European Case Handling Workshop, 2022

Legal Adviser to the President of Personal Data Protection Service of Georgia

Mediator since 2022. Currently, Legal Adviser to the President of the Personal Data Protection Service of Georgia; a Ph.D. program student at the Ivane Javakhishvili Tbilisi State University; Visiting Lecturer of the faculties of medicine and Law at Ivane Javakhishvili Tbilisi State University.

Nikoloz holds a diploma in Law from Ivane Javakhishvili Tbilisi State University, Faculty of Law. Nikoloz has been actively involved in legal practice since 2017, as he worked in various institutions and private companies, including the Personal Data Protection Service, the Ministry of Finance, the Georgian National Museum, and Palitra Media Holding. Working languages: Georgian, English, Russian.

Legal Adviser of Estonian Data Protection Inspectorate.  Liisa Ojangu has a Master’s Degree in law and has been active in the data protection field since 2017. She is experienced in supervisory proceedings but also in advising other government institutions on privacy law matters.

Personal Data Protection Expert, Personal Data Protection Authority of Türkiye.

Elif Ergün Tuncer holds a Bachelor of International Relations from Hacettepe University and a Graduate Diploma in European and Turkish Political Works from Ankara University. She previously served as a European Union Expert in the Ministry of Health of Türkiye for 13 years. She participated in the works and projects regarding harmonization with EU legislation in the health sector. She has been working for the Personal Data Protection Authority of Türkiye since 2018, covering conducting personal data protection examinations upon the complaints of data subjects or ex officio, coordinating international affairs between the Authority and international organizations (such as GPA, OECD, Spring Conference) and participating in several international working groups.

Main State Controller, Conformity Department, National Center for Personal Data Protection of the Republic of Moldova.

Felicia Ungureanu graduated from the Faculty of Law of the Free International University of Moldova. Bachelor's degree in Law/Criminal Law, Class of 2007. As a lawyer has been achieved in the public and private sectors since September 2007.

In November 2017, she has been hired by the National Center for Personal Data Protection of Moldova, working as a State Controller within the Prevention, Surveillance and Evidence Directorate, and in 2018, has been appointed as a Senior State Controller within the Compliance Directorate.

She attended the courses organized by EU Twinning Project Capacity Building of the National Center for Personal Data Protection of the Republic of Moldova (2018-2019) and has been certified on the topics: “Communication and awareness building on personal data protection”, “Train-the-trainers on personal data protection” and successfully passed the examination, “Rapid response procedure to personal data protection security incidents”.  

Participated in the course organized by the Academy of Public Administration, of the Republic of Moldova (2019), certified in "Elaboration and coordination of draft normative acts".

Data Protection Expert at the Department of Authorization and Data Breach Notification at the Hungarian National Authority for Data Protection and Freedom of Information.

Andrea Jeney has been working at the Hungarian DPA since 2019. Before this, she spent half a year dealing with international data transfers at the Ministry of Interior. After successfully passing the ISO/IEC 27001:2013 Internal Auditor exam in 2020 she qualified as a Lawyer specializing in data protection and data security (LLM) in 2021 at ELTE University. In 2021 she also passed the examination with distinction following the Data Protection Certification Course organized by EIPA (international certificate). Another significant area of her interest is the fundamental and data protection rights context of using AI technology. That is why she is now participating as a lawyer specializing in AI and Technology (LLM) at ELTE University. Currently, she is a data protection expert at the Department of Authorization and Data Breach Notification at the Hungarian DPA.  

Regional Data Protection Officer for Europe and Central Asia, International Committee of the Red Cross (ICRC) Delegation to the European Union, NATO and the Kingdom of Belgium

Stéphane Kolanowski holds a Law Degree and a Master’s in Laws (LL.M.) in Public International Law. He joined the International Committee of the Red Cross (ICRC) Legal Division (Geneva) in 1997, where he worked on different issues, such as Human Rights, impunity, as well as on some arms-related issues. In 1999, he participated in the build-up of the ICRC Delegation to the EU, NATO and the Kingdom of Belgium, a Delegation in which he was the Senior Legal Adviser until May 2021. He was responsible for following relevant legal developments in EU and NATO policies and operations and for promoting and disseminating International Humanitarian Law for several audiences. Currently, Stéphane Kolanowski is the ICRC Regional Data Protection Officer responsible for Europe and Central Asia. In that capacity, he is advising ICRC delegations in the EURASIA region on data protection issues and following relevant data protection normative developments at the European Union and at the Council of Europe level. Since 2013, Stéphane Kolanowski is a Visiting Professor at the College of Europe. He is also a member of the Steering Committee of the Chaire Jean Monnet on “the EU and crisis management (Prof. Millet Devalle, Université Côte d’Azur, 2019-2023). Stéphane has published articles on International Humanitarian Law and participated in numerous conferences and seminars. He is also the founder of the “Bruges Colloquium” in International Humanitarian Law. 

