Sebastian Georgescu

• Advising on multiple ad-tech related issues, ranging from privacy risks of using specific analytics tools (e.g. Google Analytics), analysing reliance on legitimate interests in the context of behavioural advertising, cookie audits and advising on implications of recent CJEU case law (e.g. IAB) and EDPB regulatory guidance. *
• Advising on practical issues arising from development, procurement, use of AI models (RNNs, CNNs, Transformers), including risk assessing various image generating models; carrying out a DPIA for use of Microsoft Copilot; drafting governance documents and specific internal guidance (e.g. on use of publicly available datasets for model training; on AI specific security risks and mitigations etc.); summarising regulatory guidance, navigating ENISA guidance on AI etc. *
• Advising a range of clients on vulnerability assessments and security policy development, including advising a leading e-commerce platform on cybersecurity threats inherent in deployment of various artificial intelligence systems.
• Advising clients in a broad range of sectors (including health and financial services) on compliance with new digital regulations such as the Data Act and the Artificial Intelligence Act. *
• Advising a leading social media company on various aspects of their data protection compliance, including updates to their privacy notices to reflect recent regulatory decisions; conducting a comprehensive gap analysis to identify use of dark patterns and risk-assessing a wide range of artificial intelligence models. *
• Advising on direct marketing issues across a range of jurisdictions and drafting practical guidance for businesses to navigate said requirements in an efficient and effective way. * 
• Coordinated the review and update of over 80 vendor contracts for a leading global manufacturing company who was updating its contracts to account for Brexit and adoption of new SCCs. *

* Denotes experience from previous firm