Skip to main page content

Pierre-Yves Lastic

Secretary-General
European Federation of Data Protection Officers (EFDPO)
Participates in 3 items

Pierre-Yves has 17 years of experience in privacy and personal data protection. He is currently Vice-President of the French Union des DPO (UDPO) and an active member of the European Federation of DPO (EFDPO), as well as consultant for Privacy and Information Management in Life Sciences.

He was Global R&D Privacy Officer at Sanofi for 8 years before being appointed Chief Privacy Officer in 2013, setting up Sanofi Global Privacy Office.

He studied Biology, Languages and Computer Sciences in France and Germany, and holds a PhD in Biology from Bayreuth University. He has nearly 30 years of experience in the pharmaceutical industry in a number of management functions including Data Management, Statistics, Clinical Trials Management, Electronic Regulatory Submissions, Information Management, Privacy and Personal Data Protection.

Pierre-Yves was member of the Board of Directors of the International Pharmaceutical & Medical devices Privacy Consortium (IPMPC) from 2005 to 2019 and was a member of the Board of Directors of the Clinical Data Interchange Standards Consortium (CDISC) from 2004 to 2016.

As a data standards and privacy expert, he was a member of the EudraVigilance Expert Working Group as well as the Telematics Implementation Group of the European Medicines Agency (EMA).

He also teaches Data Management at the European Centre of Pharmaceutical Medicine (ECPM) in Basel as well as Personal Data Protection at Université Panthéon-Assas (Paris II).

He is also a member of the steering committee of Master in Personal Data Protection of the Mines Telecom Paris Business School.

Sessions in which Pierre-Yves Lastic participates

Thursday 15 May, 2025

Time Zone: (GMT+01:00) Rome
2:00 PM
2:00 PM - 3:00 PM | 1 hour
Health and Medical Data Compliance
Data regulation in practiceFundamental rightsEnforcementInterpretation available

Patients trust healthcare providers with their most sensitive data, but are their rights truly being upheld in practice? From the right to access medical records to the challenge of data portability and consent management, ensuring compliance becomes not only a legal requirement but also an ethical responsibility. This session tackles the real-world struggles of ensuring data subjects’ rights in the healthcare system and explores practical soluti...

Friday 16 May, 2025

Time Zone: (GMT+01:00) Rome
9:00 AM
9:00 AM - 10:30 AM | 1 hour 30 minutes
DPO Cooperation
Artificial IntelligenceInterpretation available

This unique session explores the evolving responsibilities of DPOs in the field of AI governance, focusing on the challenges, ethical dilemmas, and opportunities that come with overseeing AI systems that may impact personal data. Join the panel for a forward-thinking discussion about how DPOs can steer the future of AI governance while staying true to their core mission of data protection.  

2:00 PM
2:00 PM - 3:00 PM | 1 hour
DPO Cooperation
Artificial IntelligenceInterpretation available

The age of generative AI is one where machines can write, create, and predict with astonishing accuracy. Still, this brings new privacy challenges as AI plays a powerful role in our lives. This session will discuss the Gen AI Code of Practice, defined as a set of guidelines that aims to govern the use of generative AI while protecting privacy rights. The panel will explore what a solid and actionable code of practice looks like and how DPOs can p...

Sessions in which Pierre-Yves Lastic attends

Monday 12 May, 2025

Time Zone: (GMT+01:00) Rome
8:00 AM
8:00 AM - 9:00 AM | 1 hour
9:00 AM
9:00 AM - 9:30 AM | 30 minutes
AI and Compliance
Artificial IntelligenceInnovative TechnologiesInterpretation available

The AI and Compliance track serves as a dynamic platform for dialogue, knowledge exchange, and collaboration on the evolving legal and regulatory landscape of AI, in addition to its increasing involvement in all aspects of our personal and professional lives. This opening session welcomes the Rector of Ca' Foscari University of Venice and the Chair of the Privacy Symposium to set the stage for insightful discussions. 

9:30 AM
9:30 AM - 10:30 AM | 1 hour
AI and Compliance
Artificial IntelligenceRegulatory evolutionInnovative TechnologiesInterpretation available

Discussions surrounding the interplay of AI and Data Protection Laws will reveal how academics and practitioners from around the world manage the intersectionality of these laws. How do data protection laws and emerging AI intersect, and how do they complement each other? If you’re a privacy professional, legal expert, AI developer, or policymaker, this is your must-attend session, as it will feature professionals from Google, EDRI, DG Justice, a...

