Compliance (GDPR, AI, criminal law, duty of vigilance, and environmental law)

In an economic context where customer and user trust play a pivotal role, compliance becomes a key lever to protect and enhance the value of your business activities.

Our firm provides comprehensive and tailored assistance to meet the growing demands for data protection and regulatory compliance.

We act as an outsourced Data Protection Officer (DPO), offering internal support customized to help our clients secure their practices and comply with legal obligations effectively.

We conduct audits of data processing activities to assess their compliance and map associated risks. Based on this, we develop a customized action plan to ensure sustainable compliance in line with regulatory changes. Our expertise also extends to auditing contracts with service providers to ensure compliance and minimize associated liabilities. We also implement the necessary internal procedures to structure data governance and meet the requirements of regulatory authorities.

For complex or innovative projects, particularly those related to artificial intelligence, we conduct thorough impact assessments to anticipate legal and ethical challenges while ensuring controlled risk management.

In the event of data breaches, we provide responsive and comprehensive support: notifying the CNIL (French data protection authority), crisis management, and communication with affected individuals, to minimize legal and reputational consequences.

With recognized expertise in these areas, we are committed to protecting our clients’ interests and enhancing their compliance practices, turning regulation into a driver of trust and performance.

COMPLIANCE WITH THE REGULATIONS ON THE PROTECTION OF PERSONAL DATA AND AI:

  • Outsourced DPO
  • Audit of the processing implemented and risk mapping
  • Compliance Action Plan
  • Impact study of AI systems
  • Audit of contracts concluded with service providers
  • Implementation of the necessary internal procedures
  • Audit of developed information systems / website
  • Carrying out impact analysis of personal data processing
  • Data transfer impact assessment
  • Management of data breaches, both in terms of notification to CNIL and communication with data subjects

CRIMINAL COMPLIANCE

DUTY OF CARE COMPLIANCE

ENVIRONMENTAL COMPLIANCE

  • Compliance audit of a CAC 40 company and support in the implementation of the action plan
  • Management of a data breach, both from a technical point of view with our IT service provider (server restoration) and from a legal point of view (CNIL notification and communication to the persons concerned)
  • Support as an outsourced DPO of a large company with 23 subsidiaries worldwide
  • Performing impact assessments on AI-based systems

Eléonore Favero Agostini

Sonya Younsi

Agathe Wanquetin

Contact Eléonore Favero Agostini

Consult our other expertises

Cybersecurity, Blockchain, AI, and Emerging Technologies

Civil Liability, Industrial Risk, Defective Products, and Insurance Law
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.