Practice Area
Turn AI opportunity into commercial reality.
The EU AI Act entered into force in August 2024 — and companies that develop, deploy, or purchase AI systems are now inside a mandatory compliance framework with real enforcement teeth. We advise on AI Act obligations, risk classification, conformity assessments, and the governance structures regulators expect. Beyond regulation, we handle the commercial and IP dimensions of AI: technology contracts, data licensing, IP ownership in AI-generated outputs, and liability where AI-driven decisions cause harm. Our practice covers the full legal lifecycle of AI deployment — from procurement and development through operations and disputes.
We start from the commercial objective, not the legal risk list. Technology moves faster than regulation — we help clients navigate the current framework confidently while building flexibility for what comes next. We advise on what the rules actually require, not on worst-case scenarios.
Legal services for businesses building, deploying, and regulating artificial intelligence and technology.
Classifying AI systems under the EU AI Act risk framework, preparing conformity assessments, drafting technical documentation, and building the governance processes required for high-risk and general-purpose AI systems.
Designing AI governance frameworks — policies, accountability structures, human oversight mechanisms, and bias management procedures — that meet both regulatory requirements and stakeholder expectations.
Drafting and negotiating AI vendor agreements, SaaS contracts, software development agreements, data licensing deals, and technology partnership arrangements.
Advising on IP ownership in AI-generated outputs, training data rights, model protection strategies, and the IP implications of open-source AI frameworks.
Ensuring AI systems are designed in compliance with GDPR — including lawful bases for data processing, data minimization, automated decision-making rules, and DPIAs for AI deployments.
Advising on the Digital Markets Act, Digital Services Act, and the intersection of platform regulation with competition and data protection law.
Legal advice on NIS2 Directive compliance, cybersecurity incident reporting obligations, and the legal implications of cybersecurity frameworks and certifications.
Advising on blockchain, smart contracts, tokenization, and other emerging technologies — navigating the evolving legal and regulatory landscape across EU and Romanian law.
Also in Our Practice