• Law360’s 2022 Cybersecurity & Privacy Editorial Advisory Board
• International Association of Privacy Professionals (IAPP), 2007-present
• International Association of Privacy Professional (IAPP) European Advisory Board, 2015- 2017

• Selected for inclusion in the 2024 edition of the Lawdragon’s 500 Leading Global Cyber Lawyers guide
• Selected for inclusion in the 2024 edition of the Global Data Review 100
• Recognized in the 2018-2024 editions of Chambers Europe for TMT: Data Protection - Belgium
• Recognized as a leading individual and in Tier 1 in privacy and data protection law by Legal 500, 2018–2024
• Listed in the Who's Who Legal Thought Leaders, 2019-2022
• Selected for inclusion in Law360’s 2019 list of "Top Attorneys Under 40" in the cybersecurity and privacy category
• Recognized among the leading "Privacy and Data Security Lawyers" in Belgium by Best Lawyers, 2019-2022
• Selected for inclusion in 2014-2015 of The Legal 500 Europe, Belgium, Privacy & Data Protection
• Selected for inclusion in The Who's Who Legal Telecommunications Media & Technology, Information Technology, 2014-2015
• Recognized as a "leading talent" in privacy and data protection law in The International Who's Who of Information Technology Lawyers, 2013
• Recognized as a leader in his field and ranked as an "Associate to Watch" in the 2012 and 2013 editions of Chambers Europe – TMT, Information Technology, Belgium

Select Regulatory Investigations Matters

• Represented a social network on investigations by EU supervisory authorities in various countries, including Germany, Italy, the Netherlands, France, and Denmark, and a European Data Protection Board task force
• Represent a payment provider before the Belgian and German supervisory authorities in an investigation following a personal data breach
• Advised a social network in relation to article 66 GDPR proceedings
• Represent a service provider in a supervisory authority inquiry related to fraud products and services
• Represent a leading social network on a CNIL investigation regarding cookies compliance
• Represent an audio streaming company before supervisory authorities regarding cookies compliance
• Advise an online social platform on responding to ICO inquiries related to a data breach and its compliance with the age-appropriate design requirements
• Represented a car manufacturer in relation to an investigation into its data location practices
• Represented a drone manufacturer in relation to inquiries from EU data protection authorities
• Advised a large public multinational company on an investigation by the Spanish supervisory authority

Select Counseling Matters

• Act as lead global privacy counsel for a leading payment service provider, including advising on its strategy for GDPR compliance and compliance with upcoming data protection legislations globally, on Binding Corporate Rules' approval in the EU and the EU, de-identification practices, data analytics legal requirements, and privacy by design of its new products and services
• Advise a leading global technology company on strategic data protection and privacy issues arising out of the new data-related rules in the EU, such as the Digital Markets Act, the Digital Services Act, and the reform of consumer protection laws
• Advise hundreds of companies on GDPR compliance and data transfer strategies, including implementation of standard contractual clauses, binding corporate rules, and Safe Harbor and Privacy Shield certifications before their invalidation by the CJEU
• Advise an e-commerce company on strategic data protection and privacy issues, including risks/benefits of data localization and GDPR's data transfer rules, the upcoming EU-U.S. Transatlantic Data Privacy Framework and the data protection impact of the Digital Markets Act
• Advise a SaaS company that provides self-optimizing and smart WiFi services on GDPR compliance, including drafting its privacy policy, review of user registration flow, preparing and negotiating data processing agreements, assisting with the creation and implementation of various policies and procedures, advising on data transfers restrictions and the implementation of data transfer agreements, advising on the use of cookies and similar technologies
• Act as lead privacy counsel for a leading provider of services in charge of executing financial transactions and payments between banks worldwide
• Advise a leading social network on various strategic aspects of its data protection compliance program, including cookie rules, data transfers, accountability obligations, and the one-stop-shop
• Advise a SaaS company on its rollout of a smart security camera under GDPR, U.S. law, and local laws in Belgium, German, the UK, Canada, and the Netherlands
• Advise a multinational beverage corporation on all EU data privacy-related issues, including incident response management, Data Protection Officer duties and responsibilities, data subject rights' fulfillment and complaints' mechanisms, and cooperation with supervisory authorities
• Advised a leading electric car manufacturer on its GDPR compliance program, including its privacy policy, accountability requirements, pseudonymization, and anonymization practices
• Advise a leading audio media service company on GDPR compliance, including privacy policy, data processing agreements, the implementation of the e-privacy directive and the cookies rules, data retention, data anonymization, international data transfers, and incident responses
• Advise an electronic car manufacturer on its GDPR compliance program, including on a data transfer strategy, data processing agreements, marketing requirements, handling individuals' rights, and complying with notice and consent obligations
• Advise an online marketplace on its GDPR compliance program, including data transfer issues, replying to individuals' requests to exercise their rights, incident responses, and accountability obligations.

