The contentious practice consists of working on large scale investigations and inquiries by data protection authorities (including matters that have been escalated to the European Data Protection Board) and privacy-related litigation. She also works on navigating engagements with government agencies around data disclosure, including law enforcement.
The non-contentious work consists of advising fast-scaling companies and established West Coast internet companies about establishment in the EU and their privacy compliance which usually goes beyond just the GDPR. As part of this, she also handles cross-border data breaches including the notification and post data breach remediation.
Nina also works with clients on compliance with emerging data laws, including the Digital Services Act and AI Act. This includes from understanding whether and how these laws apply to designing effective and efficient compliance measures with minimal impact on business.