10:30 AM
10:30 AM - 11:00 AM | 30 minutes
11:00 AM
11:00 AM - 11:40 AM | 40 minutes
AI and Compliance
Artificial IntelligenceRegulatory evolutionInnovative TechnologiesEnforcementInterpretation available

Generative AI development and deployment is exploding, but the recent EDPB Opinion 28/2024 and early enforcement actions (notably the fine against OpenAI by the Garante in Italy) signal that compliance with the GDPR must be taken seriously from the outset. Against this backdrop, our panel will explore how to build trust and avoid pitfalls when developing and deploying LLMs in Europe. We’ll examine the evolving legal landscape—and whether it leaves enough room for meaningful innovation....

11:40 AM
11:40 AM - 12:20 PM | 40 minutes
AI and Compliance
Artificial IntelligenceRegulatory evolutionInnovative TechnologiesInterpretation available

This enriching session will shed light on the consequences of data scraping in regard to privacy and intellectual property rights. Data scraping refers to the automated extraction of data from websites, APIs, and other online sources, which consequently raises questions surrounding the secondary uses of such data. Attendees of this session will have the opportunity to hear from several European and global authorities on how they perceive and addr...

12:20 PM
12:20 PM - 1:00 PM | 40 minutes
AI and Compliance
Artificial IntelligenceInternational CooperationRegulatory evolutionInnovative TechnologiesInterpretation available

As AI usage seems to proliferate, international regulations may be the way to go to develop cross-border compliance and cooperation. Featuring representatives from both sides of the Atlantic, as well as renowned global think tanks, this session will discuss how organizations can effectively align themselves with international regulations to achieve convergence and interoperability.  ...

1:00 PM
1:00 PM - 2:00 PM | 1 hour
2:00 PM
2:00 PM - 3:00 PM | 1 hour
AI and Compliance
Artificial IntelligenceRegulatory evolutionInnovative TechnologiesInterpretation available

This remarkable session brings together leading experts from Google, Microsoft, the German Data Protection Authority, the European AI Agency, and the Italian State Secretary to discuss how organizations and governments can navigate AI risks while ensuring compliance. From balancing innovation with regulation to addressing ethical concerns, this discussion will provide critical insights into the future of AI governance. 

3:00 PM
3:00 PM - 3:15 PM | 15 minutes
AI and Compliance
Artificial IntelligenceInterpretation available
3:15 PM
3:15 PM - 4:00 PM | 45 minutes
AI and Compliance
Artificial IntelligenceInnovative Technologies

This session brings together industry leaders and regulators to explore the essential aspects of designing compliant AI training models. In the discussion, panelists will provide a comprehensive overview of the intersection between regulatory requirements and innovative AI practices, offering practical advice and actionable insights for professionals in the field. Key topics include:  

4:30 PM
4:30 PM - 5:15 PM | 45 minutes
AI and Compliance
Artificial IntelligenceInnovative TechnologiesInterpretation available

Agentic AI is ushering in a new era of technological capability, with systems designed to autonomously achieve complex goals by reasoning, planning, and using digital tools. This innovation holds transformative potential. Our panel will explore the evolving data protection considerations that accompany these advancements. Join leading experts as they discuss how familiar privacy principles apply in this new context and identify emerging questions, fostering a di...

5:15 PM
5:15 PM - 6:15 PM | 1 hour
AI and ComplianceData Protection Certification
Artificial IntelligenceCertificationInnovative TechnologiesInterpretation available

AI systems are becoming more integrated into critical decision-making processes, which makes questions of liability and accountability more pressing than ever. If an AI-based decision goes wrong, who is responsible? This session will unite experts from Meta, Italian Institute for Privacy and Data Valorisation, AI Law Tech Institute, SGS, and CNPD to explore the evolving frameworks for AI liability and the role of certification in building respons...

6:30 PM
6:30 PM - 7:30 PM | 1 hour
Social Events

We will inaugurate the fourth edition of the Privacy Symposium at the Official Welcome Reception. This event marks the beginning of a week rich in insightful discussions and open exchange, set in the inspiring atmosphere of Venice. Guests will have the opportunity to admire the remarkable works of Tintoretto, one of the city’s most celebrated painters, while connecting with professionals from diverse backgrounds and engaging in fruitful discussions. The evening will be enriched by...

Tuesday 13 May, 2025

Time Zone: (GMT+01:00) Rome
11:00 AM
11:00 AM - 12:00 PM | 1 hour
Technology and Compliance
Innovative TechnologiesData regulation in practiceFundamental rights

In this thought-provoking session, the panel will dive into the intriguing world of neuro privacy. As breakthroughs in neuroscience offer unprecedented insights into the human brain, important ethical questions arise regarding the collection, use, and potential misuse of neural data. The speakers will explore the intersection between neuroscience, privacy, and fundamental human rights, while focusing on the emerging challenges and potential solut...

