Most of the global initiatives in the field of artificial intelligence are designed as globally-minded soft regulation. “Soft” law or the Brussels Effect can complement but will not be able to replace “hard” law. In the case of AI, a technology that has the potential to revolutionise our society, what will make the difference is the enforceability of the law. In the EU’s AI Act, the EU co-legislators make a wise choice to depart fro...

The foundation of GDPR compliance lies in clearly defined legal bases for the processing of personal data. While the appropriate application of Article 6 and 9 of the GDPR to standard processing activities is sometimes already difficult, these challenges vastly increase when applied to AI training. The complex data processing activities involved therein, as well as the concrete personal data that is collected and used, turn GDPR-com...

Introduction The revised Convention 108 of the Council of Europe is being ratified by a growing number of countries. It will soon reach the required threshold to trigger the entry into force of the convention, as well as bring a paradigm shift in the landscape of global data governance. This session will discuss the key implications of this treaty, in addition to its role in shaping t...

Introduction As Europe continues to strengthen its cybersecurity framework in response to evolving threats and challenges, understanding the intricacies of this legislative landscape is essential for org...

Introduction This Welcome Reception invites you to discover the Privacy MelodIA: An original musical composition on data protection, performed in an outstanding setting and surrounded by the largest collection of Tintoretto’s paintings. 

Introduction This session provides an in-depth analysis of the recent evolution and current status of cross-Atlantic data protection collaboration and convergence. It will discuss the challenges and opportunities for both regions to overcome their differences and develop common frameworks. The panel will consider the common interests and interdependencies of the two regions and their ...

Introduction With the increasing digitization of healthcare information, finding a balance between data accessibility and individual privacy rights is crucial. Academics and experts on this panel will explore approaches to sharing health data while prioritizing privacy and security. In addition to this, attendees will discover cutting-edge strategies and frameworks designed to facilit...

Introduction The panel of this session will examine the dynamic interplay among various European Data Regulations, including the Digital Markets Act (DMA), Digital Services Act (DSA), Data Act (DA), Artificial Intelligence Act (AIA), and Market in Crypto-assets Regulation (MICA). It will also focus on unraveling the complexities surrounding these regulations and offer insights into ov...

Introduction There has been an emerging innovative approach to marketing in the digital realm that utilizes the concept of privacy by design. In this session, attendees will discover this approach, especially regarding online marketing that prioritizes user privacy from the outset. From data minimization to transparent consent mechanisms, the speakers will unveil strategies for buildi...

In 2022 and 2023, the EU Agency for Fundamental Rights (FRA) conducted 70 interviews with heads and staff members of the EU-27 national Data Protection Authorities. Through these interviews, FRA collected experiences, challenges and good practices when it comes to enforcing the GDPR. In this report, FRA 1. identifies common trends and difficulties across Member States, 2. showcases how difficulties can practically harm the effective implementation of DPAs’ mandate, and 3. presents close to 40...

Introduction Concerns over data privacy and market concentration have intensified over time, which makes regulatory compliance more extensive to encompass competition policy and privacy protection. This session will explore key EU legal principles related to PET, examining how practices such as user profiling, tracking, and targeted a...

Introduction In this engaging session, the speakers explore the imperative of fostering international cooperation for data protection and privacy. High-level authorities will share their views on the ways to reinforce international cooperation and convergence in data protection. They will discuss identified challenges and opportunities to build an ocean of privacy that overcomes regio...

Introduction In this dynamic session, the speakers will explore virtual environments that are increasingly intertwined with our physical world, with a specific focus on metaverse, extended reality, and data spaces. They will also examine the latest trends, advancements, and regulatory challenges that face metaverse technologies, XR applications, and data space frameworks. In addition,...

Introduction The speakers on this panel will embark on a comprehensive exploration of the diverse mechanisms available to safeguard data, such as Certification, Standard Contractual Clauses (SCC), Binding Corporate Rules (BCR), and Codes of Conduct (CC). With the use of digital technologies and cross-border data flows, organizations and professionals face mounting pressure to adapt sa...

Introduction Different EU regulations have adopted distinct provisions related to consent. This session will discuss the practical implications of consent management under the Digital Markets Act (DMA), GDPR, and ePrivacy Directive. Using examples, such as consent paywall implementation, the speakers on this session’s panel will explore how to navigate the complexities of ob...

Introduction With the Digital Markets Act (DMA) shaping the rules governing online platforms, businesses must adapt to new compliance requirements in this evolving regulatory environment. This session offers a deep dive into the DMA’s provision, their potential impact, and strategies for ensuring compliance in a rapidly changing regulatory world.  

Introduction This comprehensive session presents the transformative potential of the Data Governance Act, Data Act, and Digital Services Act in shaping the future of digital governance. As the European Union seeks to establish a solid regulatory framework to govern data sharing and digital services, understanding the risks and opportunities presented by these legislative initiatives i...