Legal officer, Berlin Commissioner for Data Protection and Freedom of Information

LL.M., Legal Officer, Berlin Commissioner for Data Protection and Freedom of Information 

Inspector of the Sectorial Investigation and Data Security Department, General Directorate of Personal Data Protection, Information and Data Protection Commissioner, Albania.

Neritan Sulaj finished his studies in Electronic Engineering, at the Polytechnic University of Tirana in 2004.

He served as an ICT expert at the Supreme Court of Albania from 2004 to 2009. From 2009, Neritan Sulaj served at the Albanian DPA as ICT Expert, from 2014, he has served as an Inspector at the Directorate of Personal Data Protection. 

The key aspects of daily tasks are dealing mostly with Individuals Complaints related to privacy issues, as well as investigation & evaluation of personal data processing and compliance, in the framework of the National Law for Protection of Personal Data, 95/46 EC Directive and the General Data Protection Package.

Inspector of the Sectorial Investigation and Data Security Department, General Directorate of Personal Data Protection, Information and Data Protection Commissioner, Albania.

Rigers Bodurri finished his studies with an M.Sc in Mathematical and Computer Engineering, Faculty of the Natural Sciences University of Tirana in 2012.

He served as an ICT expert in some public institutions of Albania (Ministry of Welfare, Ministry of Health, Ministry of Defense, Appeal Chamber, etc.) from 2014 to 2021. Since 2021, he has served at the Albanian DPA as an Inspector at the Directorate of Personal Data Protection.

Information Rights Manager, Gibraltar Regulatory Authority.

Kelly Ann Martinez joined the Gibraltar Regulatory Authority as an officer during 2017, with the intention of developing professionally in the area of data protection regulation. Kelly Ann Martinez has since moved from Team Leader to Information Rights Manager within the last year, having also completed a Master of Laws in Information Rights Law and Practice. Kelly’s primary areas of management include data protection investigations and enforcement, as well as departmental policy.  

Information Rights Manager, Gibraltar Regulatory Authority.

Louise Busto joined the Gibraltar Regulatory Authority in 2008 and her experience in the field of regulation spans over 14 years. A graduate in Psychology, Louise Busto’s collaborative style and interpersonal skills are essential in the area of first-line engagement and amicable resolution. Although Louise Busto’s workload is varied, her primary areas of management include breach notifications, public relations and privacy awareness.  

Lawyer, Austrian Data Protection Authority

Stephanie Mezler-Andelberg (Mag.a) joined the Austrian Data Protection Authority in May 2020 as a legal national and international case handler as well as a representative at the European Data Protection Board´s subgroups.

Before her engagement with the Austrian Data Protection Authority, Stephanie Mezler-Andelberg worked in the private sector, at the European Parliament and at an Austrian District Court and Regional Court

Coordinator for the Office for National Complaints/Lawyer, Austrian Data Protection Authority

Stefanie Pitsch (Mag.a) joined the Austrian Data Protection Authority in 2016 as a legal national and international case handler as well as a representative at the European Data Protection Board´s subgroups. Since 2019, she also coordinates the office for national complaints. Before her engagement with the Austrian Data Protection Authority Stefanie worked at the Austrian Higher Administrative Court.

Investigation Department (Economic Affairs), Commission Nationale de l'Informatique et des Libertés (CNIL), France

Amélie Deleuze has been working as a legal officer within the Investigation department of CNIL for a little under two years. Before joining the authority, she worked in a law firm specializing in IT law and conducted a number of audits on their clients’ GDPR compliance. She also teaches privacy law and cybersecurity law.

Senior Inspector, Dutch Data Protection Authority

Danny Koevoets has been working for the Dutch DPA since August 2018. His department, Eerstelijns Onderzoek (First line Investigations) handles national data breach notifications and enforcement requests, including Article 77 GDPR complaints, from data subjects and interest groups. Additionally, His department performs (short) investigations. Besides these activities, I he is a key user in different IT projects at the AP where he can see privacy and security considerations put into practice.