12:00 PM
12:00 PM - 1:00 PM | 1 hour
Technology and Compliance
Innovative TechnologiesData regulation in practiceFundamental rights

Modern vehicles are more than just simple transportation; they are data hubs constantly collecting and transmitting information. From GPS tracking and in-car entertainment systems to AI-powered assistance, connected cars are revolutionizing the concept of mobility. The exceptional panel of this session will explore the fine line between convenience and surveillance, geolocation tracking, and how regulations are adapting.  

1:00 PM
1:00 PM - 2:00 PM | 1 hour
2:00 PM
2:00 PM - 3:00 PM | 1 hour
International Cooperation
Data regulation in practiceInterpretation available

While regulators worldwide are fighting the same battles, too often they’re doing it in isolation. This session brings together industry experts and distinguished officials from EDPS, Dutch Data Protection Authority, Office of the Privacy Commissioner of Canada, and US Department of Justice. Attendees will learn about the real challenges of cross-border privacy enforcement and explore the ways in which regulators can work together to turn fragmen...

3:00 PM
3:00 PM - 4:00 PM | 1 hour
International Cooperation
Socio-economic perspectiveInterpretation available

The role of data regulations in enabling economic growth is currently a topic of intense interest in many parts of the world. Attendees of this enriching session will hear discussions on the nature and design of data regulations, and balances to be struck, including the extent to which regulators seek to enable good outcomes as well as prevent bad ones.  Key questions 

4:00 PM
4:00 PM - 4:30 PM | 30 minutes
4:30 PM
4:30 PM - 5:15 PM | 45 minutes
International Cooperation
Regulatory evolutionInterpretation available

From GDPR to emerging AI regulations, organizations must navigate complex frameworks while ensuring seamless data flows across borders. This session will bring together experts to discuss practical strategies for overcoming regulatory conflicts, enabling responsible data practices, and fostering global cooperation. Key questions 

5:15 PM
5:15 PM - 6:00 PM | 45 minutes
International Cooperation
Regulatory evolutionCross-border data transfersInterpretation available

Convention 108+, the ‘modernised’ version of the Council of Europe’s data protection treaty, is positioned to play a key role in shaping global data governance and privacy regulations for years to come. This treaty aims to create a more solid framework for data protection to keep pace with the digital world, and to extend beyond Europe’s borders. The esteemed speakers of this panel will present Convention 108+ in the context of striking a balance...

Wednesday 14 May, 2025

Time Zone: (GMT+01:00) Rome
9:00 AM
9:00 AM - 10:30 AM | 1 hour 30 minutes
Deep Dive In
Deep dive in and capacity buildingInnovative TechnologiesData regulation in practice

This session promises to dive deep into the real-world impact of data anonymization and synthetic data, exploring how these techniques are being used to protect privacy in different industries. Experts of the panel will break down the myths and realities of these privacy-enhancing technologies, tackling their benefits, limitations, and regulatory challenges head-on. Key questions&nbsp...

11:00 AM
11:00 AM - 12:00 PM | 1 hour
International Cooperation
Regulatory evolutionData regulation in practice

Europe’s data regulations are very intricate to form the whole picture, which means that each piece is essential, yet constantly shifting. The Data Act, Data Governance Act and GDPR are not isolated frameworks; they are deeply intertwined to shape the way we interact with the digital reality. This session unites esteemed professionals and officials from Euroconsumers, DG Justice, DG Connect, and Lativia DPA, diving beyond the legal aspect to unco...

12:00 PM
12:00 PM - 1:00 PM | 1 hour
International Cooperation
Regulatory evolutionData regulation in practiceEnforcement

With countries adopting their own unique approaches to data protection and compliance, organizations are left to navigate a maze of regulatory frameworks. The distinguished panel of this session is composed of high-level professionals and officials, from Timelex, EDPS, Digital Regulation Cooperation Forum, the Indian Ministry and many more. Together, they will explore how to address global data regulations while ensuring privacy and compliance. T...

1:00 PM
1:00 PM - 2:00 PM | 1 hour
2:00 PM
2:00 PM - 3:00 PM | 1 hour
Data Regulations in Practice
Artificial IntelligenceCross-border data transfers

Explore the critical issues shaping HR data privacy in the age of AI. This panel of government and legal experts will address the complexities of cross-border data flows, emerging compliance requirements, and the implications of AI for human resources data. Discover strategies for fostering international cooperation and ensuring robust employee data protection in a rapidly evolving regulatory landscape. 

