Brussels Privacy Symposium 2023

Understanding the EU Data Strategy Architecture: Common Threads - Points of Junction - Incongruities November 14, 2023 @ 9:00am - 5:00pm CET


brussels graphic for socialebwebsite

The seventh edition of the Brussels Privacy Symposium will take place on Tuesday, 14 November 2023, jointly presented by the Brussels Privacy Hub of Vrije Universiteit Brussel (VUB) and the Future of Privacy Forum (FPF). This year’s topic is “Understanding the EU Data Strategy Architecture: Common Threads – Points of Junction – Incongruities”.

The Brussels Privacy Symposium is a global convening of practical, applicable, substantive privacy research and scholarship, bringing together policymakers, academic researchers, civil society and industry representatives. This year’s program will focus on how the EU data strategy package overlaps, interacts, supports or creates tension with provisions within the GDPR. More specifically, the Symposium will provide a forum for in-depth discussions on key principles of the upcoming EU AI Act, the Digital Services Act (DSA), the Digital Markets Act (DMA), in addition to other relevant acts from the Data Strategy package, and their interaction(s) with the existing personal data protection framework created by the GDPR. 

This event will be held in live, in-person-only format.






9:00 am –
9:15 am CET

Welcome Coffee and Registration

9:15 am –
9:20 am CET

Introduction from Co-Hosts


  • Jules Polonetsky, Future of Privacy Forum
  • Prof. Gianclaudio Malgieri, Leiden University & Brussels Privacy Hub 

9:20 am –
9:45 am CET

Opening Remarks 

  • Commissioner Didier Reynders, European Commissioner for Justice
  • Wojciech Wiewiórowski, European Data Protection Supervisor

9:45 am –
10:45 am CET

Panel I – Shifting the Paradigm? Dispelling the Push for Access to Data in the Data Strategy Package

Facilitating access to data seems to be a leitmotif of the Data Strategy package, regardless of whether the data is personal or not. This can be seen from including specific legal requirements for very large online platforms to provide access to data to researchers and supervisory authorities under the Digital Services Act (DSA); and from imposing extensive and real time data portability obligations and interoperability obligations to gatekeepers in the Digital Markets Act (DMA), to facilitating access to data held by public authorities in the Data Governance Act (DGA), and creating specialized European data spaces to pool data. Questions of whether this represents a paradigm shift away from the strict rules regulating personal data processing, including making it available, under the GDPR, are essential in order to make sense of the new data regulatory framework in the EU. 

At the same time, individual “consent” seems to transform into a gatekeeper itself, ensuring access to personal data across services, platforms, authorities and NGOs – if we look at the provisions of the DMA and the DGA. This panel will discuss how data access and consent rules in the Data Strategy package are reconciled with the provisions of the GDPR.


  • Christina Michelakaki, Future of Privacy Forum


  • Amal Taleb, SAP 
  • Mathias Vermeulen, AWO Agency
  • Anna Buchta, EDPS
  • John Miller, Informational Technology Council  

10:45 am –
11:15 am CET

Coffee Break

11:15 am –
12:15 pm CET

Panel II – A network of Impact Assessments: from the GDPR to the DSA and the AI Act

This panel aims to shed light on the different risk-based impact assessment provisions embedded in key EU digital regulations such as Article 34 of the DSA, and the Fundamental Rights Impact Assessment in the EU Parliament version of the Artificial Intelligence Act (AIA). Additionally, it will explore the intersection between the new legislation and the GDPR‘s Article 35 to evaluate data protection implications and with already existing “Human Rights Impact Assessment” models existing around Europe (like in the Netherlands).

The panel will feature experts in the field who will present their analysis and engage in a stimulating discussion, providing a deeper understanding of the approaches to impact assessments and their implications for stakeholders across the evolving sphere of EU digital regulation. By unraveling these intricacies, the panel aims to facilitate constructive dialogue and offer an opportunity to learn about the different types of impact assessments, their interconnectedness, and their relation to the GDPR. Moreover, key considerations for conducting an impact assessment will be discussed.

The panel will be of interest to anyone who is involved in the development or implementation of the EU digital strategy, including policymakers, regulators, businesses, and civil society organizations. It will explore the following questions:

  • What are the different types of impact assessments applicable?
  • What are the key considerations for conducting an impact assessment?
  •  Is the DPIA different from a Fundamental Rights Impact Assessment?


