Privacy and Cybersecurity

Overview

Keeping up with technological change

Technological advancement is something humans do well. The advantage of this is clear – it opens our world to new discoveries and possibilities. But there are also disadvantages: the right to privacy can be threatened and the risk of a cyberattack increases.

Businesses operating in the EU rely on Crowell’s experienced Privacy and Cybersecurity team to help them navigate the laws that govern the collection, use, transfer, and protection of data both within the EU and globally. We help our clients understand their rights and obligations and ensure that they are prepared for cyberattack and data breach through risk assessment and crisis management.

Our clients come to us with many questions about data protection, including:

The processing of data through the internet;
The storing and international transfer of personal data and related cybersecurity issues;
The use of “big data” and profiling for marketing purposes; and
The use of certain technologies in the workplace (such as email monitoring and the use of social media by employees).

We understand that it is not enough for our clients simply to know the law and have the necessary policies and procedures in place. We therefore collaborate closely with them in order to understand the knowledge and culture of their people on the ground. In this way, we can help our clients to ensure that they are handling data in a safe and secure way on a daily basis, by providing tailor-made training for their key staff on the applicable law and their own internal procedures.

We also have excellent working relations with the Belgian Data Protection Authority and assist our clients in their contacts with this and with other Data Protection Authorities throughout Europe.

In order to provide our clients with a pan-European and global service, we have developed a network of experienced data protection lawyers in other jurisdictions with whom we have had strong ties for many years. We are also closely involved in Crowell & Moring’s U.S. Privacy and Cybersecurity group and work closely with our U.S. colleagues on cross-border issues involving the international transfer of personal data.

The team led by Maarten Stassen is very practical when giving advice and business minded. They are also deeply embedded in the Belgian market with strong relationships to the DPA.

— Legal 500, EMEA, Privacy & Data Protection, 2023

Our Services

|

We provide our clients with day-to-day counseling and training on data protection compliance, including on-site workshops and tabletop exercises. Our team helps with contractual work and global and Europe-wide privacy audits. We analyze our clients’ existing data protection practices and make recommendations for compliance, helping them to better understand their data processing, map the location and flows of the data, and identify potential threats and compliance issues. We assist in the development and implementation of tailor-made privacy programs, which may include drafting new privacy policies and procedures, notices, and data transfer agreements, as well as advice on security measures to be taken.
We provide our clients with day-to-day counseling and training on data protection compliance, including on-site workshops and tabletop exercises. Our team helps with contractual work and global and Europe-wide privacy audits. We analyze our clients’ existing data protection practices and make recommendations for compliance, helping them to better understand their data processing, map the location and flows of the data, and identify potential threats and compliance issues. We assist in the development and implementation of tailor-made privacy programs, which may include drafting new privacy policies and procedures, notices, and data transfer agreements, as well as advice on security measures to be taken.
Within Europe, the General Data Protection Regulation (GDPR) introduced a sea change in data law, with new principles, concepts, and obligations resulting in many companies needing to revise their personal data processing practices and culture.

We help our clients review their operations to determine GDPR applicability and impact. We conduct internal analyses of their data flows and data protection policies and practices to identify potential gaps or compliance risks and we help them design risk-based compliance frameworks that are tailored to meet their needs.

More information regarding the GDPR is available here.
Within Europe, the General Data Protection Regulation (GDPR) introduced a sea change in data law, with new principles, concepts, and obligations resulting in many companies needing to revise their personal data processing practices and culture.

We help our clients review their operations to determine GDPR applicability and impact. We conduct internal analyses of their data flows and data protection policies and practices to identify potential gaps or compliance risks and we help them design risk-based compliance frameworks that are tailored to meet their needs.

More information regarding the GDPR is available here.
In case of data or other security breach, we are on-call for our clients until the issues are resolved, from the initial internal investigation stage through the communication, government enforcement, and follow-on litigation stages.

We represent our clients before all the relevant authorities and the Belgian civil and criminal courts. We also defend clients in class action lawsuits.
In case of data or other security breach, we are on-call for our clients until the issues are resolved, from the initial internal investigation stage through the communication, government enforcement, and follow-on litigation stages.

