Wim Nauwelaerts

1 month ago | jdsupra.com | Wim Nauwelaerts |Alice Portnoy

On March 10, 2025, the Belgian Data Protection Authority (BDPA) updated its 2020 guidance on the processing of personal data for direct marketing purposes (see the updated guidance here in French and in Dutch). The BDPA reviewed its original guidance to help companies from all sectors navigate applicable EU privacy and data protection law requirements in view of recent technological and legal developments. What’s New?

2 months ago | jdsupra.com | Wim Nauwelaerts

The AI Act (Regulation (EU) 2024/1689 of June 13, 2024, laying down harmonized rules on artificial intelligence) is the European Union’s comprehensive legal framework on AI, which aims to promote the responsible development and use of artificial intelligence in the EU. The timeline for implementation of the AI Act follows a staggered approach: while the AI Act entered into force on August 1, 2024, most of its provisions will apply from August 2, 2026.

Oct 18, 2024 | jdsupra.com | Kelly Hagedorn |Wim Nauwelaerts |Alice Portnoy

EU Member States had until today, October 17, 2024, to transpose the Network and Information Security (NIS) 2 Directive into their national laws. As Directives are not directly applicable in EU Member States, the EU legislator required all 27 Member States to incorporate into their local laws the requirements of NIS 2 and to make them binding on covered entities within their jurisdiction. However, a large number of EU Member States have missed the transposition deadline.

Aug 21, 2024 | jdsupra.com | Wim Nauwelaerts

Last month, the European Data Protection Board – which is composed of the national data protection authorities (‘Supervisory Authorities’) of the countries in the European Economic Area (‘EEA’), as well as the European Data Protection Supervisor (‘EDPS’) – adopted two Frequently Asked Questions (‘FAQ’) documents concerning the EU-U.S. Data Privacy Framework (‘DPF’), aimed at providing further insight into the functioning of the DPF.

Aug 12, 2024 | jdsupra.com | Wim Nauwelaerts

On August 6th, the Dutch Data Protection Authority (DPA) issued guidance cautioning companies about the potential data protection risks associated with the use of Artificial Intelligence (AI)-powered chatbots. In its guidance, the DPA reports that it has recently received several notifications of personal data breaches caused by employees sharing personal data with a chatbot that uses AI.