  • Gianclaudio Malgieri, Leiden University & Brussels Privacy Hub



  • Alessandro Mantelero, Polytechnic University of Turin & Mediterranean Digital Societies & Law
  • Frederico Oliveira da Silva, BEUC (The European Consumer Organisation) 
  • Karolina Mojzesowicz, DG JUST, European Commission 
  • Jocelyn Aqua, PwC

12:15 pm –
1:30 pm CET

Lunch Break

1:30 pm –
2:30 pm CET

Panel III – What future then for data enforcement in Europe?

The GDPR, with its cooperation and consistency mechanism under the One-Stop-Shop, created one of the most complex and multi-layered enforcement structures in EU law. In fact, five years after the GDPR became applicable, the European Commission proposed new rules to reform this system on its margins, looking primarily at modifying national administrative procedures. With the data strategy legislative package, the EU legislator shifted focus and added to a dispersed enforcement model across the EU Member States a centralized enforcement model, reserving competences for the European Commission to enforce the DSA in relation to VLOPs and VLOSEs, and the DMA. 

The Data Strategy package is also significantly enhancing the web of national supervisory authorities that might have a word to say about data, algorithms, AI and the digital world. At the same time, Data Protection Authorities will continue dealing with any and all processing of personal data, including those that underpin the scope of application of all other laws in the Data Strategy package. To complicate matters further, recent rulings by national and European courts have ascertained the ability of antitrust authorities to make their own findings based on issues concerning the processing of personal data, thus laying the first brick towards the possible creation of a super authority dedicated to the data economy, tackling it from different points of view, all intertwined.


  • Gabriela Zanfir-Fortuna, Future of Privacy Forum


  • Annemarie Sipkes, Dutch Authority for Consumers and Markets (ACM)
  • Claire Gayrel, Digital Markets, DG CONNECT, European Commission
  • Romain Robert, Belgian Data Protection Authority
  • Merijn Chamon, Vrije Universiteit Brussel (VUB)

2:30 pm –
3:00 pm CET

Coffee Break

3:00 pm –
4:00 pm CET

Breakout Workshops – Have your say: How do the different proposals of the Data Strategy package interact, overlap, or create tension with key provisions of the GDPR?

After hearing from leading experts on the topic of the Symposium, attendees will be invited to share their own thoughts, in more restricted focus groups on how to define and address the common threads, incongruities and points of juncture of the Data Strategy package. From the DSA to the DMA, DGA, AI Act and the GDPR, what are some of the implementation challenges related to the different elements of the Data Strategy package? How does the Data Strategy package interact with ongoing challenges related to emerging technologies, including, but not limited to, Generative AI? Does the Data Strategy package allow for further protection of fundamental rights in the digital space, including for vulnerable individuals?

Workshop Leaders 

  • Vasileos Rovilos, FPF 
    • Topic: Zooming in on the DSA
  • Barbara Lazarotto, VUB
    • Topic: Right to Data Portability: Making Sense of the GDPR, DMA, and Data Act overlaps
  • Bianca-Ioana Marcu, FPF
    • Topic: Fundamental Rights in the Data Strategy Package
  • Alessandra Calvi, VUB & Prof. Gianclaudio Malgieri, Leiden University & Brussels Privacy Hub 
    • Topic: The AI Act: exploring the complex balance between fundamental rights and innovation

4:00 pm –
4:30 pm CET

Workshop Report Outs

4:30 pm –
4:45 pm CET

Closing Keynote

4:45 pm –
5:00 pm CET

Closing Remarks

  • Rob van Eijk, Future of Privacy Forum
  • Juraj Sajfert, Brussels Privacy Hub
  • Irene Loizidou Nicolaidou, European Data Protection Board

5:00 pm –
6:00 pm CET

Cocktail Reception

Join us for further conversation over drinks and snacks to close the day.


Jocelyn Aqua

Principal, PwC Products and Technology

Jocelyn is a Principal with PwC US Products and Technology where she established the firm’s business-led organizational capabilities related to data governance, data privacy, ethical data use, accessibility, inclusive design, and AI governance. Under her stewardship, the Data, Privacy & Ethics organization worked collaboratively with product and digital asset teams to drive product innovation aligned with US and global regulatory requirements. 

