Firms To Watch: EU regulatory: Privacy and data protection

Focusing on the media, entertainment, and IT sectors, the team at Lexing provides in-house DPO support to clients as well as advising on potential data risks, compliance, and legislative developments from the Data Protection Authority.
Morrison Foerster offers an integrated data protection and cybersecurity service to a combination of European and global clients, leveraging its US platform to advise multinationals on regulatory compliance, authorisation processes, and data breach response issues.

EU regulatory: Privacy and data protection in Belgium

Allen & Overy LLP

Allen & Overy LLP remains active across the full range of data advisory work, including privacy and compliance, data elements of technology transactions, cybersecurity and data breaches, and investigations brought by data protection authorities. Alongside GDPR advice, the team has also been active in helping clients respond to the Schrems II judgment relating to the EU-US Privacy Shield, and its impact on international data transfers. The practice is led by Peter Van Dyck, a regular adviser to Belgian and international clients on data aspects of major strategic projects, and Filip Van Elsen, who focuses on emerging technology, regulatory compliance, and digital transformation. Senior associate Cédric Lindenmann plays a key role in cybersecurity and data breach matters.

Other key lawyers:

Cédric Lindenmann

Testimonials

‘Excellent knowledge of this area of the law. Hands-on approach and advice.’

‘Filip Van Elsen is well familiar with the industry and well read. He is always available to discuss and give guidance and advice.’

Bird & Bird

Bird & Bird has an integrated cross-border data protection offering, working with international clients and public sector bodies on EU-wide data protection and cybersecurity issues, ranging from GDPR compliance to specific advice relating to disruptive technologies, research programmes, and Big Data issues, most notably within the transport sector. Other areas of strength for the practice include employee data and life sciences issues, while the team’s continuous corporate support offering often includes internal secondments. The team is led by Benoit Van Asbroeck, a specialist in contentious and non-contentious data protection work, with senior associate Simon Mortier also a key name in the team, handling both advisory work and litigation.

Practice head(s):

Benoit Van Asbroeck

Other key lawyers:

Simon Mortier

Key clients

European Commission

DKV Belgium NV

ERGO Insurance NV

Work highlights

  • Advising the European Commission on two of its Horizon 2020 projects.

CMS

CMS combines European and global data protection and risk management advice with a notable cyber breach response offering, working with a number of high-profile tech clients, many of which hold large amounts of sensitive data. The firm also provides an in-house data protection officer service, and has a strong presence within the digital economy sector. The practice is headed up by Tom De Cordier, a longstanding player in the data privacy space and a regular adviser to major companies on large-scale data projects, as well as a contributor to thought leadership on the subject.

Practice head(s):

Tom De Cordier 

Testimonials

‘Tom De Cordier: I appreciate the down to earth approach, the willingness to underpin advice with context, and most of all willingness to listen, really listen to the points being raised, perhaps in defence of a different viewpoint.’

Key clients

Facebook

McCain

Sotera

Vocalcom

Yondr

Work highlights

  • Representing Facebook before the Belgian Courts Facebook, Inc., in proceedings brought against Facebook, Inc., Facebook Ireland and Facebook Belgium by the Belgian Data Protection Authority for a series of alleged infringements of EU and national rules on privacy protection regarding the use of cookies and pixels.
  • Assisting Yondr in the implementation of the GDPR across all its operations globally.

Fieldfisher

Fieldfisher advises on EU-wide and specific national data protection legislation and regulatory compliance issues for its global client base, including GDPR compliance and internal data policies, alongside representing clients before regulatory authorities in cases relating to non-compliance accusations. Alongside enforcement actions, other areas of strength for the practice include data breach notification and response, international data transfers, and issues arising from direct marketing and adtech. The practice is led by Olivier Proust, who advises on global compliance policies for major clients, alongside Tim Van Canneyt, who has a focus on digital technologies and services. Associate Sixtine Crouzet is highly praised by clients for her work on GDPR compliance, cookies, and adtech.

Other key lawyers:

Sixtine Crouzet

Testimonials

‘Client-oriented firm.’

