Nicole Wolters Ruckert on LinkedIn: Tijdens de masterclass ‘Cybersecurity for boards’ die Allen & Overy… (2024)

Very excited to join the 100 Women in Finance panel on AI this week!

23

Hi network, the next days I will be at the IAPP's AI Governance Global Conference. Let me know if you are there and want to grab a coffee.

15

I had a great time presenting A&O's Data Circle about GDPR enforcement in Amsterdam last week, together with two members of our European Data & Tech team: Catherine Di Lorenzo from Luxembourg and Laurie-Anne Ancenys from France. It was a valuable opportunity to exchange insights, best practices and challenges on a topic that is very relevant to our clients.We shared our different perspectives and experiences on the latest trends and developments in GDPR enforcement, such as the role of data protection authorities and the European Data Protection Board in cross-border investigations. I look forward to continuing the conversation with clients on how to navigate the complex and evolving data and tech landscape in Europe. If you are interested in learning more or if you have any questions, please feel free to reach out to me or my colleagues.Some useful tips from our presentation:* Avoid complaints, to the extent possible* Always collaborate with the DPA(s), provide all information but only the information requested* Identify strong and weak points of GDPR compliance once the investigation starts* Have a litigation strategy from day 1 also in view of data protection enforcement outside EEA and third party (mass) claims

86

Are you preparing for the EU AI Act?Recently, I had the pleasure of again hosting a Data Circle at @Allen & Overy Netherlands with clients from various sectors and industries to discuss the EU AI Act, which is expected to be adopted after the plenary vote of the European Parliament on 13 March 2024. The Data Circle aimed to provide an overview of the main features and requirements of the EU AI Act, as well as to exchange industry views and experiences on how to prepare for compliance with the AI Act and leverage the opportunities of AI.A few key takeaways: 🔸 The AI Act has different rules for different AI risks. It is time to start thinking about your AI risk assessment procedure or toolkit.🔸 The AI Act knows four AI risk categories: prohibited, high-risk, limited risk and minimal risk. General-purpose AI is a new category of AI added to the EU AI Act that is not for a specific use or sector. Every category knows its specific rules. Our clients' obligations will depend the type of AI system and their role in the AI value chain. Depending whether the client acts as provider, deployer, importer or distributor, the rules vary. 🔸 Steps to think about: map AI uses, identify the purpose for which AI is used and discuss for which purposes your business wants to use AI in the future, get your AI taskforce in place involving different stakeholders, draft the agenda to get to AI Act compliance. In that context identify the necessary procedure, polices and governance documents that follow from the AI Act and assess to what extent existing documentation can be re-used. Good luck! Need any help? Let me know. The EU AI Act will shape the future of AI in Europe and, possibly, beyond. If you want to learn more, please contact me.

63

1 Comment