Jocelyn advises executives and boards on AI governance, data privacy and protection, cybersecurity, accessibility and the national security regulatory landscape. She works with corporations in all sectors, including in technology, telecommunications, hospitality and financial-banks, insurance and private equity, to develop and implement privacy programs, AI governance programs, and lead enterprise-wide transformation and regulatory remediation efforts.  She provides strategic guidance and operational assistance on the preparation and implementation of data localization and transnational data flow mechanisms such as EU Standard Contractual Clauses, APEC cross border rules and EU Binding Corporate Rules. 

Jocelyn is a former US government privacy official and prosecutor with over 20 years of public and private sector regulatory compliance, data privacy and cybersecurity experience, including 15 years with the Department of Justice. During that time, she held senior positions within the National Security Division, the Criminal Division and the Office of the Director for National Intelligence. She also represented the Department in negotiations and consultations with the European Commission on numerous law enforcement and commercial cross-border data transfers and US and EU data sharing agreements.  She holds a JD and an MA from The George Washington University and a BA from Pennsylvania State University.  She serves as a member of the Advisory Board of the Future of Privacy Forum and is a Certified Information Privacy Professional, CIPP.  Jocelyn regularly advises global organizations and speaks at universities and at national and EU conferences.   

Anna Buchta

Head of Policy & Consultation Unit, European Data Protection Supervisor (EDPS)

Anna Buchta is Head of Unit “Policy & Consultation” at the European Data Protection

Supervisor (EDPS), coordinating the work of the EDPS on providing advice to the EU legislators on legislative and policy proposals relevant to data protection. She has extensive experience in data protection and privacy regulations and litigation before the Court of Justice, notably in several cases concerning data retention, national security and PNR. She was one of the institutional rapporteurs on EU data protection for the FIDE2021 Congress (reports available here: ). She participates in working groups of the High-Level Group on Access to Data for Effective Law Enforcement co-chaired by the Commission and the Presidency of the Council. Previously, Anna worked at the European Commission, among others on data privacy in electronic communications. Before that, she was a researcher at the Interdisciplinary Centre for Law and ICT (ICRI, currently CITIP) at KU Leuven (Belgium) and worked as a lawyer in private practice. Anna has a master’s degree in Law from the University of Warsaw (Poland) and a Master of Laws (LL.M.) degree from KU Leuven.

Alessandra Calvi

EUTOPIA PhD fellow, Vrije Universiteit Brussel (VUB)

Merijn Chamon

Professor of EU Law, Vrije Universiteit Brussel (VUB)

Merijn Chamon is professor of EU law at the Vrije Universiteit Brussel and Visiting professor at the College of Europe (Bruges). His research interests focus on EU institutional and constitutional law.

Claire Gayrel

Digital Markets, DG CONNECT, European Commission

Claire Gayrel is a privacy and data protection expert at the European Commission, DG CNECT, dealing with the supervision and enforcement of data related obligations of the DMA (Digital Markets Act). She started her career in 2008 as a researcher in privacy and data protection at the CRIDS (Research Center in Information, Society and Law) before joining the European Data Protection Supervisor in 2016 where she held a wide range of responsibilities and tasks both in policy and enforcement. Among others, she notably followed legal and policy developments in international transfers of personal data, the use of personal data in health and scientific research and actively contributed to the work of the EDPB in these areas.

Bárbara Lazarotto

Vrije Universiteit Brussel

Barbara Lazarotto is a PhD researcher at the Law Science Technology and Society research group at the Vrije Universiteit Brussel. She is a Marie-Skloswska Fellow at Horizon 2020 Legality Attentive Data Scientists – LeADS Project.

Irene Loizidou Nikolaidou

Vice-Chair, European Data Protection Board

Gianclaudio Malgieri

Associate Professor & Co-Director, Leiden University & Brussels Privacy Hub

Dr Gianclaudio Malgieri is an Associate Professor of Law and technology at Leiden University (the Netherlands), where he is a Board Member of the eLaw Center for Law and Digital Technologies. He serves as the Co-Director of the Brussels Privacy Hub, as an Associate Editor of Computer Law and Security Review (Elsevier), and co-leads “VULNERA“, the International Observatory of Vulnerable People in Data Protection. He is an external ethics expert for the European Commission and is a programme committee member of the PLSC (Privacy Law Scholarship Conference), and an Advisory Board member of Gianclaudio has authored over 60 publications, including articles in leading international academic journals and a monograph, “Vulnerability and Data Protection Law” (Oxford University Press, 2023). His works have been cited by, inter alia, top international newspapers (The New York Times, The Washington Post, Le Monde, Politico, La Tribune) and European and International Institutions.

