Company News

CEO Talks: “We should not view compliance as a necessary evil but as an opportunity for growth.”

Anne jansen and dave geentjens
CEO Talks: “We should not view compliance as a necessary evil but as an opportunity for growth.”

What are the major developments over the past year that have influenced companies in terms of data management?

The past year has brought both challenges and opportunities. One key development is the increased focus on legislation, such as NIS2 and the Data Act. This means that companies need to adapt more quickly to strengthen their data strategies and improve compliance. Additionally, the growing demand for automation and the use of AI play a significant role. Organisations must review their processes not only to achieve efficiency but also to ensure safety, protection, and compliance around data. In my view, companies that go beyond merely complying with regulations and leverage data as a strategic pillar are the ones that will succeed in the future. We should not see compliance as a necessary evil but as an opportunity for growth.

How have the challenges around people, technology, and legislation evolved over the past year?

The demand for experts with both technical and legal knowledge continues to grow. AI plays an increasingly significant role, especially due to the ethical challenges and security risks it brings. Companies are not only in need of technical and legal profiles but also business profiles that can understand the strategic value of these technologies. Organisations such as healthcare institutions or government bodies must manage data responsibly to both comply with regulations and improve their processes.

How can clients benefit from the new structure with the Collective and Cingulum?

Our new approach brings more focus and specialisation. CRANIUM is now fully focused on its core expertise: Data Protection, Governance, and Digital Law, while Cingulum delves deeper into Information & Cybersecurity. The real strength of this structure lies in the overarching collaboration between all our areas of expertise. Clients do not work with separate providers; instead, they experience seamless support from a partner who understands their entire data governance, compliance, and security journey.

What was the driving force behind this change, and how does it help CRANIUM and Cingulum serve clients better?

AI and automation are game changers in an open field, but the increasing complexity of legislation remains a challenge. This requires deeper expertise. With Cingulum, we can now specifically address the unique needs of clients in security, while CRANIUM can maintain its focus on its core business. This ensures that we not only provide specialised solutions but also attract talent that continues to develop within these areas of expertise. Through this collaboration, we can offer even more tailored solutions and respond to today’s and tomorrow’s challenges, helping companies grow with respect for data, and making innovation safer and more reliable.

How does Cingulum reinforce the multidisciplinary approach you mentioned last year?

The establishment of Cingulum strengthens our multidisciplinary approach by focusing on both legal and technical knowledge, as well as strategic advice. By allowing the organisations to grow separately, we can operate in an even more multidisciplinary manner. However, we continue to work closely together and benefit from shared services such as operational support and legal expertise.

How does CRANIUM adapt to the rapid advancements in AI and other technologies?

AI is both a tool for internal optimisation and a service through which we guide clients in safe integration. It’s important that companies use AI in a way that is both ethical and safe. We continuously learn and innovate to advise our clients in this area. My view is also that innovation, technology, and legislation can go hand in hand. This embodies our vision: to help companies grow, with respect for data, and enable them to innovate safely and confidently.

Which new laws or guidelines are important for companies?

The AI Act, DORA, NIS2, and the Data Act are receiving a lot of attention, but not every law is relevant for every company. Our role is to properly inform companies about which laws apply to them and to continue leveraging previous investments in GDPR and information security systems, as these remain the foundation on which compliance can be further built.

How has the CRANIUM team grown or changed over the past year? Are there any new initiatives that you’re excited about?

We have not only expanded our expertise in the security sector but also strengthened our focus on Data Protection and Digital Law. Our CRANIUM Academy continues to grow, with training programmes focused on both technical and legal knowledge. The fact that our consultants are increasingly given space for personal and professional development is directly reflected in the quality of our service. This year, the emphasis is on growth and improvement, not only for our clients but also for our team.

What opportunities and challenges do you see for the sector in the coming year?

The integration of AI and automation offers enormous opportunities for companies that want to use data strategically. The challenge lies in the increasing complexity of legislation. Companies that invest in good data management will see long-term success. For example, healthcare institutions that comply with GDPR and implement additional measures around patient data not only meet regulations but also strengthen patient trust. By optimising and securing data flows, these institutions can implement more efficient care processes, benefiting both patient safety and operational costs. You can either lament legislation or use it as an opportunity to gain a competitive edge. Through our comprehensive approach, we help companies see data not as a burden but as an opportunity for growth and improvement.

Is there a specific project that embodies CRANIUM’s mission and values?

Too many to mention! What truly sets us apart is our ability to think strategically and execute operationally. A recent project with an innovative tech company demonstrates how we can integrate privacy and security without hindering innovation. Innovation with respect for data is what we stand for. Whether it’s a large hospital where good data security is part of quality care, or a tech company wanting to innovate securely, we ensure every client gets the best solution. The use of tools to lighten the workload of DPOs is another example of how we not only do the work but also make our clients’ lives easier.

Share this:

Written by

Anne Jansen

Anne Jansen

Hi! How can we help?

In need of internal privacy help or an external DPO? Reach out and we’ll look for the best solution together with you.