Thursday 15 May, 2025

Time Zone: (GMT+01:00) Rome
9:00 AM
9:00 AM - 9:20 AM | 20 minutes
Health and Medical Data Compliance
Data regulation in practiceInterpretation available

Medical data is one of the most sensitive types of information, yet it is also the foundation of groundbreaking research, diagnostics, and personalized treatments. Consequently, healthcare providers, researchers, and tech companies must navigate an increasingly complex web of regulations without slowing progress. Join the panel of this unique session as it unpacks the evolving landscape of medical data regulatory compliance and data governance.&n...

9:20 AM
9:20 AM - 10:30 AM | 1 hour 10 minutes
Health and Medical Data Compliance
Regulatory evolutionInnovative TechnologiesData regulation in practiceInterpretation available

This session will welcome industry professionals to explore the adoption of the European Health Data Space (EHDS) regulation and its impact on obligations and compliance requirements. Drawing on the panel's insights, the discussion will cover the practical aspects of implementing EHDS, while also addressing the challenges and opportunities it presents.  Key questions 

11:00 AM
11:00 AM - 12:15 PM | 1 hour 15 minutes
Health and Medical Data Compliance
Regulatory evolutionData regulation in practiceInterpretation available

In pursuit of medical breakthroughs, data is considered a goldmine. At the same time, accessing medical data should not come at the expense of crossing legal and ethical lines. This session will tackle one of the most important issues in medical research today: the lawful use of patient data for secondary purposes like advancing scientific discovery and healthcare innovation. The distinguished panel of this session will explore the complex questi...

12:15 PM
12:15 PM - 1:00 PM | 45 minutes
Health and Medical Data Compliance
International CooperationRegulatory evolutionData regulation in practiceCross-border data transfersInterpretation available

Medical research often relies on accessing large and diverse datasets from different regions to ensure the results are comprehensive and unbiased. This session will explore the opportunities, needs, and challenges involved in sharing medical data across borders. The European Health Data Space (EHDS) offers a framework to enable such international collaboration, but how does it function in practice? What are the potential constraints in other juri...

3:00 PM
3:00 PM - 4:00 PM | 1 hour
Health and Medical Data Compliance
Artificial IntelligenceInnovative TechnologiesData regulation in practiceInterpretation available

This session will cover the legal implications and real-world use cases of anonymization, pseudonymization, and synthetic data. From enabling secure data sharing for research and ensuring compliance in clinical trials, the panel will dive into how some techniques can help meet privacy requirements while still fostering scientific progress.  Key questions 

4:00 PM
4:00 PM - 4:30 PM | 30 minutes
4:30 PM
4:30 PM - 5:30 PM | 1 hour
Health and Medical Data Compliance
Innovative TechnologiesSocio-economic perspectiveInterpretation available

Digital health is reshaping the way patient care is approached. This offers exciting new opportunities for personalized medicine, real-time health monitoring, and remote care, which makes healthcare more accessible and efficient. With all these advancements, however, comes great challenges. This session will explore the incredible potential of digital health, its impact on patient care, and the obstacles and opportunities it presents.  ...

6:00 PM
6:00 PM - 7:30 PM | 1 hour 30 minutes
Social Events

As we near the conclusion of the Privacy Symposium, take a moment to unwind at the Privacy Professionals’ Meet-up. After a day filled with insightful sessions and valuable connections, this is the perfect occasion to engage with fellow privacy experts and speakers, revisit inspiring conversations, and enjoy a relaxing evening over a refreshing spritz. 

Friday 16 May, 2025

Time Zone: (GMT+01:00) Rome
12:00 PM
12:00 PM - 1:00 PM | 1 hour
DPO Cooperation
Deep dive in and capacity buildingInterpretation available

Get ready for an engaging session that will unite professionals from distinguished establishments to discuss the key skills that DPOs need to thrive in an ever-changing environment, in addition to some strategies for building their capacity to tackle new challenges. From legal expertise to tech-savvy adaptability, the speakers will dive into how DPOs can continue to evolve and make a real impact in their organizations and communities. 

1:00 PM
1:00 PM - 2:00 PM | 1 hour
3:00 PM
3:00 PM - 4:00 PM | 1 hour
DPO Cooperation
Artificial IntelligenceHealth and medical data 
3:30 PM
3:30 PM - 4:00 PM | 30 minutes