“I’m Petruta Pirvan. I’m a qualified lawyer and, after a long career in different multinationals, in 2023 I founded EU Digital Partners. 

EU Digital Partners is a boutique firm providing a series of services in the area of compliance with data privacy and emerging digital laws.

My firm is headquarted in Bucharest but my team members are spread across different geographies such as Switzerland and India.”

My team members

My team members have been long acting as advisors specialized in data privacy and data protection matters, supporting both legal professionals and business functions throughout negotiation, implementation, and ongoing execution of client engagements as well as other legal matters on data privacy issues at global level. 

Vibha Mohan

Research Assisstant Data Privacy and digital Law


Kosha Doshi

Legal Intern Data Privacy and Digital Law

Our Services

Assess

We are happy to assist with a maturity assessment of your data protection compliance program and to provide you with our conclusions in a maturity assessment report.

Remediate

We will help you with a remediation plan, including a program blueprint, roadmap, game plan, cost estimates, presentations to the Board of Directors.

Implement

We will not go away and if you want us to stay we can be an extension of your team helping to implement the remediation plan and the road map. We will work together with you throughout the entire journey.

Ad-hoc support

We can offer you our DPO-as-a-Service package, EU Representative services, or we can help you drafting your data protection agreements, binding corporate rules or other legal documents.

Training

We are experienced in training professionals to achieve their IAPP certificates or otherwise, we are happy to support with trailored training and workshop sessions covering data privacy matters and emerging digital regulations.

document, microsoft, word-28213.jpg

Exploring and balancing the pitfalls of Microsoft Explorer

Microsoft Copilot for Microsoft 365 is a groundbreaking AI tool designed to enhance productivity and creativity within enterprise settings. 

However, its implementation poses several challenges and risks that demand careful consideration by organizations.

Data Leakage and Unauthorized Access: Copilot’s access to sensitive information is contingent upon user permissions within the organization. However, incorrect access controls may lead to data leakage, wherein Copilot inadvertently accesses and exposes sensitive data without proper authorization. For instance, if a user has access to a spreadsheet containing salary information, Copilot may inadvertently include this sensitive data in its outputs, potentially violating privacy regulations.

microsoft, logo, ms-80660.jpg

EU Commission faces scrutiny over Microsoft 365 data breach: EDPS imposes corrective measures

 

An inquiry into the European Union’s utilization of Microsoft 365 has concluded that the Commission violated the bloc’s data protection regulations in its adoption of the cloud-based productivity software. The European Data Protection Supervisor (EDPS) announced its findings through a press release, stating that the Commission breached “several crucial data protection rules while employing Microsoft 365”. Following the investigation, the EDPS determined that the European Commission (Commission) had indeed contravened several key data protection regulations in its usage of Microsoft 365. As a result, the EDPS has mandated corrective actions to be implemented by the Commission.

mars, mars rover, space travel-67522.jpg

ISO/IEC 42001:2023 as a A Commitment to Trustworthy AI

On December 18, 2023, the International Organization for Standardization (ISO) published the ISO/IEC 42001:2023 – Information Technology – Artificial Intelligence – Management System standard. 

 

ISO/IEC 42001:2023 has been developed by the International Organization for Standardization / International Electrotechnical Commission (ISO/IEC) Joint Technical Committee (JTC) 1, Information technology, Subcommittee (SC) 42, Artificial intelligence.

 

The standard is a comprehensive sector-agnostic management framework comprising of guidance for organisations to systematically address and control risks related to the development and deployment of AI system. 

Our Amazing Clients

contact us, contact, e-mail-2355449.jpg

Contact