Eliëtte Vaal
IT Privacy lawyer / advocaat
Phone
+31 (0)6 29 47 71 74
Email
evaal@thedatalawyers.com
Social media
Facebook
Twitter
Instagram

Biography

Eliëtte advises national and international clients, from multinational companies to public organisations in complex privacy matters, GDPR compliance projects and acts as an external DPO. She is also an experienced litigator in cases concerning IT, IP and freedom of expression. Her professional focus lies in working in the legal field of technology and data. She provides strategic, risk-based, practical and to-the-point advice.


Background

Before founding The Data Lawyers in May 2020, Eliëtte worked as an IT and privacy lawyer at the international law firm AKD for over 10 years (2009-2019) and her own independent firm (2019-2020). She became interested in the concept of privacy and its effects on society during her studies at the Social Science Department of the University of Nijmegen and has been passionate about privacy law ever since. Eliëtte also holds a Master of Law degree from the University of Amsterdam and finished the post-academic degree at the Grotius Academy (Information Technology Law). She also obtained the CIPP/E credentials from the IAPP.


Network

Eliëtte has a strong international network in IT and data protection law as well as in other legal fields. She is an active member of the International Association of Privacy Professionals (IAPP), currently acting as one of the members of the European Advisory Board.


Public speaker and writer

Eliëtte is a frequent speaker at conferences and seminars. She also gives guest lectures and courses for both private training institutions and clients. She publishes frequently and is a permanent contributor to the Dutch journals on internet law (Tijdschrift voor Internetrecht) and Computer Law (Computerrecht).


Memberships

Eliëtte is also a member of various Dutch law associations. She has been admitted as a member of the Association of Privacy Lawyers (Vereniging Privacyrecht Advocaten). It is only open to members specialised - demonstrably and extensively - in the field of privacy law. Her other memberships include the Association for Privacy Law (VPR) and the Netherlands Association for Information Technology and Law (NVvIR).

Latest Posts
Facial recognition and fingerprint scanning: processing biometric data
Article
Facial recognition and fingerprint scanning: processing biometric data
By
Eliëtte Vaal

The use of biometric data has increased over the last years. Especially the use of facial recognition systems and fingerprint scanners. Using biometric data goes hand in hand with severe privacy risks, such as the loss of freedom, individuality and anonymity. In practice however, the privacy rules concerning the use of biometric data are ambiguous, resulting in legal uncertainty.

Read more
Arrow Icon
Interview with The Data Lawyers
Interview
Interview with The Data Lawyers
By
Eliëtte Vaal
Vonne Laan

In view of the launch of The Data Lawyers, Eliëtte Vaal and Vonne Laan were requested to partake in an interview by Privacyweb. Why did they make this move? What do they wish to contribute to the privacy sector? What are their biggest annoyances in relation privacy law? Please read the interview for their answers to these and other questions.

Read more
Arrow Icon
IAPP Data Protection Intensive
Event
IAPP Data Protection Intensive
By
Eliëtte Vaal

Eliëtte Vaal is invited to speak at the first IAPP Data Protection Intensive of the International Association of Privacy Professionals (IAPP) in the Netherlands.

Read more
Arrow Icon
Webinar VNG/IBD
Event
Webinar VNG/IBD
By
Eliëtte Vaal

From April to September 2020, Eliëtte Vaal is contributing to the VNG/IBD webinars / discussions about recent privacy law developments.

Read more
Arrow Icon
Back to the basics: controller or processor under data protection law?
Article
Back to the basics: controller or processor under data protection law?
By
Eliëtte Vaal
Vonne Laan

Vonne Laan and Eliëtte Vaal wrote an overview article which can be used as easy point of reference in practice. It discusses two concepts under data protection law that have been endlessly debated: that of “controller” and “processor”. How workable are these concepts nowadays? What are the complications in practice and how can they be solved? Read more about this in our article “Back to the basics: Verwerkingsverantwoordelijke of verwerker onder de AVG?”.

Read more
Arrow Icon
Claims for damages under the GDPR in the Netherlands
Article
Claims for damages under the GDPR in the Netherlands
By
Eliëtte Vaal

Eliëtte Vaal wrote an article posing the question whether a judgement of the court of Amsterdam of September 2019 opens the door for class actions based on GDPR infringement in the Netherlands. 

Read more
Arrow Icon
Dutch Data Protection Authority 2020-2023 focus areas
News
Dutch Data Protection Authority 2020-2023 focus areas
By
Eliëtte Vaal

The Dutch Data Protection Authority has announced its focus areas for 2020 - 2023: (I) digital government, (II) trade in data, and (III) artificial intelligence and algorithms. 

Read more
Arrow Icon
Requirements Privacy statement: Is your privacy statement privacy proof?
Vlog
Requirements Privacy statement: Is your privacy statement privacy proof?
By
Eliëtte Vaal

Eliëtte Vaal explains in a vlog the basic requirements for a privacy policy under the GDPR. 

Read more
Arrow Icon
English translation Dutch GDPR Implementation Act
Book
English translation Dutch GDPR Implementation Act
By
Eliëtte Vaal

Eliëtte Vaal contributed to the non-official translation of the Dutch Implementation Act of the General Data Protection Act.

Read more
Arrow Icon
Governments need to limit collection of personal data
Blog
Governments need to limit collection of personal data
By
Eliëtte Vaal

Eliëtte Vaal wrote a summery of the last report of the Data Protection Authority about data processing by local governments in the Dutch social system here (Dutch only). 

Read more
Arrow Icon