AI Governance, Data Protection & GRC
Strategic Advisory | Interim Consultancy | AI literacy & Keynotes | Implementations & Effective Solutions
For Safe, Resilient &
Future-Ready Societies
The Opportunity
The most transformative innovation of our time
Artificial intelligence is reshaping how intelligence is created, scaled, and applied — accelerating decisions, unlocking insights, and enabling entirely new business models.
The Risk
In the wrong hands, a force multiplier for harm
AI amplifies cyberattacks, enables manipulation, and exposes institutions to fast-evolving threats — as outlined in ENISA's Threat Landscape 2025. It is redefining governance, risk, and compliance.
ART.25
We help you navigate both sides of the equation
We embed ethical AI and data protection by design into governance and operations. Aligned with the EU AI Act and GDPR, we advise leadership, support vendor due diligence, and train teams to innovate responsibly.
Our Contribution
-
Responsible AI systems require clear governance frameworks, risk controls, and structured oversight. Requirements such as the EU AI Act and ISO/IEC 42001 are translated into practical governance models across projects, suppliers, and digital platforms.
-
Most AI and data risk originates from third-party vendors, as enterprise systems increasingly rely on AI-powered technologies. This risk must be proactively managed through contractual commitments and a structured, risk-based supplier governance framework. ART25 establishes this framework by classifying vendors based on risk and defining requirements across digital risk domains. We strengthen and negotiate contracts to embed these controls and capabilities, ensuring effective third-party risk management.
-
Equipping leadership teams and employees with the knowledge needed to understand AI risks, responsibilities, and regulatory expectations. Through targeted training and governance programs, organizations strengthen internal awareness and support compliant AI adoption.
-
Supporting organizations in strengthening privacy governance while integrating AI technologies into their operations. This includes embedding privacy-by-design processes aligned with the General Data Protection Regulation and ensuring responsible data use across AI-driven systems.
-
At ART25, our Founder Hummam Wasfi delivers keynote speeches and practical sessions on AI governance, data protection, and the future of GRC.
As AI reshapes risk and decision making, he helps organisations rethink how governance, risk, and compliance operate in practice aligning them with the realities of the AI era.
From C-suite to operational teams, his sessions break down silos between legal, IT, security, and business, translating complexity into clear, practical insight grounded in real-world experience.
Available for summits, conferences, workshops, and executive or policy discussions.
-
We develop educational material and accessible content that helps society better understand AI, data protection, and cybersecurity risks, contributing to stronger public awareness and more responsible use of digital technologies.
AI is redefining risk, exposing the limits of traditional GRC models. Governance must evolve to manage velocity, volatility, and cross-domain complexity.
When a job title seems harmless.
But in the wrong hands, it becomes a starting point.
Why Art25 Consulting?
ART25 Consulting offers your organization senior expertise certified by the International Association of Privacy Professionals (IAPP), holding the world’s most prominent credentials in the field including FIP, AIGP, CIPP/E, CIPM, and CIPT certifications. Thus, you can be assured that your business stays aligned with highest standards and most current strategies in AI Governance, Data Protection & Security
Articles
Testimonials
-
![]()
Arne Diedrichs, Director of Internal Audit - Vattenfall GMBH
“Hummam is a dedicated and highly experienced senior data protection professional. At Vattenfall, he set up a strong data protection governance for employee data and developed and executed comprehensive GDPR training activities for the HR community.”
-
![A middle-aged man with dark hair, glasses, and a beard smiling at the camera, wearing a black shirt and a dark blazer against a plain background.]()
Jarek Finkielman, Enterprise Account Executive - Workiva
‘‘I had the pleasure of working with Hummam and saw first-hand the value he brings to organisations navigating complex GRC challenges. He has a strong ability to advise strategic accounts on best practices while also bringing a forward-looking perspective on emerging issues such as AI governance and digital risk. He’s particularly effective at engaging senior stakeholders, whether through strategic conversations or clear, well-structured software demonstrations that connect technology with real business needs’'
-
![A woman with brown hair smiling at the camera against a white background.]()
Anna Maric, Head of Operations Consumer Sales Nordic - Vattenfall AB
“If you are looking for someone who knows data protection by heart, can guide you in what the options are, comes with constructive ideas and solutions, has the right mindset and is always helpful, that is Hummam. I can highly recommend him and it’s always a pleasure working with him…”
-
![A woman with short, curly black hair and brown skin, smiling, wearing a black top with gold button details and gold hoop earrings, against a white background.]()
Karla Cardozo, Solutions Consultant Senior Manager - Workiva
‘‘During his time at Workiva, Hummam made an impact through his collaborative personality and his dedication to learning our solutions. He successfully worked through the complexities of our platform to get up to speed on the technology. His specific knowledge in AI was a notable addition to the team, and I am sure he will bring a high level of knowledge and energy to any organization he joins. I believe his insights into AI use cases and governance will be of value to any organization he supports’’
-
![A black-and-white close-up portrait of a man with glasses, a beard, and a shaved head, wearing a collared shirt.]()
Daniel Scholte Senior Security Consultant, CISM, CCSP, CCISO - Vattenfall NV
“I had the pleasure of working with Hummam on a large IT transformation program. I can confidently say that his expertise in these areas are exceptional. he has an impressive ability to navigate complex regulatory frameworks and ensure that all processes align perfectly with highest standards and best practices. Additional to his profound knowledge in data privacy, Hummam is also a skilled negotiator. He has consistently secured favorable terms while maintaining strong and positive relationships with all parties involved’’
-
![A young woman with long brown hair, bright blue eyes, and a slight smile, wearing a black high-neck shirt, against a dark background.]()
Lovisa Mannerstråle, Head of HR - EN WELL AB
I have worked with Hummam for over 1 year in a large IT transformation project. He is more than able to present highly complex situations and challenges to all level of stakeholders, and is able to combine in-depth data protection and security competence. He is a very appreciated colleague and always has a positive can do attitude bringing both energy and competencies to every situation.
-
![]()
Patrick Roscher Senior HR Professional, Certified Leadership Coach - Roscher Coaching
‘‘Working with Hummam is always a pleasure as I can confidently state that he is acting with the right mindset: being always there if needed, giving proactive advice, and at the same time always having the big picture in mind. He is solution-oriented and by that a super team player which brings any project to the next level. Also, of course, super fun, energetic, and humble, which makes it even easier to cooperate. Definitely a big win for any team and company’’
-
![A young woman with long blonde hair wearing a blue denim shirt and small hoop earrings, sitting against a plain background.]()
Neele Bohmbach, Process Manager - Vattenfall GMBH
‘‘What sets Hummam apart is his ability to connect with everyone and make work both fun and meaningful, regardless of their technical background. When leading DPIA workshops or assisting teams in incorporating data protection into projects; he transforms it into a practical experience that highlights risks while offering actionable solutions. Hummam helps the business view data protection as a strength rather than an obstacle, fostering a collective commitment to embracing it together’’
