Yesterday and today I have had the privilege of training the Data Protection Authority of Rwanda. We had very interesting discussions at the core of matter, e.g., on the the concept of personal data, on anonymisation, pseudonymisation, tokenisation and encryption, the operationalisation of the risk-based approach, etc. The new Rwandan law relating to the protection ...
3rd UM-DPCSR Permanent Stakeholder meeting
This afternoon Kate Francis and I presented Principle 2 of the Maastricht University Data Protection as a Corporate Social Responsibility Framework (UM-DPCSR Framework) to the Members of the Permanent Stakeholder Group, a community of Data Protection, Intergovernmental, Education, and Business Stakeholders who are helping us to gauge the feasibility of the controls we have identified to ...
DPCSR at the 2023 Privacy Symposium in Venice
This morning I moderated the Privacy, ESG and CSR panel at the 2023 Privacy Symposium Conference in Venice. Many thanks to panelists Immaculate Kassait, MBS (Data Protection Commissioner of Kenya), Sophie Nerbonne (CNIL), Guido Scorza (GPDP), Massimo Marelli (International Committee of the Red Cross), Cosimo Monda (ECPC), Sara Agnello (Stellantis), and Emerald De Leeuw-Goggin (Logitech). It was truly remarkable to hear representatives of Supervisory Authorities involved agree that privacy and data ...
2nd UM-DPCSR Permanent Stakeholder Group Meeting
Yesterday we held the second meeting of the Data Protection as a Corporate Social Responsibility (UM-DPCSR) Permanent Stakeholder Group! We discussed Principle 1, comprised of five Rules. We specifically considered the application of the controls. In the coming days, we will share a survey with the Permanent Stakeholders to identify best practices in their relevant ...
1st Data Protection as a Corporate Social Responsibility (DPCSR) Permanent Stakeholder Group Meeting
We are very happy to have kicked off the Data Protection as a Corporate Social Responsibility (DPCSR) Permanent Stakeholder Group today! Over the course of the next six months, together with this group of like-minded persons from Data Protection Supervisory Authorities, Intergovernmental Organizations, Education, and Industry, we will work to concretely improve our digital society ...
Draft adequacy decision for the EU-U.S. Data Privacy Framework
This afternoon, the European Commission announced that it has (finally) finalised its much-awaited draft adequacy decision for the EU-U.S. Data Privacy Framework. According to the Commission, the draft adequacy decision “reflects the assessment by the Commission of the US legal framework and concludes that it provides comparable safeguards to those of the EU”. The decision has been sent to ...
Intervista: “VITA DA PRIVACYISTA” – Trentunesima puntata
Il mio amico Luca Bolognini mi ha intervistato per la sua serie intitolata “Vita da Privacyista”. Ho discusso con lui con grande piacere di privacy e protezione dei dati, a tutto campo: dall'importanza di educare i bambini alla privacy alla necessità di introdurre nei curricula scolastici una gamification di queste materie, dalla mia ricerca all’Università di Maastricht ...
My interview in the ELSA Azerbaijan Law Review August 2022, 5th Edition
I recently had the pleasure of being interviewed for the ELSA Azerbaijan Law Review on Law and Technology. We discussed how I ended up where I am today, robot lawyers, legal tech, Data Protection as a Corporate Social Responsibility, and more! Check out the complete interview here.
“ADVANCED CYBERSECURITY AND GLOBAL CYBERSECURITY STRATEGY” COURSE WEEK 2: Tutorial #3

It’s tutorial time again in the “Advanced Cybersecurity and Global Cybersecurity Strategy” course within the Advanced Master in Privacy, Cybersecurity, Data Management and Leadership LLM at the European Centre on Privacy and Cybersecurity (ECPC)! Following his compelling lecture last week, Daniele Catteddu will oversee today’s tutorial aimed at engaging students in a detailed discussion about different approaches to ...
“ADVANCED CYBERSECURITY AND GLOBAL CYBERSECURITY STRATEGY” COURSE WEEK 2: Approaches to assess supply chain security assurance (products, services and processes)

This afternoon guest lecturer Daniele Catteddu will present on Approaches to assess supply chain security assurance (products, services and processes) in the “Advanced Cybersecurity and Global Cybersecurity Strategy” course within the Advanced Master in Privacy, Cybersecurity, Data Management and Leadership LLM at the European Centre on Privacy and Cybersecurity (ECPC)! In this second week of the course, the students will ...
CONNECT