GDPR e Privacy

Looking for a specialist GDPR lawyer? I provide comprehensive GDPR advisory services for businesses: from gap analysis to full compliance implementation, from data breach management to staff training.

GDPR advisory for businesses

Corporate privacy advisory begins with an assessment of your organisation’s current position against the EU General Data Protection Regulation. I identify gaps, establish priorities, and guide the business through GDPR compliance with concrete, proportionate solutions.

I do not sell paper compliance. I build processes that work in the day-to-day reality of your organisation.

Areas of practice

• Gap analysis and audit – Comprehensive assessment of your organisation’s GDPR compliance position
• Records of processing activities – Mapping and documentation of all personal data flows
• Privacy notices and legal bases – Drafting compliant privacy notices and identifying the appropriate lawful basis for processing
• DPIA – Impact assessments for high-risk processing activities (profiling, video surveillance, AI)
• Data breach management – Response procedures, notification to the Garante, and communication to data subjects
• Data subject rights – Processes for handling requests for access, erasure, and portability
• Contracts and DPAs – Data processing agreements, standard contractual clauses, third-country transfers
• Training – Sessions for employees, managers, and key functions

How I work

My approach to privacy advisory is pragmatic and results-oriented:

1. Initial assessment – I understand the business, data flows, and the specific regulatory context
2. Compliance plan – I prioritise actions by risk and impact, with realistic timelines
3. Implementation – Hands-on support drafting documents, procedures, and policies
4. Monitoring – Periodic reviews and continuous updates based on regulatory developments

GDPR fines: how to avoid them

GDPR fines can reach up to 4% of total annual global turnover or €20 million. But the risk is not purely financial: a poorly managed data breach damages reputation and erodes client trust. A well-structured compliance programme is the best investment to prevent these scenarios.

Who is it for

GDPR advisory is available to organisations of all sizes – from start-ups to multinationals – that process personal data and require a specialist data protection lawyer to ensure compliance, reduce risk, and build trust with clients and partners.