Senior Inspector, Dutch Data Protection Authority

After working at the System Supervision department of the Dutch DPA for 2,5 years – where Mandy Erkelens worked on the assessment of the code of conduct, prior consultations, certification mechanisms and many other topics. She transferred to the International Investigation department earlier this year. In this role, she is currently handling cross-border cases (either complaints and data breaches) and participating in and contributing to the international investigations the Dutch DPA conducts.   

Legal Adviser of the Supervisory Division of the Data State Inspectorate of Latvia

Inga Sazonova has been working at the Data State Inspectorate for over two years. She specializes in cases involving children’s rights, freedom of speech and the processing of personal data of officials.

Legal Adviser of the Supervisory Division of the Data State Inspectorate of Latvia

As a Legal Adviser of the Supervisory Division of the Data State Inspectorate, she has mostly handling cases of unsolicited commercial communications and correct usage of cookies and other information on websites, as well as working with international cooperation cases and issues related to them. 
In addition, she has several years of experience working as a Legal Translator, translating various legal texts from English and French languages, and, previously, she was doing research on the topic of competition law at the University of Savoie in France.

Senior Advisor at Department for Supervision, Investigations, Technologies and Security, Croatian Personal Data Protection Agency

Barbara Šušić has been working for the Croatian Personal Data Protection Agency (AZOP) since 2018. Within supervision, investigations, technologies and security department, covering legal aspects in investigations.  She is currently the secretary of the commission for imposing administrative fines within AZOP. Since 2022,  she represents AZOP at EDPB expert subgroups.

Senior Advisor Specialist in Supervision, Investigation, Technology and Security Department, Croatian Personal Data Protection Agency

Mario Milner is an Expert Specialist in criminology with 19 years of experience in law enforcement and has been working for the Croatian Personal Data Protection Agency since 2018 in the Supervision, Investigation, Technology and Security Department. 

As a part of his obligations, he carries out supervision at business entities, state organizations, law enforcement bodies in regard to determining infringements of provisions of the GDPR and LED (“Police Directive”), as well as supervisions regarding obligations from SIS II and HVIS Regulations and conducts procedures regards data breach notifications. 

He is a representative of the Croatian Data Protection Agency in the EDPB expert subgroup BTLE (Border, travel and law enforcement) and in the EDPS expert subgroup CIS (Custom information system) and up to 2022, in ECB (Europol cooperation board).

Senior Advisor - Specialist at Department for Supervision, Investigations, Technologies and Security, Croatian Personal Data Protection Agency 

With almost 10 years of experience in HR DPA, Marko Šijan  
worked as an Advisor for projects and system support, Senior Advisor for Information Security, and currently on the post as a Senior Advisor Specialist. 

He involved in activities related to inspection/supervision by data subject requests and ex officio regarding the processing of personal data as well incident case handling based on data breach notifications by data controllers and ex officio; Participated in audits in Croatian consular posts abroad in relation to the Croatian VIS (HVIS) as preparation and verification of preconditions for implementation and connection to the EU VIS; Member of Technology, VIS and SIS EDPB subgroups and active participant in Schengen evaluations of member states related to Schengen Acquis; Participated in several multinational projects within the EU.

Secretary of the Director's Cabinet, Croatian Personal Data Protection Agency

   Iva Katić holds an LLM degree in Law from Zagreb University (Croatia) and a bar exam. 
  She has been working for the Croatian Personal Data Protection Agency (AZOP) since 2018, covering legal aspects of data protection in various subject matters, such as giving opinions on the interpretation of the provisions of the GDPR and draft laws, analyzing the compliance of national laws and other regulations with the GDPR, working on EU projects, holding lectures for various stakeholders. She is currently the president of the commission for imposing administrative fines within AZOP.
   She represents AZOP at several international working groups (e.g. GPA, EK GDPR/LED group, various EDPB expert subgroups) and at EDPB Plenary meetings.  Since 2022, she is working as Secretary of the Cabinet Office. 

Legal Officer at the European Data Protection Supervisor (EDPS)

Rumer Ramsey is a Legal Officer in the Supervision & Enforcement Unit at the European Data Protection Supervisor (EDPS), where her work focuses on the handling of complaints against EU Institutions and Bodies. Prior to joining the EDPS, Rumer worked at the Noyb – European Centre for Digital Rights, and the data protection law compliance platform OneTrust DataGuidance. She also holds a Master’s in International Technology Law from the Vrije Universiteit Amsterdam.