Alessandro Mantelero

Associate Professor of Private Law and Law & Technology, Polytechnic University of Turin

Alessandro Mantelero is Associate Professor of Private Law and Law & Technology at Polytechnic University of Turin and EU Jean Monnet Chair in Mediterranean Digital Societies & Law. He is a member of the EDPB Support Pool of Experts and has advised several organizations on data regulation, AI, and human rights, including the Council of Europe (2016-2022), the UN, the European Commission, the EDPB, the EU Agency for Fundamental Rights. His latest book is Beyond Data. Human Rights, Ethical and Social Impact Assessment in AI (Springer-Asser, 2022, open access).

Bianca Marcu

Policy Manager for Global Privacy, FPF

Bianca Marcu is Policy Manager for Global Privacy at the Future of Privacy Forum. As part of the Global Privacy team, her work focuses on growing the footprint of FPF’s global policy and legal research internationally.

Prior to joining FPF, Bianca was the Managing Director of the multidisciplinary Computers, Privacy and Data Protection (CPDP) Conference in Brussels. She led the conference’s programming work, comprised of 90+ panel sessions debating the latest developments in data protection and privacy in the EU and beyond.

As Researcher in Law at the Law, Science, Technology and Society (LSTS) Research Group of the Vrije Universiteit Brussel, Bianca counselled on the compliance of AI tools for scientific and political research purposes with data protection law.

Prior to making the move from the Netherlands to Brussels in January 2021, Bianca worked as Senior Advocacy and Standards Programmes Coordinator at ESOMAR. She is a certified Data Protection Officer and holds an LLM in International Law and Globalisation from Maastricht University.

Christina Michelakaki

Policy Fellow, Global Privacy, FPF

Christina Michelakaki is a Policy Fellow for Global Privacy at the Future of Privacy Forum (FPF). She is following global trends in data protection and privacy laws around the world but also focuses on European and national case law, recent academic research, guidelines, and decisions from the European Data Protection Board and national Data Protection Authorities and actively monitors the activity of EU institutions around privacy and data protection, including Communications and Proposals of the European Commission and legislative reports from the European Parliament and the Council of the EU. She has been conducting extensive research on Data Protection by Design and by Default and was one of the principal authors of an FPF Report pertaining to this matter. Her research interests also revolve around fundamental rights and Artificial Intelligence.

Christina has a legal background and holds an LL.M on Information Technology, Media & Communications Law from the London School of Economics (LSE) (2022, London), where she wrote her thesis on Automated decision-making and the “right to an explanation” under the GDPR. She is an EU qualified lawyer and a member of the Thessaloniki Bar Association in Greece.

John Miller

Senior Vice President for Policy and General Counsel, Information Technology Industry Council (ITI)

John Miller is Senior Vice President for Policy and General Counsel at the Information Technology Industry Council (ITI), the preeminent global technology trade association. Mr. Miller leads ITI’s Trust, Data and Technology policy team, driving ITI’s global strategy and advocacy on a broad portfolio of digital, internet, and national security policy and legal issues, including privacy and data protection, artificial intelligence, cyber and supply chain security, data governance and cross-border data flows, platform liability, government access to data, telecommunications, cloud policy, and national security transaction reviews.

A recognized global expert and industry leader on technology policy, John has testified multiple times before the U.S. Congress on tech policy issues and has significant leadership experience in public-private partnerships in the U.S., receiving the inaugural National Risk Management Center Partner Award for his continuing impact as Co-Chair of the ICT Supply Chain Risk Management Task Force and previously serving as Chair of the Information Technology Sector Coordinating Council. John also serves on the FPF Advisory Board and served on FPF’s Expert Group on Data Protection and Data Flows. Previously, John worked in the Global Public Policy organization at Intel Corporation as Director of Policy and Managing Counsel and as a lawyer in private practice. John holds a Juris Doctor from the University of Wisconsin Law School, where he served as Articles Editor of the Wisconsin Law Review, and a Bachelor of Arts degree in Government from Hamilton College.

