efficiently.
  
• Advising Super League Triathlon, an organiser of innovative triathlon events and formats, on a range of data protection matters.
  
• Advised the Belgian industry association pharma.be and its members in relation to the use of Real World Evidence in the context of drug development and approval.
  

Principaux dossiers

• Advised IP Nexia on strengthening its data compliance framework across Belgium and Luxembourg, supporting business growth while aligning with evolving privacy standards.
  
• Represented Maersk Belgium in a sensitive cross-border disclosure dispute, balancing legal obligations with reputational protection in a complex family law context.
  
• Advised Hankook Tire Netherlands on a strategic EU commercial agreement, delivering clear contractual guidance under tight deadlines and limited operational input.
  

Principaux dossiers

• Advised Fortive on the development of an AI risk classification tool to assist its operating companies.
  
• Assisted Chick-fil-A with GDPR compliance questions relating to its launch in the UK.
  
• Advised CareDx on the impact of NIS2 on its business activities in Europe.
  

Principaux dossiers

• Advises Isabel, a provider of secure payment, document, and identification exchange services for banks and businesses, which relies on the IP/IT team for GDPR compliance support. Advice on personal data processing across Isabel’s software platforms, its roles as controller and processor, data-sharing arrangements, and drafts required GDPR documentation while offering ongoing guidance.
  
• Supports NDTE with GDPR compliance for its NephroFlow software, drafting and reviewing global data-protection documentation and assessing international transfer mechanisms. Advice covers complex issues such as processing health data, AI-related data use, intra-group data flows, third-country requirements, and negotiating IT service agreements to ensure compliant worldwide deployment of the platform.
  
• Supports Nippon Gases Belgium in meeting GDPR requirements, beginning with a comprehensive gap analysis reviewing documentation and interviewing stakeholders to identify compliance shortcomings and define remediation steps. Continues to advise on day-to-day data protection issues, helping the organisation strengthen its personal data processing practices in line with regulatory standards.
  

Principaux dossiers

• Act as a well-established and valued legal partner (“compagnon de route”) to the Dewaele group and are the go-to partner for all privacy and data protection questions.
  
• Awarded with a large-scale privacy and data protection implementation project by the public entity Limburg.net, including consulting, training and support in relation to privacy and data protection as well as information security matters.
  
• Assist Primagaz, a subsidiary of the world’s largest LPG supplier SHV Energy, on all matters related to privacy and data protection. That includes implementing the group-wide privacy and data protection standards within the Primagaz entity, revision of the Primagaz data retention policy and HR policy and offering a series of privacy and data protection training sessions to the staff and management of Primagaz in order to keep Primagaz updated on the latest relevant developments.
  

Principaux dossiers

• Advise Belgian Mobile ID on its pioneering itsme® digital identification platform, supporting onboarding, authentication, secure transaction approval and electronic signatures for financial and commercial services.
  
• Advise and represent Doctor Anytime, a leading Belgian platform for medical appointments used by more than 6,000 doctors. Handling complex privacy litigation before the Brussels Court of Appeal against the Belgian Data Protection Authority, following a complaint by competing practitioners.
  

Principaux dossiers

• Successfully represented the Belgian State before the European Court of Justice and the Belgian Council of State in relation to the validity of the European Regulation 2019/1157 and a Belgian royal decree that imposes the storage of the digital image of fingerprints of citizens on electronic identity cards. The proceedings concerned fundamental questions regarding the right to privacy.
  
• Regularly advise and assist Aldi (international retail group) on a variety of privacy and data protection law-related matters, such as the roll-out of a customer loyalty programme, personal device management (phones, tablets, etc.), cookies, AI systems, etc.
  
• Regularly advise Ascential Technologies, a global player in amongst others advanced manufacturing, automation and designing and developing solutions in the medical and life sciences sector and test and measurement systems, on a variety of data protection matters, including on a company-wide global agreement for transferring and processing data between all entities of the Ascential Group.