Professionals >

Contacts >

Privacy and cybersecurity issues are becoming increasingly important in today’s technologically advancing environment. More than ever, companies need to understand their rights and obligations in this area and need to be aware that non-compliance may not only result in heavy fines but will also be perceived very negatively by the market.

The EU General Data Protection Regulation (in force since May 2018) introduced new principles, concepts and obligations, which have resulted in many companies revising their personal data processing practices and culture. Crucially, the Regulation i) extends the enforcement powers of data protection authorities (e.g., by way of heavy fines) and ii) is of wide-reaching effect: it affects not only those businesses established in the EU but also companies that are not established in the EU but that are offering goods or services to data subjects in the EU or who monitor the activities of such data subjects.


For more than two decades, we have been closely monitoring EU and Belgian developments in the data protection area. During this time, we have advised many national and multinational clients from different industry sectors, with a particular focus on life sciences, TMT, energy, utilities, retail, as well as HR departments in general.

In order to provide our clients with a pan-European and global service, we have developed a network of experienced data protection lawyers in other jurisdictions with whom we have had strong ties for many years. We are also closely involved in Crowell & Moring’s U.S. Data Protection and Cybersecurity group and work closely with our U.S. colleagues on cross-border issues involving the international transfer of personal data.

The Challenges of New Technology

In this technological age, an important part of our practice consists of advising clients on the processing of personal data through the internet, the storing and international transfer of personal data and related cybersecurity issues, the use of “big data” and profiling for marketing purposes, the use of new technologies in the workplace, such as email monitoring and the use of social media by employees. In particular, we advise telecommunications companies and internet service providers regarding sector specific data protection obligations.


We help our clients achieve data protection compliance through day-to-day counseling and contractual work and through global and Europe-wide privacy audits. We analyze our clients’ existing data protection practices and make recommendations for compliance. In this way, we help our clients to better understand their data processing, map the location and flows of the data and identify potential threats and compliance issues.

We develop and implement tailor-made privacy programs, which may include the drafting of privacy policies and procedures, notices, data transfer agreements and advice on security measures to be taken. We assist our clients in their contacts with the various Data Protection Authorities in Europe.


It is not enough that our clients know the law and have the necessary policies and procedures in place to handle data in a safe and secure way. The knowledge and culture of the people actually handling the personal data on a daily basis is crucial. It is pointless to have policies and procedures in place when these are not applied and complied with in practice. An important part of our service therefore consists of training key staff on applicable law and the client’s internal procedures.

Our Team

Our privacy and cybersecurity team is composed of experienced lawyers from each of our firm’s core practice areas, including corporate, commercial, employment and TMT. The practice is led by partners Frederik Van Remoortel (CIPP/E, former member of IAPP European Advisory Board) and Maarten Stassen (former member of the IAPP European Advisory Board), who also focuses on other legal and operational aspects of the digital ecosystem. Partners Thomas De Meese, who has a particular focus on TMT and competition law, and Emmanuel Plasschaert, who concentrates on HR data protection complete the Brussels team.

Crowell & Moring’s group, which is composed of ‘excellent data privacy experts’, has a focus on advising clients from the healthcare, life sciences, energy and TMT sectors. […] Frederik Van Remoortel provides ‘practical and to-the-point advice’ and heads a team that also benefits from the experience of competition and regulated industries partner Thomas De Meese and employment specialist Emmanuel Plasschaert. Legal 500 EMEA, 2018

Maarten Stassen, who has extensive experience in data protection matters, joined from Deloitte Legal in October 2017.” Legal 500 EMEA, 2019

“Senior counsel Frederik Van Remoortel is ‘reliable like a Swiss watch’” Legal 500 EMEA, 2016

Representative Matters

Day-to-day Advice

  • Regularly answered questions such as: ‘Can I transfer this set of personal data to third parties in the US?’ ‘How long must I retain certain personal data?’ ‘Can I use customers’ personal data for targeted advertising?’
  • Advised on the use of customers’ personal data for the installation of so-called ‘smart meters.’
  • Advised several companies on data retention periods.