‘The Data Protection and Privacy team members are available, flexible, open to questions and suggestions and very professional. The advice given combines practical and theoretical aspects and is very understandable which is important when it has to be implemented in a company. The collaboration between team members seems to be very complementary in terms of both content and language.’

‘Despite the high quality of his work, Tim Van Canneyt remains humble and modest. He is also open to criticism and does not hesitate to ask for elements that can be improved. He is very open while remaining professional.’

‘Fieldfisher Belgium has a very strong privacy team, with a great leader in Tim Van Canneyt. Their practice is varied, from assisting clients on day-to-day privacy issues to data breaches and litigations.’

‘Tim Van Canneyt leads the privacy practice. He is very knowledgeable about the GDPR and related laws. In addition to this, he is always very keen to understand clients’ sectors and practices.’

‘As a multi-national company, the team at Fieldfisher is readily available to support our needs. They keep me informed of the latest news and upcoming trends we may see from the DPAs. Just recently, we successfully received full approval from the EDPB and Belgian supervisory authority on our BCR. This achievement is a testament of their understanding drafting and negotiating the BCR on our behalf. We couldn’t be happier to achieve such a milestone!’

‘Olivier Proust has been a valued extension of our privacy team. I value his listening and practical approach. Some firms that I have worked with in the past can cite the law but they do not have the practical understanding so their clients can operationalize the legal requirements. This is an important trait that helps us easily adapt our privacy framework so it is easily understood and can be quickly put into practice.’

‘The availability, responsiveness and high expertise of the team have been much appreciated.’

‘Tim Van Canneyt is focus and pragmatic. A real pleasure to work with Tim.’

Key clients

Telenet

Massive Media Match

Bics

Euroclear

Epaca

Indivior

Osepi

Infrabel

Brussels Airlines

Levi Strauss & Co

Work highlights

  • Represented a telco company in an enforcement case before the Belgian Data Protection Authority.
  • Advised a number of financial institutions on the implications of the landmark Schrems II decision.
  • Advised Levi Strauss & Co on data sharing with commercial partners and in the field of Adtech.

Linklaters

Working across the EU and globally, the team at Linklaters advises its multinational client base on data protection compliance, policy reviews, data projects, and data breach response matters, alongside a growing litigation capability relating to GDPR enforcement. Practice head Tanguy Van Overstraeten is a vastly experienced figure within the data protection space, and is a regular adviser to government and EU bodies on data issues, as well as leading the firm’s global data board. Guillaume Couneson combines regulatory and compliance expertise with a strong record in data transactions.

Practice head(s):

Tanguy Van Overstraeten

Other key lawyers:

Guillaume Couneson

Testimonials

‘Valuable expertise and in-depth and solid knowledge of privacy and data protection rules.’

‘Guillaume Couneson is devoted and responsive. He is part of a network of specialists in the area and does not hesitate to liaise with the lawyers based in the USA when needed. We have been working with him for many years and appreciate the collaboration and his thorough knowledge of the area.’

‘Exceptional knowledge of privacy law reforms and intricacies and relationships with regulators to influence and translate reforms to clients.’

‘Relationships with regulators and providing information about upcoming reforms ahead of what is public knowledge. Responsiveness is excellent and flexibility to work across time zones on urgent matters.’

‘The team was available and responsive.’

‘Tanguy has extensive experience and in-depth knowledge.’

‘Linklaters have a highly regarded team in Brussels that relies on a network of dedicated teams across Europe and abroad that allows them to source information also on more exotic jurisdictions. Brussels’ Linklaters is our go-to law firm and trusted partner for data protection and privacy. They are very approachable and have continuously provided us with clear and great advice on a wide range of GDPR compliance questions always in a timely fashion.’

‘Tanguy Van Overstraeten is a widely recognized expert in the field and has an outstanding knowledge of data protection and privacy. He is a pleasure to work with and very responsive. We rate him very highly and appreciate him as a sparring partner when weighing our options and defining a pragmatic approach to our complex data protection challenges.’