Select Transactions

Advised on the data protection aspects of the following transactions:

• Mastercard’s acquisition of several companies, including Dynamic Yield, Aiia, Ciphertrace, Finicity, Ekata, RiskRecon, and SessionM
• Aurora on its acquisition of Uber ATG
• WaveOptics on its sale to Snap

Select Publications

• Co-author, “New EU Cybersecurity Obligations for Connected Devices: What You Need to Know,” The WSGR Data Advisor, October 31, 2024
• Co-author, "EU to Open San Francisco Office to Advance Its Digital Regulation Agenda," The WSGR Data Advisor, April 27, 2022
• Co-author, "EU Reaches Political Agreement on Additional New Rules for Digital Platforms in the Digital Services Act," The WSGR Data Advisor, April 26, 2022
• Contributor, "Accountability to Data Subjects and Regulators," The Guide to Data as a Critical Asset, Global Data Review, 2022
• Co-author, "EU Adopts New Rules to Significantly Limit the Power of Tech Platforms," The WSGR Data Advisor, March 30, 2022
• Co-author, "Political Agreement on a New Framework for EU-U.S. Personal Data Transfers," The WSGR Data Advisor, March 29, 2022
• Co-author, "EU Parliament and Council Take Next Steps to Advance Major New Rules for Digital Platforms," The WSGR Data Advisor, February 25, 2022
• Co-author with L. Brodahl, C. Evrard, and A. Lépine, "Belgian DPA Finds That IAB Europe’s Cookie Consent Framework Violates the GDPR," Wilson Sonsini Alert, February 8, 2022
• Co-author, "European Court of Justice Finds That 'Inbox Advertising' Is Direct Marketing," The WSGR Data Advisor, December 6, 2021
• Co-author with L. De Boel, J. Dhont, and R. Fol, "EU Regulators Define Data Transfers," Wilson Sonsini Alert, November 23, 2021
• Co-author, “European Commission Proposes New Rules for Digital Platforms,” Wilson Sonsini Alert, January 12, 2021
• Co-author, "EU Commission Publishes Proposal for e-Privacy Regulation: The Top Nine Key Points You Need to Know," WSGR Alert, January 10, 2017
• Co-author, "EU Commission Publishes EU-U.S. Privacy Shield," WSGR Alert, February 2016
• Co-author, "EU Data Protection Authorities Issue Statement Following Agreement on EU-U.S. Privacy Shield," WSGR Alert, February 2016
• Co-author, "EU and U.S. Reach a Political Agreement on Transatlantic Data Transfer Deal," WSGR Alert, February 2016
• Co-author, "Profile: European Union," Bloomberg BNA, Privacy & Security Law Report, February 2016 Co-author, "The Final European Union General Data Protection Regulation," Bloomberg BNA, Privacy & Security Law Report, January 2016
• Co-author, "Political Agreement Reached for New EU Data Protection Regulation—Official Adoption Around the Corner," WSGR Alert, December 2015
• Co-author, "What's Next for U.S.-EU Data Transfers? An Analysis of Recent Developments Following Schrems," The WSGR Data Advisor, November 2015
• Co-author, "Landmark Decision Clarifies Territorial Scope of Application of National Data Protection Laws in the EU," The WSGR Data Advisor, November 2015
• Author, "EU Data Protection Authorities Issue Statement Following Schrems Decision," WSGR Alert, October 2015
• Co-author, "EU's Highest Court Declares Safe Harbor Invalid," WSGR Alert, October 2015
• Co-author, "Advocate General Advises EU's Highest Court to Deem Safe Harbor Invalid and to Allow EU Data Protection Authorities to Suspend Data Transfers to the U.S.," WSGR Alert, September 2015
• Co-author, "Personal Data, Anonymization, and Pseudonymization in the EU," The WSGR Data Advisor, September 2015
• Co-author, "Status Update on the EU Data Protection Regulation," The WSGR Data Advisor, July 2015