Legal Officer at the European Data Protection Supervisor (EDPS)

Michalina Nadolna Peeters is a Legal Officer in the Supervision & Enforcement Unit at the European Data Protection Supervisor (EDPS). She contributes to the work of the EDPS by providing advice to the EU Institutions and Bodies and on authorizing transfers based on appropriate safeguards. Michalina is also a qualified lawyer in training (Poland) and a Ph.D Fellow at the VUB (Belgium). Before joining the EDPS, Michalina gained experience in law firms, in-house legal departments and the European Commission. Michalina holds a Master of Laws from Adam Mickiewicz University (Poland) and an LLM in European Union from the College of Europe (Bruges, Belgium). 

Head of the Artificial Intelligence Department, Garante Per La Protezione Dei Dati Personali, Italy

Roberto Lattanzi, Ph.D., is the Head of the Artificial Intelligence Department at the Garante per la protezione dei dati personali. Admitted at the Bar of Piacenza, he has served as a seconded national expert at the European Data Protection Supervisor and is a Professor on the contract of Privacy Law at the Catholic University of Milan. Author of scientific articles, especially in the data protection field, he is a Marie Curie Fellow.

Delegate international affairs, Department for international relations, Swiss Federal Data Protection and Information Commissioner FDPIC

Marcel Vogel studied law at the University of Lucerne. He has been working as a delegate international affairs in the Department for International Relations and Cantons at the Federal Data Protection and Information Commissioner (FDPIC) since October 2020. He participates in different international working groups of the Global Privacy Assembly (GPA) and is responsible for Schengen matters at the FDPIC. Before he worked as a lawyer in several legal firms and for the Swiss trade association in the ICT and Internet sector.

Director of Information Rights and Operations, Gibraltar Regulatory Authority

Bradley Tosso is the Director of Information Rights and Operations at the Gibraltar Regulatory Authority (“GRA”). Mr. Tosso has 15 years of experience in the field of compliance and regulation, working in different jurisdictions and in both the public and private sectors.  

Combing qualifications in business, computing and law, Mr. Tosso’s credentials include a Master’s in European Union Law, a Master’s in Information Rights Law and a Bachelor of Science in Computing and Management.

In his role, Mr. Tosso directly assists Gibraltar’s Information Commissioner in his regulation, supervision and enforcement of data protection and other information rights laws in Gibraltar. Mr. Tosso believes in engagement and guidance as integral parts of a modern and effective supervisory regime.

Head of International Relations, Analytics and Strategic Development Department, Personal Data Protection Service of Georgia.

Ana Tokhadze is an Academic Assistant, Ph.D. student, and a Master’s degree holder from the Faculty of Law of IvaneJavakhishvili Tbilisi State University. Since 2022, she is a Mediator and a member of the Mediators Association of Georgia. Also, she is a member of the Georgian Bar Association and is specialized in the field of Corporate (Business) Law, Civil, and Administrative Law. In 2019 she was a visiting researcher at the TalTech Law School in Tallinn; In 2018 she was a DAAD short-term scholarship holder at the Viadrina European University in Frankfurt (Oder); In 2018, she was grated with the scholarship of Max Plank Institute for Comparative and International Private Law; In 2017, she was a visiting researcher in the scopes of Viadrina International Program - for Graduates (VIP) at the European University Viadrina; From 2016 to 2017 she was visiting Ph.D. student in the frames of Erasmus Hermes scholarship program at the European University Viadrina. She has authored scholarly papers, also, compartments of the handbook published for law school students.
In 2022, she became a new member of the Georgian delegation in the Consultative Committee for the Protection of Individuals with regard to Automatic Processing of Personal Data Convention 108.

Head of Legal Department, Personal Data Protection Service of Georgia
Davit Karashvili is an accomplished lawyer with over 10 years experience in law drafting and personal data protection law. Since 2019, he held several positions in the Data Protection Authority of Georgia. 

Davit is a former member of Ad hoc Committee on Artificial Intelligence (CAHAI), where he introduced Georgia. His experience is not limited to law as he held a position of Head of newly established Risk Management Division in the Ministry of Defence of Georgia. He played a huge role in developing the very first Risk Management Policy of the MoD and other relevant RM documents.

Currently Davit holds a position of Head of Legal Department of Personal Data Protection Service of Georgia. Aside from basic work, he is also an invited lecturer in the Black Sea International University where he provides lectures in Risk Management in Public organizations. In addition to this, Davit is a trainer in Personal Data Protection Law for years.

In 2022 Davit became a new member of Consultative Committee for the Protection of Individuals with regard to Automatic Processing of Personal Data Convention 108.