Go to Website
  • en
  • de

Ryan M.

DPO & AI Compliance Manager

Luxembourg, Luxembourg

Experience

Jul 2025 - Sep 2025
3 months

DPO & AI Compliance Manager

micro1 Inc.

  • Appointed as consultant AI & Data Privacy Counsel, DPO & AI Compliance Manager to help set up micro1’s GDPR and EU AI Act compliance initiatives.
  • Designed and launched a comprehensive AI Compliance Programme aligned with the EU AI Act, covering risk assessments, governance frameworks, transparency obligations, and bias mitigation strategies for AI recruitment tools.
  • Acted as primary contact for regulators, enterprise clients, and internal stakeholders on AI compliance matters.
  • Oversaw day to day data privacy compliance, including drafting and updating privacy documentation, managing Data Processing Agreements, handling Data Subject Rights Requests (e.g., DSARs), and ensuring cross-border data transfer compliance.
Mar 2025 - Jul 2025
5 months
Luxembourg

Senior Legal AI & Privacy Specialist

Luxembourg National Data Service

  • Developed legally compliant solutions in AI, healthcare, and data research for LNDS partners, emphasizing data protection by design and AI legal, compliance, and ethics.
  • Safeguarded sensitive data, secured digital frameworks, and navigated IP complexities by integrating legal and technical strategies.
  • Articulated ethical, legal, and social implications to diverse audiences using strong communication skills.
  • Brought an analytical, solution-oriented mindset, adaptability, and cultural intelligence to the role.
Aug 2024 - Mar 2025
8 months
Luxembourg

Managing Director & Lead Consultant

AILegalCompliance.com

  • Provided general data privacy and cyber security legal, risk, and compliance consultancy services, including outsourced DPO, data privacy management, and general cyber security legal & compliance support.
  • Designed and implemented a process and policies to help a multinational client conduct AI conformity and AI risk assessments in line with draft EU AI Act.
  • Drafted and updated terms of service for AI-related solutions and designed and drafted new AI policies and procedures, e.g., for use of generative AI by employees.
  • Worked with an AI governance software provider to map EU AI Act provisions and implement controls to enable end-user compliance.
  • Assessed risk under GDPR and EU AI Act for generative AI technologies such as ChatGPT, Gemini, and Meta AI.
Sep 2023 - Jul 2024
11 months
Luxembourg

AI & Data Privacy Legal Consultant

Intel Corporation

  • Provided expert advice and support on AI legal, governance, risk, and compliance from an EU/UK perspective.
  • Assessed new AI projects for IP, legal, privacy, and ethical AI risks and collaborated on risk mitigation strategies.
  • Developed a DPIA tailored to high-risk AI projects and contributed to creating a model card for transparency and accountability under the EU AI Act.
  • Supported Intel’s AI Governance Working Group in designing and implementing an AI governance framework for ethical and responsible AI practices.
  • Monitored AI’s impact on privacy, security, and societal implications to ensure regulatory compliance.
  • Assisted in establishing an AI ethics committee and integrating ethical considerations throughout the AI development lifecycle.
  • Led training initiatives to promote AI governance principles and foster a culture of accountability and ethical responsibility.
  • Kept updated on emerging AI governance trends, regulations, and best practices.
Jan 2023 - Sep 2023
9 months
Luxembourg

Data Privacy, Cyber Security & AI Lawyer / Consultant

Lawyers on Demand

  • Provided AI, data privacy, and cyber security legal support, including designing and implementing DPIAs from scratch and drafting Data Processing Agreements and data privacy policies.
  • Assisted with GDPR and information security issues, including triaging and managing personal data breaches and liaising with regulators such as the UK ICO.
  • Worked with clients including Springer Nature (Germany & UK), UniBuddy (UK and EU), Goodwin Proctor (UK and Luxembourg), and London Stock Exchange (UK & EU).
Oct 2022 - Dec 2022
3 months
Luxembourg

Data Protection Consultant

Gen II Fund Services Luxembourg

  • Conducted vendor data privacy due diligence.
  • Reviewed data processing agreements and standard contractual clauses.
  • Assessed data incidents to determine reportable breaches and managed responses.
  • Drafted playbooks for DPIAs, personal data breach handling, and vendor due diligence.
  • Collaborated with the Group DPO to streamline internal processes and explore solutions to manage increasing workload.
Jan 2012 - Dec 2022
11 years
United Kingdom

Data Privacy and Cyber Security Legal, Risk and Compliance Specialist

Various

  • Virgin Money (Online UK Bank – previously Clydesdale): Data Privacy Legal, Governance, Risk & Compliance Support
  • Credit Suisse (UK): Data Privacy Legal, Governance, Risk & Compliance Support
  • Marks & Spencer: Specialist Data Privacy & Cyber Security Law support to the Group Information Security Team
  • Schroders (Asset Managers): Data Privacy Legal, Governance, Risk & Compliance Support
  • Honda Motor Europe: Data Privacy Legal, Governance, Risk & Compliance Support

Summary

Experienced lawyer with over 12 years expertise in data privacy, GDPR, AI and cyber security law and compliance. Proven track record in leading compliance programs, conducting AI and data protection impact/ risk assessments, and advising on key regulatory frameworks such as the GDPR and EU AI Act. Skilled in implementing privacy-by-design and delivering strategic legal guidance for global organisations.

Languages

English
Native
Afrikaans
Advanced

Education

Oct 2011 - Jun 2012

Nottingham Business School

MBA, Finance & Accountancy · United Kingdom · Distinction

Oct 2004 - Jun 2005

University of Cape Town Law School

Post Graduate Diploma in Legal Practice · South Africa · Distinction

Oct 2002 - Jun 2003

University of South Africa

LLB · South Africa · Distinction

Certifications & licenses

Artificial Intelligence Governance Professional (AIGP)

BABL AI - Professional Certificate in AI & Algorithm Auditing (AI & Algorithmic Audit & Risk Specialist)

BABL AI – Professional Certificate - EU AI Act: Conformity Requirements for High-Risk AI Systems

Certified Data Privacy Solutions Engineer (CDPSE)

Certified Information Privacy Manager (CIPM)

Certified Information Privacy Professional (CIPP/E)

Europrivacy Implementer Certification

Fellow of Information Privacy (FIP)

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions

Similar Freelancers

Discover other experts with similar qualifications and experience

Björn B.

Auditor

View Profile
Michael V.

Claim Manager

View Profile
Andreas K.

Lead Auditor, ICT

View Profile
Valeri M.

DORA Readiness – Gap Analysis and Implementation for Banks

View Profile
Natalya S.

Consulting Activities

View Profile
Frank M.

GDPR Consultant

View Profile
Arnd F.

Interim Manager “Head of Risk Management and Audit”

View Profile
Dirk M.

Project Lead

View Profile
Tobias W.

External Data Protection Officer

View Profile
Jörg H.

Data Protection Officer | Information Security Officer, Managing Director

View Profile
Jamie C.

Founder | Data Protection & Compliance Officer

View Profile
Christian G.

DORA Implementation Project

View Profile
Lucas L.

Consultant in Information Security, Data Protection and Business Continuity Management

View Profile
Thoralf T.

Consultant Digital Operational Resilience Act (DORA)

View Profile
Federico L.

ISO – Senior Consultant Quality & Information Security

View Profile
fratch Part of Bitkom logo
linkedIncrunchbaseyoutube
  • English
  • Deutsch

2025 © FRATCH.IO GmbH. All rights reserved.