Charles Helleputte, CIPP/E




Charles Helleputte heads the EU cybersecurity, data, and privacy practice at Steptoe. Charles focuses on existing EU and national cybersecurity, data, and privacy laws such as the NIS Directive, GDPR or the Cybersecurity Act and on upcoming developments such as NIS 2, DORA, the Digital Services Act, the Data Governance Act or the ePrivacy Regulation.

He has specific experience preparing and managing incidents in a cross-border context, where it is necessary to consider multiple cybersecurity, privacy, and other regulatory and enforcement frameworks (such as NIS, PSD2, CTR, etc.). He provides practical and pragmatic advice to clients faced with increased accountability requirements towards users, helping organizations testing new responses, such as broader use of standards or certification mechanisms across the data lifecycle in a wide range of industries (regulated and not regulated). He is also experienced in representing clients before national and EU supervisory authorities and courts, including the Working Party No. 29 (now the European Data Protection Board).

Charles holds a Certified Information Privacy Professional/Europe (CIPP/E) certification. He is a former co-chair of the Brussels KnowledgeNet Chapter of the International Association of Privacy Professionals (IAPP) and an appointed Legal Expert at ENISA, the European Union Cybersecurity Agency. 


Contributions by Charles Helleputte

  • Unpacking EDPB Guidelines and a Look at U.S. Privacy Law Compliance Challenges
    Speaker at Virtual Pune KnowledgeNet: 8 May 2021
  • Member of European Advisory Board 2021 - 2022
  • European Union Commissioner for Justice Didier Reynders Discusses Europe's Digital Future – Where Does Privacy Stand?
    Speaker at Virtual Brussels KnowledgeNet: 27 October 2020
  • The General Data Protection Regulation Birthday Party Quiz
    Speaker at Virtual Brussels KnowledgeNet: 25 May 2020