• Co-author, "The Proposed EU Data Protection Regulation Three Years Later: The Council Position," Bloomberg BNA, Privacy & Security Law Report, June 2015
• Co-author, "EU Reaches Milestone Towards the Adoption of Revised Data Protection Framework," WSGR Alert, June 2015
• Co-author, "French Data Protection Authority Unveils Its Inspection Program for 2015," WSGR Alert, May 2015
• Co-author, "EU Data Protection Regulators Issue Guidance on the Internet of Things and Device Fingerprinting," Eye on Privacy, February 2015
• Author, "Google Moves to Implement the 'Right to Be Forgotten,'" Data Protection Law & Policy, Volume 11, Issue 5, May 2014
• Co-author, "Status of the Proposed EU Data Protection Regulation: Where Do We Stand?" Bloomberg BNA Privacy & Security Law Report, September 2013
• Author, "Departing from the reliance on lengthy legalese," Data Protection Law & Policy, Volume 10, Issue 6, June 2013
• Co-author, "European Regulators Opine on 'Purpose Limitation' Principle - What Constitutes 'Compatible Use' in the Context of Big Data?" Eye on Privacy, May 2013
• Co-author, "Cloud Providers That Adhere to U.S.-EU Safe Harbor Framework Meet EU's Data Protection Adequacy Requirements, Says U.S. Commerce Department," WSGR Alert, May 2013
• Co-author, "European Regulators Issue Opinion on Mobile Apps," WSGR Alert, March 2013
• Co-author, "Mobile Apps: Learning from the WhatsApp Dutch Privacy Investigation," Eye on Privacy, March 2013
• Co-author, "The Proposed EU Data Protection Regulation One Year Later: The Albrecht Report," Bloomberg BNA's Privacy & Security Law Report, BNA Insights, January 2013
• Co-author, "Global and European Data Protection Law: What Will the Hot Issues Be in 2013?" Eye on Privacy, January 2013
• Co-author, "Procédures d'e-discovery et protection des données: l'archivage électronique entre le marteau et l'enclume," L'Archivage Electronique et le Droit, Editions Larcier, May 2012
• Co-author, "The Belgian Yahoo! Case: Supreme Court Provides Broad Interpretation of Concept of 'Electronic Communication Service Provider,'" BNA International World Data Protection Report, April 2011
• Co-author, "Belgian DPA Issues Guidance on Mobile Mapping Applications," BNA International World Data Protection Report, January 2011
• Author, "Protection des données; la Commission européenne présente sa stratégie pour la révision des règles applicables au sein de l'Union européenne," www.droit-technologie.org, November 2010
• Co-author, "Study on Online Copyright Enforcement and Data Protection in Selected Member States (Netherlands, Poland, UK)," European Commission, DG Internal Market and Services, April 2010
• Co-author, "Study on Online Copyright Enforcement and Data Protection in Selected Member States," European Commission, DG Internal Market and Services, November 2009
• Co-author, "Les autorités européennes prennent position sur le conflit entre les règles d'e-discovery et la protection des données à caractère personnel," Revue Lamy Droit de l'Immatériel, April 2009
• Co-author, "Le conflit de droit entre les règles américaines d'e-discovery et le droit européen de la protection des données à caractère personnel ... entre le marteau et l'enclume," Revue Lamy Droit de l'Immatériel, March 2009
• Co-author, "Convergence of the Telecommunications, Audiovisual Media and Information Society Sectors and Repartition of Powers in Belgium," External report prepared for the Belgian Ministry of Economics, June 2007
• Co-author, "A propos de l'avis de la commission de protection de la vie privée sur l'encadrement des listes noires," Revue de Droit des Technologies de l'Information, No. 23, December 2005

