Freelancer profile translated to English.

Description

Certified PECB Data Protection Officer, I have been assisting companies, associations, and public organizations since 2020 with their compliance with GDPR and the AI Act (AI regulation).

My conviction: effective compliance is not a constraint, but a lever of trust based on the appropriation of stakes by your teams. I favor a pragmatic, collaborative approach adapted to your on-the-ground reality.
My areas of intervention:

- Governance: External DPO or support for your internal DPO.

- Diagnosis & Risks: Audits, mapping, record-keeping, and Impact Assessments (PIA).

- Security: Review of subcontractor contracts and data breach management.

- Human: Training, team awareness, and regulatory monitoring.

Why work together?

- Dual expertise: Mastery of GDPR and the emerging challenges of AI.

- Proven methodology: Experience gained with large groups, adapted to your size.

- Proximity & Pedagogy: Concrete solutions shared with your teams to foster their autonomy.

Whether you are looking for a one-time audit, a comprehensive compliance project, or an outsourced DPO, I am available to design solutions adapted to your challenges.

Let's discuss your projects!

Languages

English
Fluent
French
Native or bilingual

Workplace preferences

Can work on-site

Paris (up to 50km), Paris (up to 100km)

BNP Paribas
Data Protection Consultant
BANKING AND INSURANCE
October 2022 - Today (3 years and 8 months)
Paris, France
Context: Covering all operational compliance tasks within a team of 2 people on data protection issues related to GDPR & AI Act.

Management and deployment of GDPR compliance measures (audit, roadmap, action plans, remediation tracking)
Maintenance of records (processing activities, data breaches, data subject requests)
Analysis and instruction of new GDPR and AI projects (privacy by design) - Conducting DPIAs (9) and defining action plans
Review of contracts and GDPR clauses
Website compliance (7) and ePrivacy obligations
Drafting of internal documents, procedures, and guides
Training and awareness for employees
Reporting and presentations in Data committees
GDPR Awareness Processing Records Contract Review GDPR Support DPIA
ARVAL
Data Protection Consultant
BANKING AND INSURANCE
June 2021 - October 2022 (1 year and 4 months)
Rueil-Malmaison, France
Context: Working within the Data Protection Department in close collaboration with the DPO, in a context of deploying and structuring the GDPR framework across the company. Cross-functional support for business departments and support functions on compliance, data governance, and management of risks related to personal data processing.

Management and updating of the record of processing activities (ROPA)
Processing of personal data breaches
Management of a data deletion project
Monitoring of cookie and ePrivacy compliance
Drafting of GDPR documents and guides
Training and awareness for teams
Reporting and participation in Data committees
Processing Record DATA BREACHES Project Instructions GDPR Awareness
Compagnie des Alpes - Filiale de la CDC
GDPR CONSULTANT
ENTERTAINMENT AND LEISURE
October 2020 - June 2021 (8 months)
Paris, France
Context: Assisting the Group DPO in managing the GDPR compliance of Compagnie des Alpes entities (subsidiary of Caisse des Dépôts), covering multiple sites (23 entities in France). Working in a decentralized environment requiring coordination, harmonization of practices, and maturity development of local DPOs.
Audit of compliance and evolution of the implementation of group companies' processes
Audit of processing records
Development of associated action plans
Work on personal data lifecycle management measures
Work on managing contractual compliance of Subcontractors
Consent management, cookie policy, etc.
GDPR Regulation Compliance Audit Action Plan Processing Record GDPR Support