Key clients

Axa

Degroof Petercam Asset Management

Engie

Euroclear Belgium

Invest Europe

Panasonic

Proximus

Sumitomo

Work highlights

  • Advising Proximus on the setting up and operation of a new web-based and mobile device application for medical teleconsultation in Belgium developed in cooperation with Doktor.se
  • Advised Euroclear on all data protection aspects regarding its acquisition of MFEX Holding AB from Nordic Capital.
  • Provided data protection advice to AXA as part of the sale of its banking activities in Belgium and the acquisition of Crelan’s insurance activities.

timelex

Specialising in data protection and IT regulatory work, time.lex advises a range of domestic and international businesses on data protection compliance issues, as well as handling representation in high-level litigation before European courts. Additionally, the firm regularly advises European and global governments and public sector bodies on drafting data and cybersecurity legislation, and representing them against multinational companies in disputes. Key names in the team include Jos Dumortier, who drafted the Belgian Data Protection Act, Frederic Debusseré, Hans Graux, Ruben RoexGeert Somers , and Edwin Jacobs.

Testimonials

‘Geert Somers, Edwin Jacobs, very specialised, practical, very good knowledge and quality.’

‘In depth knowledge and experience and very pleasant to work with’

‘Highly qualified professionals and very pleasant to work with’

‘This is the only data protection team that I have worked with that makes this data protection law and the regulations easy to understand and to work with. It is exceptional.’

‘Timelex advises quickly and comes up with practical solutions. It doesn’t complicate things but really helps.’

‘Geert Somers is valued for his friendly, practical and quick advice in the field of advertising law and data privacy.’

‘They have unique expertise (both practical and academic) in the area.’

‘Their approach is always professional, backed up with strong expertise.’

Key clients

Belgian Data Protection Authority

European Commission

Belgian Government

Flemish Government

Komatsu

Bosal

Samsonite

Luminus

Murata

University of Leuven’s Research and Development Department

Doosan

Work highlights

  • Advising the European Commission on performing the data protection adequacy assessment for South Korea.
  • Advising Luminus on its GDPR implementation.
  • Advising Murata on a GDPR compliance assessment.

Wilson Sonsini Goodrich & Rosati

Wilson Sonsini Goodrich & Rosati advises its multinational client base on pan-EU data protection considerations, including GDPR compliance, DPA investigations, data breach prevention and response, and international data transfers. The firm is able to act on cross-border matters within the EU and globally, enjoying strong connections to its US offering. The practice is focused on innovative areas including blockchain, Internet of Things, and AI. Cédric Burton and Jan Dhont lead the team, both specialist data protection practitioners with capabilities across the firm’s offering in both advisory work and litigation. Counsel Laura De Boel and senior associate Laura Brodahl are also key members of the team for pan-European compliance and cybersecurity issues.

Practice head(s):

Cédric Burton; Jan Dhont

Other key lawyers:

Laura De Broel; Laura Brodahl

Key clients

Mastercard International

Aurora Innovation, Inc.

Trūata Limited

ALX Oncology Inc.

Adient

Wattpad Corp.

Agora

First Orion Corp.

TuneIn, Inc.

Work highlights

  • Advising Mastercard on global data related matters, including counsel on new products and services, data protection issues in M&A, and data transfers issues.

Baker McKenzie CVBA/SCRL

Baker McKenzie CVBA/SCRL advises multinational companies on all aspects of information management, data privacy and data security aspects, as well as representing them in privacy enforcement proceedings and litigation. The team advises on GDPR compliance, as well as emerging issues such as the European Privacy Shield, social media and online platforms matters, cross-border data flows, and issues relating to AI. The team is led by Daniel Fesler, who advises on global data compliance policies, and Elisabeth Dehareng, who specialises in data and privacy work in the healthcare, financial services, transport and defence sectors.