We represent our clients before all the relevant authorities and the Belgian civil and criminal courts. We also defend clients in class action lawsuits.

Contacts

See All Professionals

Maarten Stassen
Partner
- Brussels
  - D | +32.2.214.2837
bXN0YXNzZW5AY3Jvd2VsbC5jb20=
Yung Shin Van Der Sype
Counsel
- Brussels
  - D | +32.2.897.0872
eXZhbmRlcnN5cGVAY3Jvd2VsbC5jb20=

Insights

Firm News | 3 min read | 04.01.24

Crowell Earns Top Rankings in Legal 500 EMEA 2024

Brussels and Doha – April 1, 2024: The Legal 500 Europe, Middle East & Africa (EMEA) 2024 edition has recognized 16 practice areas and 11 lawyers in Crowell & Moring’s Brussels and Doha offices. The 11 individual lawyers received 18 total rankings across the 16 different practice areas....

Webinar | 03.26.24
Get Your Act Together: The AI Act is Coming!
Speaking Engagement | 03.26.24
"Get Your Act Together: The AI Act is Coming!" Crowell & Moring Webinar, 2024.
Client Alert | 4 min read | 03.20.24
The EU AI Act and Obligations for Companies Operating in the European Union

View All Insights

Insights

Firm News | 3 min read | 04.01.24

Crowell Earns Top Rankings in Legal 500 EMEA 2024

Webinar | 03.26.24

Get Your Act Together: The AI Act is Coming!

Speaking Engagement | 03.26.24

"Get Your Act Together: The AI Act is Coming!" Crowell & Moring Webinar, 2024.

