New EU Artificial Intelligence Act: Impact on U.S. Organizations, Strategies to Ensure Compliance

Ms. Mahdavi is a founding member of the firm’s Artificial Intelligence working group and has specialized training in AI governance. She advises a variety of clients on the emerging laws that impact the development and implementation of AI solutions. Focused on data privacy, cyber security, and technology transactions, Ms. Mahdavi counsels a diverse array of companies from start-ups to Fortune 100 companies in both local and global markets. She works closely with clients on data privacy and security compliance programs and advises on all aspects of local and international data privacy and security laws, including the California Consumer Privacy Act, the California Privacy Rights Act, the EU and UK GDPR, as well as COPPA, CAN-SPAM matters, and emerging laws and regulations around the world. Ms. Mahdavi also advises on data retention and minimization, privacy by design, data inventories, cross-border transfer agreements, privacy impact assessments and negotiating third-party agreements including digital marketing, software licensing, SaaS, and other commercial agreements.

Ms. Bajowala has deep experience with data security, privacy, artificial intelligence, and information technology issues. She conducts cyber risk assessments, develops privacy and InfoSec compliance programs, and leads proactive incident response planning, including drafting incident response and communications plans, and conducting tabletop exercises. Ms. Bajowala also helps companies stand up artificial intelligence governance programs, including creating policies, procedures, and trainings associated with a defensible compliance program. She also assists companies evaluate the risks associated with emerging technologies. Ms. Bajowala helps regulated entities comply with cybersecurity requirements. She assists public companies with compliance with the SEC’s cyber rules. Ms. Bajowala has wide-ranging litigation and trial experience, including over 100 days of first-chair trial experience.

Ms. Scali is an international lawyer who focuses on data protection and cybersecurity, with a specific emphasis on the financial services, life sciences and retail sectors. She is a dual-qualified lawyer, admitted as a Solicitor in England and Wales, and as a French lawyer admitted to the Paris Bar, which together with her experience gained at U.S. and International law firms over a period of nearly 20 years, makes her uniquely placed to give the best possible service to her global client base in the UK, Europe and the U.S. Ms. Scali advises on all aspects of data privacy and security, with an emphasis on advising clients on the emerging laws that impact the development and implementation of AI solutions including the EU AI Act as well as the implementation of global data protection compliance programmes including UK/EU GDPR. cross-border data transfers, preparedness and management of personal data breaches and reporting. She also regularly advises on data protection issues in the context of complex cross-border investigations and litigation, corporate deals, and Inclusion & Diversity Programmes.