Privacy Audits

  • Worldwide privacy compliance projects with respect to personal data processed by the HR departments of a U.S. and a Belgian multinational.
  • Privacy audit and compliance project for an important Belgian telecommunications company (including customer and supplier data, user data, and marketing data).

Litigation and Contractual Work

  • Conducted legal proceedings with respect to the conformity with privacy laws of a ‘bad payer list’ set up by several undertakings in the same sector.
  • Reviewed contractual documents between doctors, hospitals, patients and the client (a manufacturer of medical devices), and notified the client’s data processing with the relevant data protection authority.
  • Drafted privacy policies: for the personnel of several Belgian and multinational companies, (e.g., in the telecommunications sector); and for the websites of national and multinational clients.

View More

"Cyber Insights – Lessons Learned from Recent Ransomware Attacks," Webinar in collaboration with IBJ/IJE (September 21, 2021). Moderator: Maarten Stassen. Speakers: Evan D. Wolff and Matthew B. Welling.
"The New Standard Contractual Clauses for Transfers of Personal Data from the EU," Privacy Law Alert (June 7, 2021). Contacts: Jeffrey L. Poston, Maarten Stassen, Jeane A. Thomas, CIPP/E, Frederik Van Remoortel, Jarno Vanto, CIPP/E, CIPP/US, Laurence Winston
Client Alert/Newsletter
Legal 500 EMEA Ranks Crowell & Moring in 11 Practice Areas and Recognizes Seven Lawyers (Apr.16.2021)
Firm News/Announcement
"Legal Mechanisms Applying to Data," Webinar in collaboration with IBJ/IJE (IT/IP Practice Group), Brussels, Belgium (January 18, 2021). Speakers: Judith Bussé, Linh Truong, and Matteo Mariano.
"Information Sharing: Legal, Privacy, Cybersecurity Considerations," Asia Pacific Financial Forum (APFF) – Trade-Based Money Laundering (TBML) Working Group (December 2, 2020). Speaker: Maarten Stassen.
"Data Transfers from the EU: What Does "Good" Look Like?," Privacy Law Alert (November 17, 2020). Contacts: Maarten Stassen, Jeffrey L. Poston, Robert Holleyman, Jeane A. Thomas, CIPP/E, Frederik Van Remoortel, Jarno Vanto, CIPP/E, CIPP/US, Laurence Winston
Client Alert/Newsletter
"Guidelines for Data Controllers and Processors," DPO-Pro Webinar (October 22, 2020). Speakers: Frederik Van Remoortel and Benjamin Docquir.
"Return Ready Virtual Summit: Data Protection in the Covid-19 era," Proxyclick Webinar, Brussels, Belgium (September 29, 2020). Speakers: Frederik Van Remoortel, Jarno Vanto, and Stefanie Tack.
"Privacy Shield Invalidated: EU Data Transfers to the U.S. under Siege (again…)," Privacy Law Alert (July 16, 2020). Contacts: Robert Holleyman, Jeffrey L. Poston, Maarten Stassen, Jeane A. Thomas, CIPP/E, Frederik Van Remoortel, Jarno Vanto, CIPP/E, CIPP/US, Laurence Winston
Client Alert/Newsletter
Legal 500 EMEA Recommends Crowell & Moring in 11 Practice Areas and Recognizes 13 Lawyers (Apr.27.2020)
Firm News/Announcement

To view more News & Events for this area, please go to our desktop site.

Crowell & Moring LLP is an international law firm with offices in the United States, Europe, MENA, and Asia that represents clients in litigation and arbitration, regulatory and policy, and transactional and corporate matters. The firm is internationally recognized for its representation of Fortune 500 companies in high-stakes litigation and government-facing matters, as well as its ongoing commitment to pro bono service and diversity, equity, and inclusion.

View Desktop Site | Mobile Sitemap |

Contact | Subscribe | Terms of Use | Privacy Statement | Alumni

© Crowell & Moring LLP 2021
Attorney advertising - prior results do not guarantee a similar outcome.