Global Privacy & Data Protection Program

Global Privacy & Data Protection Program

Overview

Designed and executed a global privacy and data protection strategy to meet evolving regulatory, customer, and enterprise requirements. Influenced Privacy by Design into product development, and deployed automated data discovery and classification capabilities across cloud and SaaS platforms. Implemented centralized Privacy Impact Assessments (PIAs) in engineering workflows and created transparent reporting to executives and regulators.

Role

Director acting as executive sponsor and program architect. Worked in partnership with Legal, Compliance, and Engineering to embed privacy controls into operations and product lifecycles. Day-to-day implementation executed by privacy engineering and IT compliance teams.

Impact

Enabled enterprise readiness for GDPR, CPRA, and emerging global frameworks such as the EU AI Act and U.S. state privacy laws. Reduced privacy incident exposure by 60%, improved customer trust during enterprise negotiations, and prevented millions in potential regulatory fines. Positioned the company as a trusted vendor in industries with heightened privacy scrutiny.

Technologies, Frameworks, and Artifacts

  • GDPR, CPRA, EU AI Act readiness
  • Privacy by Design framework
  • Automated PIAs (OneTrust, TrustArc)
  • Data discovery and classification (BigID, Collibra, native cloud DLP)
  • Presidio for PII detection and masking

Similar Work

Cyber Risk Program

Cyber Risk Program

Crisis Management & Cyber Resilience Program

Crisis Management & Cyber Resilience Program