Frederico Oliveira da Silva

Senior Legal Officer, BEUC

Frederico is a Senior Legal Officer at BEUC – The European Consumer Organisation, where he represents the interests of 46 independent national consumer associations from 32 European countries. With more than 7 years of experience in public affairs, Frederico advocates for the interests of consumers in the fields of artificial intelligence, cybersecurity and intellectual property. He is also a part-time visiting lecturer at the University of Sciences Po in Lille, where he teaches a course on European consumer policy.

Prior to joining BEUC, Frederico worked in a law firm in Lisbon and in a public affairs consultancy firm in Brussels. 

Frederico studied law at the University of Lisbon and Université Catholique de Louvain. He holds a Master in EU Law from the College of Europe in Bruges. Frederico is fluent in Portuguese, English and French.

He can be contacted at [email protected]. You can also find him on Twitter: @fredericoosilva

Jules Polonetsky

Chief Executive Officer, FPF

Jules has served for 15 years as CEO of the Future of Privacy Forum, a global non-profit organization that serves as a catalyst for privacy leadership and scholarship, advancing principled data practices in support of emerging technologies.

Jules has led the development of numerous codes of conduct and best practices, assisted in the drafting of data protection legislation and presented expert testimony with agencies and legislatures around the world. He is an IAPP Westin Emeritus Fellow and the 2023 recipient of the IAPP Leadership Award.

Didier Reynders

European Commissioner for Justice

Romain Robert

Member of the litigation Chamber, Privacy and Digital Law Consultant, Belgian Data Protection Authority

Romain is a member of the litigation chamber of the Belgian DPA, the organ enforcing the GDPR in Belgium. Romain worked from 2002 to 2011 in various Brussels law firms. Between 2007 and 2011, he was also a researcher at the Research Centre in Law and Society at the University of Namur. In 2011, he joined the Belgian DPA as a legal advisor. He worked as legal officer at the Policy and Consultation Unit of the EDPS as of 2015 and joined  the Secretariat of the EDPB in May 2018. In April 2020, Romain joined noyb – an NGO conducting strategic litigation to enforce digital rights- where he was Program DIrector until July 2023.

Vasileios Rovilos

EU Policy Counsel, FPF

Vasileios Rovilos is an EU Policy Counsel at the Future of Privacy Forum, based in Brussels. His work focuses on digital transformation, emerging/disruptive technology advancements and AI, transatlantic relations, data protection/privacy and their intersection with law and policy-making. Prior to commencing at FPF, Vasileios worked at Microsoft as an AI & Competition Policy Coordinator (Responsible Tech & Rule of Law). At Microsoft, he worked on emerging legal and public policy issues on AI-related regulation – with an emphasis on the AI Act, AI liability frameworks, Trade & Standardization, Regulatory Sandboxes and Transatlantic Relations. Moreover, he coordinated efforts on matters relating to Competition Policy, followed closely progress on the Metaverse(s) and data protection/privacy, as well as covered developments on political advertising. He previously worked at the European Commission; namely, at Directorate-General for Internal Market, Industry, Entrepreneurship and SMEs (DG GROW) on issues pertaining to platform economy and at Directorate-General for Justice & Consumers (DG JUST) on fundamental rights policy, with a focus on data protection, privacy and the freedom of expression, inter alia.

Additionally, Vasileios is conducting research on matters of Artificial Intelligence and he is a member of the advanced research group on Law and AI at Universidade Católica Portuguesa (UCP). Vasileios pursued his legal studies at the University of Maastricht (LL.B. in European & International Law – 2016, the Netherlands), holds an LL.M. in European Law from Leiden University (2018, the Netherlands) and subsequently acquired a second postgraduate degree (MA) from the College of Europe in European Politics & Governance Studies (2019, Belgium).

Juraj Sajfert

Vice-Director, Brussels Privacy Hub

Juraj Sajfert is a doctoral candidate at the Vrije Universiteit Brussel (VUB) and the University of Luxembourg and a vice-director of the Brussels Privacy Hub.

He is also an EU official at the Data Protection Unit of DG Justice and Consumers at the European Commission.

Juraj’s work, both policy and academic, is focusing on data protection in the area of law enforcement.

