Compliance Corner

EU AI Act and GDPR in plain English

The EU AI Act and GDPR explained simply — for founders, product managers, and non-lawyers who need to understand what the regulations actually require.

RSS Feed Subscribe Free

Episodes(5 available)

🎧

Ep. 31·19 Apr 2026·39 min

EU AI Act: What "High Risk" Actually Means for Your Product

The EU AI Act's risk classification determines your compliance obligations. What "high risk" means in practice, which products fall into it, what the compliance requirements are, and how startups can navigate the framework without a legal team.

EU AI Acthigh risk AIAI regulation

🎧

Ep. 30·5 Apr 2026·33 min

GDPR Data Breach: Your 72-Hour Response Playbook

Under GDPR, you have 72 hours to notify your supervisory authority of a personal data breach. Most companies are not ready for this. A step-by-step guide to what counts as a breach, what you must report, and how to build the response process before you need it.

GDPR data breachdata breach notificationGDPR compliance

🎧

Ep. 29·22 Mar 2026·28 min

Legitimate Interests Under GDPR: The Most Misused Lawful Basis

"Legitimate interests" is the most flexible GDPR lawful basis — and the most abused. What it actually requires, when it applies, when it doesn't, and the three-part test you must document to use it correctly.

GDPR legitimate interestslawful basis GDPRdata processing lawful basis

🎧

Ep. 28·8 Mar 2026·36 min

General-Purpose AI Models Under the EU AI Act: What OpenAI, Anthropic, and You Must Do

The EU AI Act's new chapter on General-Purpose AI Models (GPAI) creates obligations for foundation model developers and the startups that build on top of them. Who is responsible for what — and what it means if you're building on GPT-4 or Claude.

EU AI Act GPAIgeneral purpose AIfoundation models regulation

🎧

Ep. 27·22 Feb 2026·25 min

Cookie Consent in 2026: What's Changed, What's Still Wrong, and How to Get It Right

Most websites' cookie consent implementations are still non-compliant, despite years of enforcement. The current state of cookie consent law across the EU and UK, the five most common violations, and a practical implementation guide.

cookie consentPECRePrivacy

About This Show

Compliance Corner demystifies EU technology regulation for the people most affected by it: startup founders, product managers, developers, and marketers. Each episode takes one regulation, one obligation, or one enforcement case and explains what it means in practice — no law degree required. Particular focus on the EU AI Act (in force 2025-2026), GDPR enforcement patterns, and how small teams can build compliant products without hiring a legal department.

Host

Elena Marchetti

Elena is a technology lawyer and former EU Commission policy advisor specialising in AI regulation and data protection. She now advises startups on GDPR and AI Act compliance.

Show Details

Episodes: 31
Frequency: Bi-weekly
Category: Legal & Compliance
Language: English

Browse All Shows