A global technology company in relation to major GDPR and ePrivacy investigations, both during the investigation and the litigation phase. Catherine acted as strategic advisor to the client during the investigation phase as well as the litigation on front of Luxembourg administrative courts.
A global fintech company in relation to an investigation of its compliance with data subject rights. Catherine headed a team composed by members of different EU jurisdictions and involved theAdvanced Delivery Team in Belfast in Perth to ensure that the matter was handled in a timely and cost-efficient manner.
An asset manager on the implementation of a robo-advisor tool for investors, including the drafting of the client-facing documents and the negotiation of agreements with third party software provider.
A Fintech company with a cybersecurity incident caused by a defective third-party software.
A major bank with the migration of its entire IT infrastructure to the cloud, which included negotiation with the cloud service providers, obtaining authorizations and liaising with the Luxembourg financial sector supervisory authority and drafting of intra-group service agreements.
A European institution on the strategy for protecting its IP rights and the drafting of the contractual arrangements to be implemented in relation to the launch of an artificial intelligence-based, collaborative platform.
A U.S. investment advisor and private credit firm with their data protection compliance in connection with the establishment of several Luxembourg funds, including advice on contractual arrangements with service providers and investors as well as on data transfers.
A major Luxembourg news website with the compliance of their cookie consent framework, including drafting a cookie policy and privacy notice to inform the data subjects about the processing of their personal data through the website and handling of complaints from data subjects.
A virtual asset service provider in the setting up of an e-money institution in Luxembourg to deploy its strategy in Europe and further develop into a proper digital asset services provider. The advice covers banking regulatory, IT outsourcing, cybersecurity and data protection advice.
A global tech company on the compliance of its connected devices (including virtual voice assistants) with data protection and medical devices regulations.
An international provider of IT services in relation to the Digital Operational Resilience Act.
On the negotiation of the transitional service agreement for the migration of IT systems and data in relation to the sale of the Luxembourg affiliate of a German Bank.
The Luxembourg affiliate of a German bank in relation to the rules and limitations for transferring data in relation to the Panama Papers to German tax authorities.