Aurélie P.
Business Privacy Specialist (BPS) & Business Data Owner (BDO) for HOS Media at Amadeus
Privacy engineer & Bizdev - DPO - Ethics "expert" - former European Center for Privacy & Cybersecurity (ECPC) board member
About Aurélie P.
Mantra: Data Driven Decision Making & Privacy by Design or Data is the New Infrastructure & Privacy is the New Green, Trust is the new Currency? Learn from Digital to be agile: test & fail fast while respecting Data Minimization, a basic Conversion Rate Optimization (CRO) principle. Add increased processing power, keep an eye on what's legally acceptable to remain ethical. Aurélie pioneered Digital analytics in Europe as one of the first Google Analytics consultancies in Europe. She co-founded OX2 in Belgium in 2003, which was successfully sold to UK based Digitas LBi (Publicis) in 2008 with an EBIT of 20%. Aurélie works as an independent consultant, defining data flows and supporting companies in their risk exercises to determine potential data liabilities. She focuses on delivering value to the bottom line while keeping an eye on European legislation, pushing a Privacy by Design agenda. This includes the ePrivacy Directive, the GDPR, the DMA and the upcoming AI Act in Europe which she uses as a base line for gap analysis with emerging laws such as US state legislations and the other “privacy laws” influenced by the Brussels ripple effect caused by the GDPR. Her main focus, besides coaching analysts & data officers, are data flows, risk mitigating measures and documentation; digital & analytics teams with their HR responsibility set-up & a respect for fundamental rights as our societies continue to digitalize.
Skills & Expertise
Career Journey
Business Privacy Specialist (BPS) & Business Data Owner (BDO) for HOS Media
Product Privacy Engineer building on 20 years of experience in digital together with my Hospitality Media colleagues. Supporting the Privacy Program defined by the Group Data and AI Office, using OneTrust to define ROPAs in Media and document use of data in ML models in line with transparency obligations. Working with the Product Development teams to define mitigation measures for new Media initiatives, assure lawful basis of processing and opt-out signals, on top of data subject requests (DSR). Collaborating with the security teams for third party risk assessments, including international data transfers, the use of SCCs and DTIAs.
Support Pool Expert
https://edpb.europa.eu/support-pool-experts-spe-programme en A. Technical expertise in new technologies and information security B. Legal expertise in new technologies
Founder
Collaborating with Chief Data Officers, particularly in digital, AdTech and MarTech vendors and strategy consulting firms in Europe, the US and Asia to advise businesses on data strategy, with regards to the EU General Data Protection Regulation (GDPR), the opportunity to Compete on Privacy and related communicational issues. Services include - assessing client compliance obligations and aligning compliance strategy with business goals through risk based assessments, - advising clients on a broad range of aspects of their privacy and data protection program (policy, procedures, training, tools), legal frameworks, cross-border data flow, data protection impact assessments (DPIA), data mapping, vendor agreements, - strategic advice for executive-level decisions (board of directors and management) regarding data strategy, privacy by design, and building sustainable businesses in markets that are impacted by privacy and data protection concerns. Rigorously independent and trustworthy, I am Dutch and work under a lot of NDAs.
Visiting Fellow DPO Courses & European Centre on Privacy and Cybersecurity board member
The ECPC offers a platform for research focused on legal issues related to personal data protection and cybersecurity. ECPC has a strong European and international outlook, and conducts education and training closely intertwined with the Centre s research. The centre brings together interdisciplinary groups of researchers active in areas of fundamental rights, data privacy, transparency and confidentiality, IT, data security, and more.