Introduction From the GDPR to the ePrivacy Directive and beyond, Europe has established a comprehensive regulatory framework for data processing, some of which have their own implementation scheme with dedicated bodies. This session will discuss data regulations interplay and oversight in practice. Key questions and objectives...

Introduction This session will discuss the redress mechanisms in the field of national security. The speakers will examine the effectiveness, challenges, and multiple considerations regarding redress mechanisms, aiming to strike a balance between security imperatives and the protection of civil liberties and fundamental human rights.  

Introduction Artificial intelligence ingests existing data to generate new data. AI technologies continue to revolutionize industries, but questions surrounding the ownership of data and the protection of intellectual property have become increasingly complex. In this session, the speakers will explore the intersection of artificial intelligence, data ownership, and intellectual prope...

Introduction The panel of this session will examine the significance of cross-border accountability in the field of data processing, in order to ensure accountability and demonstrate compliance with data protection regulations. The speakers will discuss and compare available mechanisms, practices, and regulatory frameworks for enhancing transparency in these activities.  

Introduction This session will discuss the impact of artificial intelligence on safety and security. What are the new threats to be addressed? In parallel, it will also discuss how to make AI safe and secure by design. Speakers in this session will explore the latest advancements, challenges, and strategies to address security and safety.  

Introduction The Court of Justice of the European Union (CJEU) stands as a central pillar in shaping legal frameworks across the European Union. In this keynote address, attendees will learn about the profound influence the CJEU exerts on European jurisprudence, and explore its crucial role in interpreting EU law, resolving disputes, and protecting fundamental principles of the Union,...

Introduction The UN, the Council of Europe and the OECD are all working on multilateral artificial intelligence norms and obligations. As AI technology continues to advance rapidly, the need for a cohesive global regulatory framework becomes increasingly apparent. In this session, the speakers will present the latest developments at an international level, with a special focus on the ...

Introduction Over the years, the decisions of the Court of Justice of the EU have played a significant role in shaping the legal framework for privacy rights within the European Union and beyond. From landmark rulings on data protection to the interpretation of fundamental rights, the speakers will explore the interplay between judicial decisions and the evolution of data protection a...

IntroductionData breaches constitute a significant risk for all companies. Based on the previous session, which involved running a data breach simulation, legal, cybersecurity and crisis communication experts will engage in a discussion with participants about their experiences in the simulation. The aim of this discussion is to share examples, best practices and insights for preventing and handling data breaches. The prevalence of sophisticated cyber threats in organ...

Introduction This session is designed to reflect on the key insights that have been discussed in the collective exploration of artificial intelligence. To conclude, speakers will talk about the most crucial learnings, trends, and actionable steps, in addition to valuable reflections to inform future endeavors in the realm of AI.  

Introduction This session will focus on the adoption of the European Health Data Space (EHDS) regulation and its implications in terms of obligations and compliance. It will share the views of the European Commission and experts in this field. The speakers will also discuss the practical implementation of EHDS, in addition to the challenges and opportunities it presents.  

This workshop is designed to practice the conformity assessment procedure of AI systems in accordance with the emerging AI Act. The workshop is structured to provide theoretical knowledge and hands-on experience, focusing on the Act's obligations and requirements concerning intended use, data governance, transparency, and the technical and organizational measures implemented to ensure compliance.Workshop Activities:Introduction to the AI Act: The facilitators present...

Introduction This session will review the interplay among European regulations for health and medical data. The panel will discuss how the regulatory framework shapes the future of medical research and innovation, with a special focus on the interplay between the AI Act, Medical Device Regulation (MDR), and the European Health Data Space (EHDS), and their collective impact on medical ...

Introduction This session will focus on the secondary use of data in the health and medical sector, with a special focus on the needs and challenges of practitioners, including in the medical research domain. From healthcare to research and beyond, the speakers on this panel will offer an insight into the evolving needs, barriers, considerations, frameworks, and challenges associated ...

Introduction This session will discuss and compare the value of synthetic data, pseudonymized data, and anonymized data for medical research. Beyond the ethical dimension and their relevance for data protection by design, the session will discuss their relevance for medical research.  Key questions and objectives ...

Introduction In the field of healthcare data processing, consent has long been considered the primary legal basis. However, with evolving medical research and innovation, alternative legal bases are gaining more attention. This session will discuss and review these alternative approaches to support lawful medical data processing.  

Introduction Medical research often requires accessing large data sets from various geographic regions to avoid any bias in the results. This session will discuss the needs, opportunities, and challenges for sharing medical data beyond borders. The EHDS provides a mechanism for such international cooperation. How will it work in practice? What are the constraints in other jurisdiction...