You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Albert RuppertAR

Albert Ruppert

Automated Compliance | GDPR, AI Act, Sapin II

€980/day
Paris, FR
8-15 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Albert

Compliance consultant for 10 years, I design and deploy regulatory frameworks for banking and insurance players — GDPR, AI Act, Sapin II.

My specialty: I am also a developer. Where most consultants deliver reports and procedures, I also deliver the tools that bring them to life. Automation of controls, steering dashboards, risk scoring, custom regulatory workflows — all levers that transform a compliance obligation into a measurable productivity gain.

What I can do for you:
  • GDPR, AI Act, Sapin II compliance (framing, deployment, audit)
  • Impact assessments (DPIA, SIA, risk mapping)
  • Design of internal tools: control automation, dashboards, regulatory reporting
  • Training compliance teams on AI and data challenges
My profile:

10 years in compliance, including significant experience in banking and insurance. Technical stack: Power Automate, Power Apps, Node.js, Angular, Rust. Certifications: CIPP/E, ISO 27001 (Provisional Auditor & Provisional Implementer), ISO 27005 Risk Manager, IOBSP Level 2.

Available for one-off or recurring missions, remote or on-site (Paris).
  • French

    Native or bilingual

  • English

    Fluent

  • German

    Conversational

Can work on-site
Paris (up to 50km), Strasbourg (up to 20km)

Experience

  • Groupe français d'assurance
    AI Act Acculturation and Methodological Framework for a GDPR Expert Team
    BANKING AND INSURANCE
    January 2026 - January 2026
    Paris, France
    Mission to upskill a team of GDPR experts on the European Artificial Intelligence Act (AI Act / RIA) and on the operational link between GDPR and AI Act within the compliance function.

    Objective: to enable a team already expert in data protection to approach the RIA with confidence, identify concrete interactions with their existing GDPR practices, and have an immediately actionable assessment methodology.

    Session content (2 hours, over 50 slides):
    • Presentation of the RIA framework: scope, actors, timeline, penalties
    • Step-by-step methodology: qualifications, risk levels, associated obligations
    • Internal governance: roles, responsibilities, integration with existing functions
    • RIA / GDPR articulation: areas of overlap, points of attention, complementarities
    Pedagogical approach: visually rich support to facilitate memorization, and integration of practical cases from popular culture (Skynet, Wall-E, The Wild Robot…) to concretely illustrate the notions of prohibited practices, high-risk systems, and general-purpose systems. The goal: to transform a regulation perceived as dry into a clear and manageable framework.

    Results: a team of experts reassured about their ability to handle AI Act topics and shared methodological milestones.
    AI Act GDPR Compliance Governance Awareness
  • Société d'assurance
    AI Act Compliance Assessment Tool and Associated Workflow Automation
    BANKING AND INSURANCE
    September 2025 - March 2026 (6 months)
    Paris, France
    Design of a self-assessment tool for compliance with the European AI Regulation (AI Act / RIA), for project managers, followed by complete automation of the processing workflow.

    Phase 1 — Assessment Tool

    • Identification of project stakeholders
    • Description of the project and AI system
    • Qualification of the entity (provider, deployer)
    • Risk assessment under the RIA: prohibited system, high-risk, systemic risk, general-purpose, minimal risk
    • Automatic identification of all applicable obligations based on the selected qualifications
    Underlying methodological work: exhaustive breakdown of the regulation into individual actions, categorization of each obligation, and triggering rules to dynamically generate the list of applicable requirements for each use case.

    Phase 2 — Workflow Automation

    Implementation of an end-to-end flow triggered by a form:
    • Organization of a meeting
    • Automatic search for the first common slot in calendars
    • Creation of the Teams meeting
    • Creation of the project file, integration of responses into the assessment file, PDF export, archiving of attachments
    • Notification of completion and automatic escalation in case of error
    Results: initial assessment time divided by 4 (from 2 hours to 30 minutes), elimination of major pain points, complete industrialization of the process. A regulation of over 100 articles transformed into a guided path usable by non-lawyers, natively integrated into the collaborative environment.
    AI Act Automation Power Automate Compliance Risk management
  • Société d'assurance
    Update of the Sapin II Framework and Redesign of Corruption Risk Mapping
    BANKING AND INSURANCE
    January 2023 - December 2023 (11 months)
    Strasbourg, France
    Mission to update the framework for combating corruption and influence peddling (Sapin II law), with a focus on completely redesigning the risk mapping.

    Work carried out:
    • Development of risk scenarios adapted to the insurance business
    • Organization and facilitation of workshops with relevant business departments
    • Collection and consolidation of assessments: gross risks, risk mitigation measures (RMM), net risks
    • Production of updated mapping and prioritized action plan
    • Design of an automated dashboard for monitoring and reporting
    • Presentations in Executive Committee, internal committees, and to the group
    Scope: 10 workshops conducted, around a hundred participants involved from various business departments.

    Deliverables: reusable and industrialized mapping (advanced Excel), steering dashboard, action plan, presentation materials for governance bodies and the group, awareness and methodological framing video.
    Sapin 2 Risk mapping Compliance Risk management Workshop facilitation

Recommendations

Be the first to recommend Albert

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Master of Laws (LL.M.), International and European Business, competition and regulatory law
    Freie Universität Berlin
    2013
    Master of Laws (LL.M.), International and European Business, competition and regulatory law
  • Master 2, Law of Economics and Regulation in Europe
    Sciences Po Strasbourg
    2013
    Master 2, Droit de l'économie et de la régulation en Europe

Certifications

  • CIPP/E
    IAPP
    2018
    GDPR Audit GDPR Compliance
  • ISO 27001 Provisional Implementer
    PECB
    2019
    Cybersecurity ISO 27001

Skill set

Categories