Mastering the Brussels Effect

We provide boutique Cyber and Data GRC expertise, transforming complex EU mandates (GDPR, NIS2, AI Act) into clear, actionable strategies for Washington-based firms seeking compliant European market entry

Learn more

Services

EU Readiness Gap Assessment EU Readiness Gap Assessment
EU Readiness Gap Assessment

A holistic review against the entire EU Digital Regulatory Stack (GDPR, NIS2, DORA, AI Act). We quantify your current compliance posture, identify specific gaps, and provide a prioritized, fixed-fee remediation roadmap to ensure swift and budget-conscious European market readiness.

Transatlantic Regulatory Conflict Assessment Transatlantic Regulatory Conflict Assessment
Transatlantic Regulatory Conflict Assessment

Specialized analysis to map and mitigate legal tensions arising from operating under both US/Washington jurisdiction (e.g., CLOUD Act and WMHMDA) and EU mandates. We deliver a Jurisdiction Risk Rating and provide contractual guidance to protect data streams and ensure stability in cross-border operations.

Article 27 Representative and Digital Liaison Service Article 27 Representative and Digital Liaison Service
Article 27 Representative and Digital Liaison Service

We leverage our Brussels office to manage all formal communications with EU Supervisory Authorities and data subjects, maintain your mandatory Records of Processing Activities (ROPA), and secure your formal EU legal standing.

Insider Expertise, Boutique Focus

I offer specialized GRC consulting, bridging the gap between Washington State innovation and the complex policy environment of Brussels. Unlike large, generalized firms, my expertise is rooted in direct, policy-level engagement across Europe and Australia, ensuring customized, implementable solutions.  

I have worked extensively in Cyber Security and Data GRC, consulting for numerous European Commission Directorates-General (DGs) in Brussels and Italy, giving me deep insight into the policy intent and enforcement priorities of EU regulations.

My practical experience includes high-level GRC implementation for critical organizations like CargoLux (Luxembourg) and specialized advisory roles with Almaviva (Brussels/Italy)

I serve as a trainer with the European Institute of Public Administration (EIPA) for Critical Incident Management, reinforcing my ability to translate complex regulatory demands into clear, operational strategies for your business.

My focus is delivering precision and strategic value unmatched by large, generalized firms.

Contact Us

Interested in working together? Fill out some info and we will be in touch shortly. We can’t wait to hear from you!