Testimonials

‘Large global footprint makes it easier to coordinate strategy/approach with different teams.’

contrast

contrast handles highly complex data matters, including sensitive issues relating to vehicle and machine data, international transfers, and direct marketing techniques, alongside advising on GDPR compliance and regulatory investigations. The firm advises a wide range of domestic and international clients in fields such as telecoms, automotives, food, and retail, and is also active in the e-privacy space. The practice is led by counsel Anouk Focquet, who has expertise in Belgian and European data protection law and regularly represents clients before regulatory authorities.

Practice head(s):

Anouk Focquet

Testimonials

‘The Data Protection Compliance team assists both on international and domestic level. The pragmatic approach in setting-up and implementing privacy and data protection compliance systems meet the highest standards.’

‘Contrast’s privacy team is very pragmatic and takes time to get to know its client and its business in order to find the most pragmatic and legally correct approach that suits the client best.’

‘Anouk Focquet is not only very qualified and up to date with the latest privacy and GDPR news and guidelines from the Belgian and European authorities, she also makes sure she thoroughly understands her client’s business so that the advices given are as relevant as possible.’

‘The contrast data protection team is very business-oriented, pragmatic whilst being sharp on the context and legal details. It is a true pleasure to work with this team and reassuring to have the best advice in the field from experts. Data protection is still a growing area of law and “case law” is evolving on a daily basis; hence the need for the best in the market.’

‘With Anouk Focquet, specialist advice is only a phone call away. Both myself and my team members are very keen on working with her, and feel very reassured with the entire Contrast team helping out. Anouk is also very aware of the regulatory context whilst still staying pragmatic and business oriented in the counseling.’

Key clients

Orde van Vlaamse Balies (the Flemish Bar Association)

Comeos

Work highlights

  • Advising the Flemish Bar Association as Data Protection Officer.
  • Advised Comeos on in-house data protection related matters.

DLA Piper

DLA Piper advises domestic and international clients on the data aspects of major strategic projects, including digital transformation, as well as representing in investigations and litigation before the Belgian DPA and regular courts. Particular areas of strength for the firm’s advisory offering include long-term DPO services and advice on cross-border data transfers. The team is headed up by IT sector lead Kristof De Vulder alongside counsel Heidi Waem, a specialist in data protection and privacy issues with a strong focus on broad compliance issues, data transfers, and data breach response.

Practice head(s):

Kristof De Vulder; Heidi Waem

Testimonials

‘Heidi Waem advices and steers the data privacy topics at if it was her own business. She has very strong analytical skills and can analyse complex topics. Compared to other law firms you do not lose your time with explaining the business, since she is very hands on and immediately understands the pain points. You can see that she enjoys data privacy and in that way she is also very nice to work with.’

‘Dedicated, very flexible, professional and friendly.’

‘I have mainly worked with Heidi Waem, who is heading the data protection practice, and what I value most in her is the combination of thorough legal knowledge with a pragmatic and hands-on approach. She also has the ability to explain complicated issues in a way that it is understandable for business people.’

‘Excellent cross-border knowledge of specific legal matters related to the industry, clear and transparent communication, rapid delivery of the requested information.’

‘Heid Waem- Hands-on, very accessible. Follows legal developments closely and, where relevant, signals them proactively to her clients.’

‘Expertise and knowledge on the market. Practical solutions for legal challenges’

‘Heidi Waem: her responsiveness, availability and high-quality advice. She is a real pleasure to work with.’

Key clients

bpost NV

Mondelez Europe GmbH

Cegeka NV

Duracell International Operations Sarl

Levi Strauss & Co

Q8

SD Worx People Solutions

Kinepolis Group NV

Smartbit

Work highlights

  • Represented bpost NV in a procedure before the Litigation Chamber of the Belgian Data Protection Authority pertaining to alleged infringements of the GDPR rules on data transfers.
  • Advising Mondelez on an international data transfer project.
  • Advising Kuwait Petroleum Belgium and the Netherlands (Q8) on several data protection-related queries.

