Charles Helleputte heads up the EU Data Privacy, Cybersecurity & Digital Assets Practice. Charles focuses on existing EU and national privacy, cybersecurity and data laws, such as the NIS Directive, GDPR and the Cybersecurity Act, and on upcoming developments, such as NIS 2, DORA, the AI Act and the ePrivacy Regulation.
Charles has specific experience preparing and managing incidents in a cross-border context, where it is necessary to consider multiple cybersecurity, privacy and other regulatory and enforcement frameworks (such as NIS, PSD2, CTR, etc.). He provides practical and pragmatic advice to clients faced with increased accountability requirements towards users, helping organisations testing new responses, such as broader use of standards or certification mechanisms across the data life cycle in a wide range of industries (regulated and not regulated). He is also experienced in representing clients before national and EU supervisory authorities and courts, including the Working Party No. 29 (now the European Data Protection Board (EDPB)).
Charles holds a Certified Information Privacy Professional/Europe (CIPP/E) certification. He is a former co-chair of the Brussels KnowledgeNet Chapter of the International Association of Privacy Professionals (IAPP) and an appointed legal expert at the EU Cybersecurity Agency (ENISA). He is a member of the IAPP EU Advisory Board and designated on the expert list for the EDPB. He plays an active role in the Digital Economy Committee at AmCham EU, which represents interests of US businesses in Europe. He also lectures at UCLouvain and Université Saint-Louis, and is a founding member of the research group Data, Robotics, Artificial Intelligence, Law and Society (DRAILS).
More Legal and Business Bylines From Charles-Albert Helleputte
- Fewer Clouds on … Cloud: The EU to (Finally) Drop Most Data Localisation Requirements in the EUCS - (Posted On Friday, September 22, 2023)
- The U.S. Gets Adequacy, Again – For Now. - (Posted On Thursday, July 13, 2023)
- The EU Approach to AI Regulation: Texts That Generative AI Will Not Come Up With - (Posted On Saturday, June 10, 2023)
- Southeast Asia and the EU Publish a First-of-its-Kind Interoperability Guide for Data Transfers - (Posted On Friday, May 26, 2023)
- The UK’s new Minister for Data and Digital Infrastructure suggests that loss of the EU adequacy decision would not be a ‘complete disaster’. Is that view likely to fuel EU concerns? - (Posted On Wednesday, April 26, 2023)
- To Benefit from Insurance Coverage in France Businesses Must File a Complaint Within 72 Hours of a Cyberattack - (Posted On Wednesday, March 01, 2023)
- ISO 31700: The Latest Tool to Operationalize (GDPR) Privacy by Design Compliance? - (Posted On Thursday, February 02, 2023)
- 2023 Global Legislative Predictions – Belgium - (Posted On Wednesday, January 25, 2023)
- Third time lucky or Schrems III? The European Union Data Pact with the US moves one step closer (to be challenged – again) - (Posted On Tuesday, December 13, 2022)
- When AI-powered Tools Bring (EU) Privacy Troubles – Biometric Templates Identify First - (Posted On Tuesday, October 25, 2022)