Client Alert | 4 min read | 03.20.24

The EU AI Act and Obligations for Companies Operating in the European Union

|

The ICO Bares its (Sharp) Teeth: What You Need to Know About GDPR One Year On
|
10.17.19
IJE / IBJ for a Deep Dive on the GDPR - 1 Year Later
|
05.24.19
IoT Open Table Discussion: Legal and IT Risks & Challenges
|
04.04.19
IJE/IBJ Deep Dive - Big Data and Competition Rules: Competition Aspects of Collecting and Using (Big) Data
|
02.07.19
Help! Data Breach! What Do I Do? And What Should I have Done Already?
|
11.13.18
Trade Association Breakfast Series: GDPR and Beyond
|
07.31.18
Digital Circle*: A Blockchain Bootcamp
|
01.18.18
Keynote Speech on Data Protection & Cybersecurity
|
11.08.17
The GDPR Deadline is Near
|
09.26.17
The EU General Data Protection Regulation: What You Need to Know
|
05.12.17
The European Data Protection Supervisor Releases New Opinion on the EU’s Proposed AI Act
|
11.27.23
IBJ/IJE Partnerblog
5 jaar GDPR in de eventsector: van “big data” naar “smart data” in 5 lessen
|
07.05.23
Event Confederation
HR Privacy Issues in Belgium: What does the GDPR mean today?
|
12.06.22
IBJ/IJE Partnerblog
GDPR voor HR in lokale besturen. Gegevensbescherming helder uitgeklaard en toegepast
|
07.01.21
Vanden Broele
Discussie over zogenaamde corona-apps: méér Big Brother a.u.b.
|
04.22.20
VRT
Autonomous vehicles: Driving regulatory and liability challenges
|
04.07.20
Automotive World
Europe organisations working from home during coronavirus must ensure appropriate security measures
|
04.02.20
OneTrust DataGuidance
Six essential tips to start this second week of teleworking
|
03.22.20
DataNews
Disruptive Innovation in Business and Finance in the Digital World
|
02.03.20
International Finance Review, Volume 20, Chapter 7
How New EU Cyber Sanctions Compare To US Policy
|
07.30.19
Law360
"Get Your Act Together: The AI Act is Coming!" Crowell & Moring Webinar, 2024.
|
03.26.24
"Are DPOs happy in their job?," Data Protection Institute, Brussels
|
05.25.23
"Global Privacy Policy Training," Crowell & Moring, Webinar, 2023.
|
03.24.23
"The Essentials on Employee Data Privacy," Meru Data Webinar, 2023.
|
02.24.23
"HR Privacy Issues in Belgium: What does the GDPR Mean Today?" Crowell & Moring Webinar, 2022.
|
11.29.22
"HR Privacy – Case Law Developments of the Labor Courts and the Belgian DPA (2018-2021)," Webinar in collaboration with IBJ/IJE
|
10.26.21
"Cyber Insights – Lessons Learned from Recent Ransomware Attacks," Webinar in collaboration with IBJ/IJE
|
09.21.21
"Global Cross-Border Data Transfers (Part 3)," Crowell & Moring Webinar
|
04.15.21
"Cybersecurity: Lessons Learned from the Latest Major Hacks," Webinar in collaboration with IJE/IBJ, Brussels, Belgium
|
02.02.21
"Legal Mechanisms Applying to Data," Webinar in collaboration with IBJ/IJE (IT/IP Practice Group), Brussels, Belgium
|
01.18.21
Get Your Act Together: The AI Act is Coming!
|
03.26.24
HR Privacy Issues in Belgium: What does the GDPR Mean Today?
|
11.29.22
HR Privacy – Case Law Developments of the Labor Courts and the Belgian DPA (2018-2021)
|
10.26.21
Cyber Insights – Lessons Learned from Recent Ransomware Attacks
|
09.21.21
Cybersecurity - The Sequel
|
05.20.21
Global Cross-Border Data Transfers (Part 2)
|
12.03.20
Global Cross-Border Data Transfers (Part 1)
|
09.16.20
Crowell Earns Top Rankings in Legal 500 EMEA 2024
|
04.01.24
Legal 500 EMEA Ranks Crowell & Moring in 11 Practice Areas and Recognizes Seven Lawyers
|
04.13.22
DEAL NOTE: Crowell & Moring Advises Kymco Capital and Kwang Yang Motor Co. in First Publicly Traded EV Motorcycle Company in U.S., Valued at $1.77 Billion
|
12.14.21
Legal 500 EMEA Ranks Crowell & Moring in 11 Practice Areas and Recognizes Seven Lawyers
|
04.16.21
Legal 500 EMEA Recommends Crowell & Moring in 11 Practice Areas and Recognizes 13 Lawyers
|
04.27.20
Crowell & Moring Elects Eight New Partners and Promotes Seven to Senior Counsel and 26 to Counsel Positions
|
01.02.20
Legal 500 EMEA Recommends Crowell & Moring in 11 Practice Areas and Recognizes 14 Lawyers
|
04.16.19
Legal 500 Europe, Middle East & Africa Recommends Crowell & Moring in 11 Practice Areas and Recognizes Three Individuals
|
04.25.18
Experts Optimistic, Though Wary, Toward Privacy Shield Successor
|
03.25.22
Compliance Week
Don't Count On European Regulators To Relax Rules During Coronavirus Crisis
|
04.16.20
Compliance Week
App Offers $1M Bounty For Proof Of Alleged Hacking Smear Campaign
|
03.31.20
Compliance Week
Vous travaillez à domicile? Les cybercriminels adorent ça!
|
03.25.20
La Dernière Heure
Vous travaillez à domicile? Les cybercriminels adorent ça!
|
03.25.20
La Libre Belgique
Crowell & Moring named as one of the BTI Cybersavvy 16 law firms 2020
|
03.01.20
BTI Consulting
Europe Data Protection Digest
|
10.18.19
IAPP
How Biopharma and Medtech CISOs Can Minimize Risk in Today’s Digital Era
|
10.01.19
BrightInsight
Data Protection: Why The New Regulation Scares Businesses
|
11.27.17
Trends-Tendances
Pourquoi le GDPR fait peur aux entreprises
|
11.09.17
Trends
The EU AI Act and Obligations for Companies Operating in the European Union
|
03.20.24
Notice and Action Mechanisms in the DSA – Balancing the Removal of Illegal Content and the Freedom of Expression
|
02.16.24
2024: An Overview of New and Upcoming Belgian and EU Laws and Regulations
|
01.31.24
European Parliament Adopts Final EU Data Act
|
11.17.23
European Data Protection Supervisor Releases New Opinion on the EU’s Proposed AI Act
|
11.13.23
CJEU Clarifies the Right to Obtain a ‘Copy’ of Personal Data
|
05.08.23
Key Takeaways from the Cookie Banner Taskforce Report
|
03.07.23
The EDPB's Opinion on EU-U.S. Data Privacy Framework
|
03.07.23
EU-U.S. Data Privacy Framework—Draft Adequacy Decision by the European Commission: The Long-Awaited Replacement of the Privacy Shield?
|
12.15.22
The European Parliament Calls for a Long-Term European Video Game and Esports Strategy
|
11.11.22
Why consent is the weakest link
|
10.10.19
Crowell & Moring's Data Law Insights
Court of Justice of the European Union Finds that Pre-Ticked Checkboxes Are Not Valid Consents under GDPR
|
10.09.19
Crowell & Moring's Data Law Insights
Belgian Data Protection Authority Finds Merchant Violated GDPR by Requiring Customers to Provide Electronic ID to Receive Loyalty Card
|
10.08.19
Crowell & Moring's Data Law Insights
What we can learn about joint controllership from the CJEU Fashion ID ruling
|
08.21.19
Crowell & Moring's Data Law Insights
ICPHSO International Symposium Panel on GDPR and the EU’s Digital Single Market
|
12.13.18
Crowell & Moring's Retail & Consumer Products Law Observer