Jones Day

Jones Day advises clients on key issues relating to data and security, encompassing cyber and ransom attacks, Binding Corporate Rules, GDPR compliance, and data elements of complex transactions. The practice has a strong focus on the health and life sciences sectors, and works with a number of international companies, as well as with cloud providers, IT and telecoms entities, and manufacturers. Practice head Jörg Hladjk specialises in European data protection and cybersecurity issues, and has a strong track record in cross-border data transactions. Laurent De Muyter regularly litigates on behalf of clients before the European courts in infringement procedures and damages claims. Senior associate Laura Tielemans is also a key member of the team.

Practice head(s):

Jörg Hladjk

Other key lawyers:

Laurent De Muyter; Laura Tielemans; Undine von Diemar; Lucie Fournier

Testimonials

‘The team is lead by Jörg Hladjk, who is a very seasoned privacy professional.’

‘Jörg Hladjk is very knowledgeable and has the right experience and expertise.’

‘They communicate well and are extremely responsive.’

‘Laura Tielemans, Jörg Hladjk, and Lucie Fournier are an exceptional team.’

‘The firm includes several top-notch data privacy lawyers in the EU. Jorg Hladjk and Undine von Diemar are top lawyers. Both are experienced privacy lawyers with deep expertise and understanding of GDPR and other relevant laws.’

‘Jorg has excellent client skills. He is very good at addressing complex legal issues for clients and giving good, practical advice. Jorg displays good legal judgment. Undine is also good. She has an encyclopaedic knowledge of data privacy law in the EU and elsewhere. Both are excellent lawyers.’

Key clients

Experian

Verint Systems

Imperva

Sonoco

Ferro

Sumitomo Dainippon Pharma

IBM

Milliken & Company

ICANN

Micron

Graco

Work highlights

  • Advising Verint Systems on international data transfers.

Osborne Clarke

Osborne Clarke advises clients on GDPR and regulatory compliance, data protection policies and audits, and on issues relating to data transfers. The firm has a particular strength in the IT sector, advising on data considerations for strategic projects and digital transformation, including innovative AI and Big Data issues, as well as working with public sector and financial services clients. The practice is led by Benjamin Docquir, who offers broad expertise across data and privacy issues, including specialist advisory work on data pooling and cybersecurity.

Practice head(s):

Benjamin Docquir

Key clients

Bisnode

Brussels Airport

Cooley LLP

Cooley LLP offers strong data and privacy expertise to its international client base, advising multinational companies in a number of sectors on European data protection regulations, regulatory investigations, as well as handling enforcement litigation. The firm combines its pan-European expertise with knowledge of data and privacy law in Belgium and other key EU jurisdictions. The team is led by the ‘exceptionalPatrick Van Eecke, who arrived from DLA Piper in 2020, and is a vastly experienced specialist in the field, advising on worldwide data breaches, GDPR compliance programmes and BCR applications.

Practice head(s):

Patrick Van Eecke

Other key lawyers:

Enrique Capdevila

Testimonials

‘We work with Patrick Van Eecke. His analytical yet very pragmatic style is unique. He takes the time to listen to client’s needs and he has the ability to understand the business needs and to translate them into readily usable advice and guidelines.’

‘The Cooley Privacy and Data Protection practice is well equipped to make sure that they go that extra mile to get a real sense about your business and the issue at hand, before providing any advice. This results in a good working relationship, with pragmatic and direct applicable advice that fits your industry perfectly.’

‘Cooley makes use of in-house developed tools to allow for proper documentation and a more objective approach to legal matters, making it easy for the client to understand the advice and relaying it to the customer or management in an easy to understand and transparent fashion.’

‘Eager to understand your business, your products, and the types of customers that we typically work with. The ability to match the speed of a growing tech or SaaS company and a risk-based decision-making process that focuses on resolving that matter at hand, rather than providing us as a client with a wide range of potential scenarios we need to choose from ourselves.’

‘Patrick leads a very good team.’

‘Very responsive and fast, the team went above and beyond to apply standard legal concepts to the intrinsically complex operations in a software company.’

‘Patrick Van Eecke and Enrique Capdevila are a pleasure to work with. They are both very involved and they possess both the technical skills required and also the people skills making for a very pleasant and professional interaction.’