Corinna Schulze

Senior Director, EU Government Affairs, SAP

Corinna Schulze is Senior Director, EU Government Affairs at SAP since 2014. In her current position, Corinna is responsible for public policy matters related to the Digital Economy, Artificial Intelligence, Data Protection, and Export Control. She followed closely the negotiation and adoption of the General Data Protection Regulation and is now involved in the practical implementation within the company. Corinna chairs the European and External Affairs committee of the SPD Wirtschaftsforum e.V, serves on the Advisory Board of the Future of Privacy Forum (FPF) and is a member of the Digital Economy Advisory Board of the University of Vaasa, Finland.

Corinna holds a law degree from the University of Münster, Germany and her bachelor law degree with the district court of Düsseldorf.

Annemarie Sipkes

Director of the Telecommunications, Transport and Postal Services Department, Dutch Authority for Consumers and Markets (ACM)

Annemarie Sipkes is Director of the Telecommunications, Transport and Postal Services Department at the Dutch Authority for Consumers and Markets (ACM) since April 2018. As 2022 Chair of BEREC, the Body of European Regulators of Electronic Communications, she is currently mandated as vice chair of BEREC and member of the High Level Group under the Digital Markets Act. She has significant public sector experience, including six years (2012-2018) as the Director of Knowledge and Strategy and CIO at the Ministry of Education, Culture & Science in the Netherlands. During her career, Annemarie Sipkes has also worked at the Netherlands Ministry of Social Affairs and Employment, the Central Bank of the Netherlands and for KPMG, the accounting and professional services company. Annemarie Sipkes holds an MSc in Economics and an MA in Arts, Sciences and Technology.

Amal Taleb

Director of EU Government Affairs, SAP

Amal Taleb is currently Director of EU Government Affairs in Brussels for the European Cloud provider SAP, after holding for 5 years the role of SAP Director of Government Affairs in Paris.

Lawyer by trade, Amal has previously served as an in-house legal and policy officer for the French consumers’ organization UFC-Que Choisir, where she handled both litigation cases and policy files with regards to competition, platform regulation and data protection.

In 2016 and 2017, Amal also served as Vice-President of the French Digital Council, an advisory body to the French government on digital issues. During her mandate, her works focused on SMEs digitization policies and data protection in public sector.

Vincenzo Tiani

Vrije Universiteit Brussel - Brussels Privacy Hub

Vincenzo Tiani is a PhD researcher at the VUB – Brussels Privacy Hub. He is an adjunct professor of Law & Tech at EDHEC Business School (FR) and IULM University (IT). He is a partner at PANETTA Law Firm and regularly collaborates with leading Italian media on European digital policies.

Mathias Vermeulen

Public Policy Director, AWO

Dr. Mathias Vermeulen is the co-founder of AWO, a law firm and consultancy specializing in digital policy regulation. He has been a leading expert on platform regulation in general, and the Digital Services Act in particular. His work has most recently focused on AI-governance and operationalizing DSA-provisions around access to data, (algorithmic) auditing, risk assessment and risk mitigation measures. Mathias is also an associate fellow at Centre for Law, Science, Technology and Society at the Vrije Universiteit Brussel, 

Previously Mathias worked as a strategic advisor for the Mozilla Foundation and Luminate, where he advised both organisations on their campaigning and public policy strategies related to countering online disinformation, ad tech and online content regulation. Earlier he worked for five years in the European Parliament on a wide range of digital policy issues for Dutch MEP Marietje Schaake. Mathias also worked as the main advisor to the UN special Rapporteur on human rights and counterterrorism, Prof. Dr. Martin Scheinin for three years. He holds a Ph.D. in European privacy and data protection law from the Vrije Universiteit Brussel.

Wojciech Wiewiórowski

European Data Protection Supervisor

Wojciech Wiewiórowski is the European Data Protection Supervisor (EDPS) since December 6th,. 2019, and adjunct professor in the Faculty of Law and Administration of the University of Gdańsk. He was among others adviser in the field of e-government and information society for the Minister of Interior and Administration, the Director of the Informatisation Department at the Ministry of Interior and Administration. He also represented Poland in the committee on Interoperability Solutions for European Public Administrations (the ISA Committee) assisting the European Commission. He was the Inspector General for the Protection of Personal Data (Polish Data Protection Commissioner) from 2010 to 2014, and the Vice Chair of the Working Party Art. 29 in 2014. In December 2014, he was appointed Assistant European Data Protection Supervisor. After the death of the Supervisor – Giovanni Buttarelli in August 2019 – he replaced Mr. Buttarelli as acting EDPS. His areas of scientific activity include first of all Polish and European IT law, processing and security of information, legal information retrieval systems, informatisation of public administration, and application of new IT tools (semantic web, legal ontologies, cloud, blockchain) in legal information processing.

