Elisabeth Dehareng

Elisabeth advises clients across all areas of IT, IP and new technology law, with a special focus on privacy, cybersecurity and AI. Her practice focuses on European and worldwide data protection compliance projects, in which field she advises on GDPR-readiness programmes, cross-border data transfer strategies, cybersecurity and data breach management. She provides strategic advice on internal compliance issues, whistleblower protection legislation, investigations and privacy/data litigation.

She also helps clients navigating the new regulatory developments and enforcement in relation to the growing body of legislation governing the European Data & Digital Economy (DMA, DSA, Data Governance Act, Data Act, AI Act, NIS 2, Cybersecurity Act, Cyber-Resilience Act, among others), advertising and marketing practices, including adtech, and consumer protection.

She represents clients in all sectors, with strong industry focus on tech, healthcare and financial services.

Elisabeth's practice also covers data protection and cybersecurity aspects of corporate transactions and reorganisations.

• Advised multinational companies on the impact of the future EU AI Act and AI governance models.

• Advised multinational companies on requirements under the EU Digital Services Act, in particular provisions on transparency, content moderation, advertising on online platforms and on content moderation.

• Advised on the roll-out of internal reporting channels in line with the EU Whistleblower Directive and implementing national law

• Advised multiple multinational companies on requirements under the EU GDPR and their consequences on existing data protection compliance framework and strategies, in particular in relation to transparency, consent, data transfer and accountability requirements and consequences of the case-law of the Court of Justice of the EU in relation to GDPR.

• Assisted in all data protection, privacy and security aspects of corporate transactions and restructuring (mergers and spin-off) and their impact on existing data protection compliance structures as well as transition services agreements;

• Advised on the data protection aspects related to the conduct of internal investigations and trade compliance reviews, including legal issues related to the review of employees' electronic communication data and e-monitoring.

• Represented a group before the chair of the Court of Commerce of Brussels in legal proceedings (cessation action) initiated by a Belgian consumer protection association for alleged violation of privacy rights.

• Represented an association in a court case involving data access issues.

• Advised a global medtech group on its data protection requirements in a highly regulated industry, including drafting and negotiating GDPR-compliant customer-facing and clinic-facing documents (terms of use, privacy policy, privacy notices and consents).

• Advised on the implementation of an online platform for patients, users and healthcare professionals, the processing and sharing of health-related data on the cloud, as well as the transfer of such data worldwide.

• Assessed the qualification of telecom operators under data protection laws, updated privacy and data protection consumer and provider-facing documentation in light of GDPR, and advised on the appointment of a data protection officer.

• Advised on the legal aspects and issues related to the use of a third-party software to carry out account aggregation (including IP aspects such as computer programme and database rights).

Legal 500 EMEA 2023 — Belgium

EU Regulatory - Privacy and Data Protection: Tier 2

"Baker McKenzie CVBA/SCRL advises clients, including major European and global businesses, on commercial data considerations, GDPR compliance, and privacy issues relating to large-scale data projects and transactions. The team also works closely with domestic and European data protection authorities on contemporary issues relating to Schrems II and health data. Elisabeth Dehareng, who has a strong record in data protection issues within the tech and IT space, leads the team, regularly working on the establishment of worldwide data protection policies."

Belgium: Fintech: Tier 2

"Baker McKenzie CVBA/SCRL advises banks and financial institutions, fintech providers, and non-regulated entities on regulatory, intellectual property, and commercial issues relating to crypto assets, payment platforms and products, and online banking, offering standout expertise in cross-border operational issues, market entry, and sustainable finance regulations. The team is headed up by Michael Van Acker, who focuses on financing work, data and privacy specialist Elisabeth Dehareng, and senior associate Olivier Van Den Broeke, who specialises in financial services regulatory advice to institutional clients and new market entrants alike. Senior associate Steffi Illegems also plays a key role on licensing and compliance matters."

Belgium: Intellectual Property: Tier 2

"Baker McKenzie CVBA/SCRL provides IP services including portfolio management, strategic advice, and representation in litigation on issues including infringement and unfair competition, with notable strength in cross-border European work."

• EMEA IP Tech Steering Committee - Member