Key clients

SpaceX

Starlink

Grindr

Google

Zoom

Facebook

eBay

Apple

MessageBird

King Kylie Cosmetics (Kardashians)

EurID

Fujitsu

Nextdoor

Airline Tariff Publishing Company (ATPCO)

SodaStream International Ltd.

Similarweb

Fuze

Ares Management

Thrasio

Applovin

Hanes Brands

Audi

UiPath

Keros Therapeutics

Vera Therapeutics

Lumicks

Belgian government

Bright Insight

The Doe

Cato Networks

Geron

Kuwait Petroleum

Work highlights

  • Representing Grindr in proceedings against a European DPA.
  • Advising SpaceX on its GDPR compliance programme.
  • Representing Google in a case before the Belgian Data Protection Authority related to the exercise of the right to be forgotten under the GDPR.

Crowell & Moring

Crowell & Moring advises on data protection considerations for corporates, with notable expertise in modern technologies such as blockchain and AI. The team also has active litigation experience at Belgian Data Protection Authority and Market Court level, allowing it to support clients in contentious data issues. Practice head Maarten Stassen has a strong record in international data protection work alongside innovation technology expertise, while Frederik Van Remoortel has experience advising companies on data protection regulations and compliance.

Practice head(s):

Maarten Stassen

Other key lawyers:

Frederik Van Remoortel

Testimonials

‘Maarten Stassen is a great example of a lawyer genuinely interested in both his practice area and the client he works with. It is always easy to reach him and be sure that the projects will be delivered in time and top-notch quality. He is open to exploring new edges of the data protection world and brainstorming the most controversial issues.’

‘Crowell & Moring LLP delivers excellent multi competence advice regarding data protection issues.’

‘Easy accessible, no nonsense and helpful.’

‘We have worked with Maarten Stassen to support us in proceedings with the Belgian Data Protection Authority and to offer advice on some of our activities in relation to digital advertising.’

Maarten offers a unique combination of world class expertise in European data protection law, in-depth technical knowledge of the latest in online tracking and digital advertising, and a pragmatic, problem-solving approach.’

‘Our firm has worked with Frederik Van Remoortel on data privacy matters during the last years. He has deep knowledge of data privacy regulations (GDPR and other pieces of legislation with privacy aspects) and has provided us with excellent guidance on data privacy matters. I am impressed with this responsiveness, accurate and practical advice.’

‘Maarten Stassen has a tremendous background working with a variety of industries and understands privacy and data protection management in a way few lawyers do. He is multi-lingual, calming, and talented.’

‘My recent collaboration with Crowell has primarily involved Frederik Van Remoortel, who is my go-to person at Crowell. Frederik understands business problems and is able to come up with imaginative ways of achieving the aim. I regularly give Frederik a call when we have a specific data protection issue, or want a second opinion after having talked to our DPO.’

Key clients

40 under 40

Audax Management

Belgian Mercedes Benz Dealer Club

Cliniclowns

Data Protection Institute

Disability:IN

DPG Media

Group Brepoels

Ingersoll Rand (formerly Gardner Denver)

Jacoti

Kia Belgium

Medisch Labo Medina

Novosanis

Pukkelpop

Telenet / Liberty Global

Trane Technologies (formerly Ingersoll Rand International)

Vias Institute

Work highlights

  • Advised a blockchain technology company on how to enhance its level of privacy and data protection compliance.

Erkelens Law

Specialist aviation firm Erkelens Law advises its clients in that sector on data and technology considerations, including niche areas such as drone operations, air traffic control, and satellite communications. Other issues include data protection relating to passenger records, Covid-19 measures, and health considerations. The team is led by Catherine Erkelens.

Practice head(s):

Catherine Erkelens 

Testimonials

I was impressed by the quality of their opinions, showing thorough knowledge, excellent problem analysis and solving. The team offers quick and operational responses in a client-friendly manner.’

‘With her straightforward approach, Catherine Erkelens will provide you with operational answers. She undoubtedly belongs to the top lawyers in this field in Belgium.’

‘Strong technical knowledge combined with a long-standing experience in data protection matters and a much-needed commercial and pragmatic approach.’