Gabriela Zanfir-Fortuna

Vice President for Global Privacy, FPF

Dr. Gabriela Zanfir-Fortuna is the Vice President for Global Privacy at the Future of Privacy Forum, where she leads the work on Global privacy developments and counsels on EU data protection law and policy, working with all FPF’s offices and partners around the world. She created and curates FPF’s Global Privacy blog series.

Gabriela currently serves as a member of the Reference Panel of the Global Privacy Assembly, and she is also a member of the Executive Committee of the ACM FAccT (Fairness, Accountability and Transparency) Conference, since 2021. She is a member of the European Digital Media Observatory (EDMO) Working Group on Access to Platform Data, working on the creation of a Code of Conduct on access to platform data under Art. 40 of the GDPR.

As a data protection and privacy law expert, Gabriela recently testified for the FTC on data portability and for the European Parliament’s LIBE Committee on the EU’s proposed Data Governance Act.

Prior to moving to the US in 2016, she worked for the European Data Protection Supervisor in Brussels, being part of the team that advised the EU legislator on the GDPR during its legislative process. She dealt with both enforcement and policy matters, was a member of the EDPS litigation team appearing before the Court of Justice of the EU, as well as actively participated in the work of the Article 29 Working Party. She worked on the assessments of both the draft EU-US Privacy Shield and the draft EU-US Umbrella Agreement during her time at the EDPS and the Article 29 Working Party.

She previously served as a Program Chair (Law) for the ACM FAccT 2020 and as a member of the Program Advisory Committee for the ICDPPC 2019 Conference in Tirana. She was also a member of the Program Committee of PLSC Europe, CPDP – academic track, ACM – AIES 2020, and the ENISA Annual Privacy Forum. She served as a Project Scientist supporting the IoT Privacy Infrastructure Project within the Institute for Software Research of Carnegie Mellon University (2019 – 2020).

Gabriela holds a Ph.D. in law (2013, University of Craiova) with a thesis on the rights of the data subject from the perspective of their adjudication in civil law and an LLM in Human Rights (2010), after obtaining her law degree at the same university (2009). She is also an associated researcher with the Law, Science, Technology and Society Center at Vrije Universiteit Brussel.

Presented by

brussels privacy symposium 2023 sponsor banner v.1 9 7 23





The Brussels Privacy Symposium is a global convening of practical, applicable, substantive privacy research and scholarship, bringing together policymakers, academic researchers, civil society and industry representatives. The seventh edition of the Brussels Privacy Symposium taking place on 14 November 2023, is jointly presented by the Brussels Privacy Hub of Vrije Universiteit Brussel (VUB) and the Future of Privacy Forum (FPF).

Symposium Audience: FPF Corporate Members, Academia, and European privacy professionals. 


Silver Level Sponsorship – $5,000

  • Opportunity for promotional item and/or brochure to registrants
  • Official thank you during program by Conference leadership
  • Sponsor name and logo in event promotions and materials 
  • Company logo on event webpage with link, located on FPF website


Gold Level Sponsorship – $10,000

  • Opportunity for promotional item and/or brochure to registrants
  • Official thank you during program by Conference leadership
  • Sponsor name and logo in event promotions and materials
  • Company logo on event webpage with link, located on FPF website 
  • Dedicated sponsor table at event


Platinum Level Sponsorship – $15,000


  • Opportunity to make short remarks/announcements (2 minutes) at Symposium
  • Opportunity for (3) promotional item and/or brochure to registrants
  • Official thank you during program by Conference leadership
  • Sponsor name and logo in event promotions and materials 
  • Company logo on event webpage with link, located on FPF website 
  • Dedicated sponsor table at event
  • CEO and VP of Global Policy to share post-event sponsor thank you on LinkedIn


Interested in more information or to secure a sponsorship? Email [email protected].


U-Residence VUB - 271 Boulevard Géneral Jacques, Ixelles, Bruxelles, 1050