Select Speaking Engagements

• Lecturer, “Data protection concerns in data-driven mergers and acquisitions,” VUB Summer School Academy, June 29, 2022
• Presenter, “EU's Digital Services Act (DSA) final text's data protection implications,” Future of Privacy Forum, June 22, 2022
• Panelist, “The EU Digital Single Market: implementation and implication,” GDR Connect: Regulation and Digital Strategy, May 11, 2022

• Panelist, “Schrems II: The Practical Implications,” International Association of Privacy Professionals LinkedIn Live, July 20, 2020

• Presenter, "WSGR Getting Ready for the GDPR Series - Session 5: Regulatory Aspects of the GDPR," WSGR Privacy & Data Protection Webcast, November 17, 2016
• Presenter, "WSGR Getting Ready for the GDPR Series - Session 4: The GDPR, Privacy Shield, and EU-U.S. Data Transfers - What to Do Now?," WSGR Privacy & Data Protection Webcast, September 13, 2016
• Presenter, "WSGR Getting Ready for the GDPR Series - Session 3: The GDPR for Service Providers," WSGR Privacy & Data Protection Webcast, July 12, 2016
• Presenter, "WSGR Getting Ready for the GDPR Series - Session 2: Enhanced Individuals Rights," WSGR Privacy & Data Protection Webcast, June 8, 2016
• Presenter, "Getting Ready for the GDPR," WSGR Privacy & Data Protection Webcast, May 2016
• Presenter, "The EU-U.S. Privacy Shield: A New Tool for Data Transfers to the U.S.?" WSGR Privacy & Data Protection Webcast, March 2016
• Panelist, "Transferts de données à caractère personnel intra-groupe et à l'international, quels risques encourus ? Comment être conforme ?" CREO Business Information & Seminars, Brussels, Belgium, February 2016
• Panelist, "General Data Protection Regulation," Brussels European Employee Relations Group (BEERG), Brussels, Belgium, February 2016
• Presenter, "Update on the EU-U.S. Safe Harbor Program," WSGR Privacy & Data Protection Webcast, October 2015
• Presenter, "An Update on the EU Data Protection Regulation," WSGR Privacy & Data Protection Webcast, July 2015
• Panelist, "EU Data Protection Reform and Data Localization Initiatives: Impacts and Strategies for Global Data Transfers," IAPP Europe Data Protection Congress 2014, Brussels, Belgium, November 2014
• Panelist, "Data-Driven Economy – How Can We Use the Full Potential of the Data-Driven Revolution?" TechAmerica Europe's Annual Plenary, November 2014
• Panelist, "Ethics, Fundamental Rights and Big Data," 36th International Conference of Data Protection and Privacy Commissioners, Balaclava, Mauritius, October 2014
• Panelist, "Privacy in mobility and location data" panel, 7th International Conference, Computers, Privacy & Data Protection, Reforming Data Protection: The Global Perspective, Brussels, Belgium, January 2014
• Panelist, "Transitioning between Data Transfer Mechanisms: Challenges and Opportunities," IAPP Data Protection Congress 2013, Brussels, Belgium, December 2013
• Presenter, "The Challenges of Data Protection in Cloud Computing," ERA Annual Conference on European Data Protection Law 2013, Trier, Germany, November 2013
• Moderator, "Mobile Devices and Applications: Risks, Challenges, Opportunities, and Future Trends" panel, 6th International Conference, Computers, Privacy & Data Protection, Reloading Data Protection, Brussels, Belgium, January 2013
• Presenter, "How to Regulate Corporate Social Media in Compliance with European Privacy and Data Protection Law," FEDISA Belgium, Social Media, Law and Ethics, Brussels, Belgium, June 2012
• Presenter, "Update on Electronic Archiving, e-Discovery and Data Protection: Electronic Archiving Between the Rock and the Hard Place," CRID, JURITIC, Namur, Belgium, May 2011
• Presenter, "Location Based Services, Mobile Devices, Location Technologies & Shifting Values, Evolving Values Regarding Vocational Privacy - the European Legal Framework," Fifth Fordham Annual Law & Information Society Symposium, New York, New York, March 2011
• Presenter, "Update on European Data Protection," ABA Privacy Information & Security Law, ABA Antitrust Section/Privacy & Security Committee Webinar, October 2009