Legal Guidance and Research / Experts / Pilar Arzuaga
Pilar Arzuaga#10007

Pilar Arzuaga

Fieldfisher
Pilar is a Senior Associate in Fieldfisher's Technology & Data team, a practice with top tier rankings in both The Legal 500 and Chambers directories.

Pilar has wide-ranging experience in complex tech projects including data sharing terms and data processing agreements, user rights and SARs, complex data export solutions and international data transfers as well as internal and consumer-facing policy reviews, privacy audits and data protection impact assessments. Pilar also helps clients handle cybersecurity incidents, data breaches and remediation plans.

Prior to joining Fieldfisher, Pilar worked at Amazon Legal for several years where she focused on Privacy and Product Compliance for cross border launches within various businesses. Pilar has particular interest in e-commerce, digital media, health and ad-tech. Pilar regularly advises on e-marketing, cookies, profiling, behavioral advertising and privacy by design.

Pilar has extensive expertise working with in-house lawyers on global compliance projects and liaising directly with business and technical teams to achieve effective and practical legal implementation. This covers particularly issues related to new technologies, consumer and e-marketing issues, digital health and life sciences, medical devices and retail.

Practice Area

Panel

  • Contributing Author

Experience

  • Fieldfisher LLP - London (Feb 2018 - Present)
  • Amazon EU HQ - Luxembourg (Dec 2013 - Feb 2018)
  • Amazon Development Centre Scotland (Apr 2013 - Dec 2013)

Membership

  • IAPP

Qualification

  • Abogada (Lawyer) (2014)

Education

  • Universidad Blas Pascal (2014)

1 Contributions by Pilar Arzuaga

EU Data Governance Act and Data Act: scope, obligations and practical implications on data re-use, intermediation, altruism, IoT access, cloud switching, interoperability, international transfers and enforcement
PRACTICE NOTES
EU Data Governance Act and Data Act: scope, obligations and practical implications on data re-use, intermediation, altruism, IoT access, cloud switching, interoperability, international transfers and enforcement
STOP PRESS : This Practice Note reflects the law as it currently stands; however, be aware that some elements will be affected by the Digital Omnibus proposals released on 19 November 2025 under the Commission’s ‘simplification’ agenda. For more detail, see Practice Note: EU Digital Omnibus—tracker. The European Strategy for Data seeks to build a single European data market by enabling responsible access, wider sharing and re-use of personal and non-personal data, in line with EU values and existing legislation, notably on personal data protection, consumer protection and competition rules. Regulation (EU) 2022/868, the Data Governance Act (DGA), reinforces governance within the single European market and creates a framework to enable both general and sector-specific data sharing, while Regulation (EU) 2023/2854, the Data Act (DA), concerns the substantive rights to access and use data. It is estimated that data generated by public bodies, businesses and individuals will have grown by 500% between 2018 and 2025, and both acts aim to ensure that more data becomes available for use across the EU, whilst safeguarding the rights of the companies and individuals who generate it...
EU Law
Expert page AD
If you expected to see yourself on this page, click here.