Nik Theodorakis, Volha Samasiuk, Niko Härting
This workshop will dive into three key areas:
- The new EU-US Data Privacy Framework. Since the Privacy Shield invalidation, US companies have been primarily relying on Standard Contractual Clauses to transfer data from the EU. The Data Privacy Framework, if finalized, will allow companies to seamlessly transfer EU data to the US. We will discuss the particulars of the framework, practical considerations for companies interested in self-certifying, and what’s next in the EU-US data transfers saga.
- EU AI Act. The workshop will discuss the current draft of the EU AI Act and its proposed risk-based approach to regulating AI technologies in the EU. Once enacted, the EU AI Act with its broad reach will establish a set of new compliance obligations for AI developers and deployers, from a ban for certain AI systems and strict requirements for high-risk AI to more limited obligations for providers of AI applications with a lower risk. We will discuss how U.S. companies can shore up their compliance program to prepare for upcoming AI regulations.
- Regulatory enforcement trends. Enforcement cases in Europe have been increasing both in terms of volume and scale. However, all in all, GDPR enforcement remains patchy. How do the European DPAs work when it comes to enforcement? And what can be expected by way of enforcement once the Digital Services Act and (possibly) the Data Act come into effect?
Nik Theodorakis, Of Counsel, Wilson Sonsini
Volha Samasiuk, Director, Senior Privacy & Data Use Counsel, Autodesk
Niko Härting, Partner, Härting Rechtsanwälte (Germany)
Readings: