Phillip Lee, AIGP, CIPP/E, CIPM, FIP
Phil Lee is Zettabyte Lawyer (Managing Director) of Digiphile, a challenger law firm based in the UK that specialises in advising technology, cloud and digital media clients on all aspects of AI, privacy and cybersecurity regulation.
Digiphile advises a wide range of global technology clients, from blue chip to start-up, on AI legal and governance issues arising across enterprise and consumer domains, including issues related to training new ML models, AI integration within products and services, enterprise use of generative AI, AI vendor due diligence, predicative analytics and profiling, user consent requirements and the exercise of data subject rights in the context of AI models.
Phil is a trainer on the IAPP's newly-launched AIGP certification and, in addition to his legal experience, holds an MA in computer science from Cambridge University.
Contributions by Phillip Lee
-
Cloudy with a Chance of Data? Weathering the Data Act's Effects on the Cloud
Speaker at IAPP Data Protection Intensive: UK 2025 -
Responsible AI by Design: Embedding AI Governance into Enterprise Workflows
Speaker at IAPP Europe Data Protection Congress 2024 -
From Legalese to Visual Ease: Explaining the AI Act in 10 Simple Graphics
Speaker at IAPP Europe Data Protection Congress 2024 -
Top 10 operational impacts of the EU AI Act – Obligations for general-purpose AI models
-
Global Employee Data Management — Avoiding HR Hell with Heavenly HR Governance
Speaker at IAPP Global Privacy Summit 2024 -
Online Advertising and Privacy: Prospects & Pitfalls
Forum Speaker at IAPP Global Privacy Summit 2024 -
Making the Business Case for Privacy: Unlocking Budget & Funding Your Program
Speaker at IAPP Global Privacy Summit 2023 -
Is the EDPB’s ‘targeted update’ to data breach reporting guidance a ‘mini-budget’ moment for GDPR regulation?
Privacy Perspectives -
The updated standard contractual clauses — A new hope?
The Privacy Advisor -
Brexit: Implications and Challenges
Speaker at Virtual Dublin KnowledgeNet: 28 January 2021 -
When law diverges from reality: How are organizations responding to 'Schrems II' in practice?
Privacy Perspectives - Speaker at IAPP Data Protection Intensive: UK 2020 - Cancelled