Key clients

Siemens Healthcare

All Nippon Airways

Pro Basketball League

World Arts Auctions

Metracom

Work highlights

  • Advised Siemens Healthcare on the review and drafting of policies / contractual clauses; review of data processing agreements; review of notices; and the drafting of processing agreements.
  • Advised All Nippon Airways on a review of data protection clauses in several documents and on data protection implications of Covid-19 related measures.
  • Advised the Pro Basketball League on a review of data protection policies.

Eubelius

Eubelius advises clients on GDPR compliance and the drafting of internal data policies, alongside representation in litigation before domestic and European courts relating to privacy and data protection issues. Other areas of strength include data transfers and transactional data issues. The team focuses on the healthcare and life sciences sectors, with a number of multinational clients. The practice is led by Pieter Callens and recently promoted counsel Anneleen Van De Meulebroucke, who is a leading specialist in privacy litigation.

Key clients

Janssen Pharmaceutical (Johnson & Johnson Group)

Pioneer

Indigo

Albert Heijn

Viapass/Flemish Region

Crelan

Unilin (Mohawk Industries)

Pandox

Kongsberg

Agentschap Zorg & Gezondheid

Work highlights

  • Advised Crelan on the acquisition of AXA Bank Belgium. The transaction involved a complex integration project involving large amounts of data and cross-border data transfers.
  • Advising Johnson & Johnson on the legal aspects of the development of both European and global wide platforms to share anonymised real-world evidence data of (university) hospitals and registries for patient recruitment and in order to carry out clinical trials.
  • Advised Albert Heijn on the development of the AH app for Belgian customers and advised Albert Heijn on questions relating to home delivery.

Keller and Heckman LLP

Keller and Heckman LLP advises a wide and growing range of tech and pharma clients on day-to-day data protection and compliance issues, as well as on complex regulatory aspects of projects, including cross-border data transfers, personal data, and generic data as a product. The team also represents clients in contentious proceedings before courts and regulatory authorities. The practice is led by Peter Craddock, who joined from NautaDutilh in January 2022 and is an expert in data and privacy law who regularly contributes to thought leadership.

Practice head(s):

Peter Craddock

Loyens & Loeff

Loyens & Loeff advises a wide range of corporate clients on privacy, data protection and cybersecurity issues, alongside handling privacy and data-related litigation, including major class action cases. The firm has a strong focus on employment-related data matters, including internal and external data transfers, data registration compliance, and data breach response. The team also works closely with its fintech and digital economy practices. Counsel Stéphanie De Smedt heads up the practice, specialising in e-commerce and IT sector work, and is an expert in privacy and data law.

Practice head(s):

Stéphanie De Smedt

Testimonials

Stephanie De Smedt is very responsive and easy to communicate with. She understands the needs of her clients and provides usable solutions for a problem.’

‘The team is expert in the field of data protection, with an excellent responsiveness and a great client relationship. They are able to focus on industry-specific issues and to adapt their analysis to complex innovative projects.’

‘Stéphanie De Smedt is an expert in data protection matters. She is able to assist on complex innovative projects and sector specific issues, with a great capacity to provide useful and practical recommendations to the client. She is very responsive and dedicated to clients.’

‘Great team, great advice. Very smooth to work with.’

‘Stéphanie de Smedt is a very good lawyer, quick reaction, sound advice.’

Key clients

Yara

Arthrex

Pioneer Europe

Akzo Nobel

Facebook Ireland

Delhaize

Amazon

Ryanair

Work highlights

  • Assisting Facebook Ireland in privacy and data protection related disputes and court litigation.

Lydian

Lydian advises clients in key sectors including technology, retail, telecoms, and energy on broad data protection compliance, risk management, e-commerce and marketing considerations, and international data transfers. The practice combines IT and data privacy expertise with integrated employment law advice, handling issues relating to employee data and human resources issues. The practice is led by Bastiaan Bruyndonckx, who regularly advises on international GDPR compliance and data-related projects, with counsel Olivia Santantonio a go-to for privacy law and data breach response advice.

