track record
Support activities for a leading credit institution in assessing the compliance of the internal regulatory framework on data governance with the European framework established by the GDPR and the AI Act.
Advisory services for a leading credit institution aimed at validating and integrating the internal regulatory framework on cybersecurity, with reference to the European sectoral regulatory constellation (NIS2, DORA, GDPR, and AI Act).
Support to a leading credit institution for the review and integration of corporate guidelines and the internal regulatory framework on AI Governance, in light of the AI Act requirements and European best practices.
Between 2022 and 2023, we collaborated with the European Commission as Junior Experts, contributing to two reports on e-voting rights and disability rights in the EU.
We assisted, as Data Protection Officer, an important public institution in fulfilling its data protection obligations (e.g., drafting of data protection policies, data processing agreements, joint controller agreements, records of processing activities, clauses for transborder data flows of personal data), ensuring compliance with the GDPR and national data protection legislation.
We have provided over 15 years of consultancy expertise in governance, risk management, and regulatory compliance for emerging and disruptive technologies, including AI, Quantum Computing, Cloud, and Cybersecurity.
We assisted a leading Italian banking and insurance institution in the preparation and update of its Data Protection Impact Assessment (DPIA) within the regulatory framework outlined by the AI Act. The goal was to effectively coordinate the obligations and requirements arising from the intersection of the European Artificial Intelligence regulations and the General Data Protection Regulation (GDPR).
We assisted a leading banking institution in conducting a Fundamental Rights Impact Assessment (FRIA), ensuring compliance with the AI Act and European regulations on the protection of fundamental rights.
The project involved identifying risks associated with the use of artificial intelligence in banking processes, with a particular focus on transparency, non-discrimination, and privacy protection.
We supported a global insurance company in addressing a significant revenue loss, attributed to fraudulent activities concentrated in specific areas of Central Europe.
Our intervention involved a detailed data analysis, aimed at identifying the most relevant insights to extract from a large dataset. We then implemented and tested advanced machine learning techniques, leveraging decision tree and random forest algorithms.
We provided a legal opinion for a digital service provider on the European regulatory framework applicable to data centers, with a particular focus on data governance, environmental compliance, and critical infrastructure management. Special attention was given to the challenges within the European Economic Area (EEA).
Legal opinions on the following issues: