Sophie Laurent

Legal & Compliance Lead, YuSMP Group

Sophie Laurent covers software compliance for the YuSMP Group blog — GDPR, HIPAA, the EU AI Act, CCPA, DPAs and standard contractual clauses. She translates regulation into engineering checklists US and EU teams can actually ship against.

Legal & Compliance Lead · 3 articles

EU AI Act for SaaS compliance checklist 2026

Compliance 18 min read

EU AI Act Regulation

EU AI Act for SaaS — compliance checklist

Article-by-article checklist: Annex III/I classification, GPAI Article 53, Annex IV docs, Article 9 RMS, Article 72 PMM — what SaaS founders and counsel actually need to ship.

2026-03-05 Read article →

GDPR for US founders 2026 practical guide

Compliance 19 min read

GDPR Privacy

GDPR for US founders selling to the EU

What US-incorporated SaaS founders actually need to ship into the EU: Article 3 scope, Article 27 EU representative, ROPA, SCCs 2021/914, DPF, Schrems II.

2025-11-02 Read article →

HIPAA software development checklist 2026

Compliance 17 min read

HIPAA HealthTech

HIPAA software development checklist

Practical checklist for software vendors: §164.502–514 Privacy Rule, §164.308–316 Security Rule safeguards, §164.504 BAA, §164.400–414 breach notification, HITECH, OCR enforcement.

2026-01-05 Read article →

All articles →

Building something in gdpr? Let's talk.

Response within 1 business day. NDA on request.

Get a proposal