Alain Herrmann has worked at the Commission National pour la Protection des Données (CNPD) of Luxembourg, the Data Protection Authority, since 2012. He was appointed commissioner in September 2021. He is leading the activities of the investigations department and the compliance department (certifications, code of conducts, international transfers, support and innovation tools, EU large-scale information systems audits).
Alain has previously held several IT and information security-related positions in the private sector. Alain holds a Master degree in Information Systems Security Management from the University of Luxembourg.
Sessions auxquelles Alain Herrmann participe
Lundi 10 Juin, 2024
Introduction The constant and rapid evolution of the digital landscape directly influences the roles and responsibilities of professionals tasked with safeguarding data privacy and ensuring regulatory compliance. This is especially highlighted by recent EU legislations, such as the Digital Services Act, Digital Markets Act, Data Act, Data Governance Act, together with European Data Sp...
Mercredi 12 Juin, 2024
Introduction The number of compliance regulatory frameworks is getting higher and higher, which can often feel like navigating a maze of rules and requirements. However, compliance sandboxes offer opportunities for innovation to stay ahead of the curve. This session explains the concept of compliance sandboxes, which is a controlled environment where regulators and industry experts co...
Jeudi 13 Juin, 2024
Introduction From the GDPR to the ePrivacy Directive and beyond, Europe has established a comprehensive regulatory framework for data processing, some of which have their own implementation scheme with dedicated bodies. This session will discuss data regulations interplay and oversight in practice. Key questions and objectives...
Introduction The panel of this session will examine the significance of cross-border accountability in the field of data processing, in order to ensure accountability and demonstrate compliance with data protection regulations. The speakers will discuss and compare available mechanisms, practices, and regulatory frameworks for enhancing transparency in these activities.
Vendredi 14 Juin, 2024
Introduction Following last year's discussion, this session will discuss and explore the possibility to support convergence and interoperability in the field of data protection certification between three major international data protection normative frameworks: Convention 108+ of the Council of Europe, the EU GDPR, and the Global CBPR Forum. It will also explore and discuss different...
Sessions auxquelles Alain Herrmann assiste
Lundi 10 Juin, 2024
Introduction In democratic societies, the protection of individuals’ privacy is closely connected to the preservation of civil liberties, which in turn highlights the essential role that privacy rights play in sustaining democratic principles and fostering civic engagement. This enriching session will focus on the multifaceted ways in which privacy and democracy intersect, shaping the...
The foundation of GDPR compliance lies in clearly defined legal bases for the processing of personal data. While the appropriate application of Article 6 and 9 of the GDPR to standard processing activities is sometimes already difficult, these challenges vastly increase when applied to AI training. The complex data processing activities involved therein, as well as the concrete personal data that is collected and used, turn GDPR-com...
Introduction The revised Convention 108 of the Council of Europe is being ratified by a growing number of countries. It will soon reach the required threshold to trigger the entry into force of the convention, as well as bring a paradigm shift in the landscape of global data governance. This session will discuss the key implications of this treaty, in addition to its role in shaping t...