View All Insights

Professionals

View All Professionals

Insights

Firm News | 3 min read | 04.01.24

Crowell Earns Top Rankings in Legal 500 EMEA 2024

Brussels and Doha – April 1, 2024: The Legal 500 Europe, Middle East & Africa (EMEA) 2024 edition has recognized 16 practice areas and 11 lawyers in Crowell & Moring’s Brussels and Doha offices. The 11 individual lawyers received 18 total rankings across the 16 different practice areas....

Webinar | 03.26.24
Get Your Act Together: The AI Act is Coming!
Speaking Engagement | 03.26.24
"Get Your Act Together: The AI Act is Coming!" Crowell & Moring Webinar, 2024.
Client Alert | 4 min read | 03.20.24
The EU AI Act and Obligations for Companies Operating in the European Union

View All Insights

Practices

Contacts

See All Professionals

Maarten Stassen
Partner
- Brussels
  - D | +32.2.214.2837
bXN0YXNzZW5AY3Jvd2VsbC5jb20=
Yung Shin Van Der Sype
Counsel
- Brussels
  - D | +32.2.897.0872
eXZhbmRlcnN5cGVAY3Jvd2VsbC5jb20=

Insights

Firm News | 3 min read | 04.01.24

Crowell Earns Top Rankings in Legal 500 EMEA 2024

Brussels and Doha – April 1, 2024: The Legal 500 Europe, Middle East & Africa (EMEA) 2024 edition has recognized 16 practice areas and 11 lawyers in Crowell & Moring’s Brussels and Doha offices. The 11 individual lawyers received 18 total rankings across the 16 different practice areas....

Webinar | 03.26.24
Get Your Act Together: The AI Act is Coming!
Speaking Engagement | 03.26.24
"Get Your Act Together: The AI Act is Coming!" Crowell & Moring Webinar, 2024.
Client Alert | 4 min read | 03.20.24
The EU AI Act and Obligations for Companies Operating in the European Union

View All Insights

Overview

Overview

Keeping up with technological change

Our Services

Compliance with data protection law

GDPR

Crisis management and litigation

Contacts

Insights

Insights

Events

Publications

Speaking Engagements

Webinars

Firm News

Press Coverage

Client Alerts

Blog Posts

Professionals

Insights

Practices

Contacts

Insights