Practice head(s):

Bastiaan Bruyndonckx

Other key lawyers:

Olivia Santantonio

Testimonials

‘Outstanding support, both in consultancy to ensure GDPR compliance as in handling investigations of the regulator and disputes.’

‘Bastiaan Bruyndonckx: expertise, availability.’

‘Their quick, precise, and relevant advice is much appreciated.’

‘Olivia Santantonio quickly resolved an urgent problem that came up during a project implementation.’

Key clients

Fuel Cells and Hydrogen 2 Joint Undertaking

Clean Sky Joint Undertaking

Orange

ENGIE Electrabel

Canopius

Ethias

Keyence

Essent Belgium

Nitto

BNPP Fortis

SSI Schäfer Shop

WE Fashion

Baloise

Work highlights

  • Advised Fuel Cells and Hydrogen 2 Joint Undertaking on the implementation of Microsoft 365 and the related challenges as regards data protection and privacy.
  • Advising Clean Sky Joint Undertaking on challenges under data protection legislation relating to the Microsoft 365 environment, especially the application of the Data Protection Regulation for EU institutions.
  • Advised ENGIE Electrabel on international data transfers and Transfer Impact Assessments in the aftermath of the Schrems II decision.

Pierstone

Pierstone advises clients on commercial data considerations and the data aspects of projects, alongside data compliance and regulatory issues. The team is led in Brussels by Patrice Vanderbeeken, who has notable expertise in transborder data flows to India and the US, and Alain Strowel, who focuses on digital copyright and technology work. Jeanne Jacobs-Gilhuis advises corporate clients on data protection compliance, often acting as an in-house Data Protection Officer.

Other key lawyers:

Jeanne Jacobs

Testimonials

‘Pierstone is a very down to earth and dynamic team always ready to assist. They come up with creative and steady solutions for the most sensitive questions.’

‘Patrice Vanderbeeken is my main contact. Patrice is very agile in addressing complex issues clearly and concisely. His advice is to the point and practical which is a big added value.’

‘The Pierstone team is very international with different backgrounds of expertise which makes their consulting services very rich. The capability of working in different languages and legal contexts is very important for us. Last but not least, the introduction of electronic signatures is very appreciated.’

‘The team seems interested in understanding the company and our activity. Easy to talk with and quick comprehension of what we need. The team can adapt to our working methods.’

‘Absolute expertise in associative issues, they have been on my side in the last 12 years tackling issues confronting several associations in the energy sector, where they show particular competence. Compare better for personal involvement and bespoke assistance to the client.’

‘Attention to the client, great listening capabilities – and ability in tuning into the client’s perspective.’

‘Highly skilled professionals in privacy and data protection practice. Excellent collaboration.’

‘Jeanne Jacobs: smart, skilled, cost efficient, trustworthy, very reliable. Highly recommended.’

Key clients

Catalina Marketing

Rotterdam The Hague Airport

Lelystad Airport

Eindhoven Airport

Prime Alliance

Meters & More

EDSO for Smart Grids

European Energy Information Sharing and Analysis Centre

Polyolefin Circular Economy Platform

Microsoft

Pierre & Vacances

Datawords

Sequoia Capital (India)

Bouygues

Jensen Group

DAI GEO US, Inc

Cyril Amarchand Mangaldas

Gas Infrastructure Europe

FoodX

Karhoo

Criteo

ES Broadcast

Realo

Van Bael & Bellis

Van Bael & Bellis advises clients on compliance policies and broad data protection issues, including GDPR and personal data processing, as well as handling more complex issues relating to international data transfers and procedures before regulatory authorities. In terms of clients, the practice is strong in the pharma and life sciences sectors, and has also expanded into the public sector and manufacturing industry. Counsel Thibaut D’hulst leads the team.

Practice head(s):

Thibaut D’hulst

Key clients

Abbott

AbbVie

CSL Behring

Eisai Europe

Gedeon Richter

Encoded Pharmaceuticals

Mundipharma

Orix

Pharma.be

Super League Triathlon