Recent legislative initiatives have broadened our understanding of processing operations. New entities such as data intermediaries are introduced along with new concepts such as data spaces and data altruism. How do all these relate to the GDPR principles and what are the necessary steps to identify the level of risk for data subjects and how to address it. The discussion will aim to cover:
• Existing approaches on analyzing data protection risks
• Newly introduced concepts under AI Act, DGA etc
• Approaches on engineering data protection into practice
