top of page

REFERENCES

Here are some of my selected references

ISO 27701 PRIVACY INFORMATION MANAGEMENT

Conducted a gap analysis, documented findings, and advised how to acquire the certification. Project ongoing

Image by Call Me Fred
Website on Laptop

WEBSITE PRIVACY NOTICES

Drafted privacy notices and implemented cookie banners for www.avaloq.com/ and www.avaloq.one/

VENDOR DUE DILIGENCE

Drafted a checklist and created a process how to approve vendors from data protection perspective

Revewing Graphs
Image by Loic Leray

RISK MAPPING TOOL

Drafted and implemented a risk scoring system based on “Guidelines on Data Protection Impact Assessment (DPIA) (wp248rev.01)” by the European Data Protection Board (EDPB)

RECORDS OF PROCESSING ACTIVITIES

Creating records of processing activities from scratch (+2000 employees affected). Consulting business process owners and annually reviewing the records using OneTrust’s privacy solution.

Organized Files
Woman with Crossed Arms

DATA SUBJECT REQUEST

Creating processes how to handle data subject requests such as “right to be forgotten”, access and correction requests

BACKGROUND CHECKING

Advising how to conduct background checking (criminal records and debt register extracts) across several jurisdictions and revising group practices accordingly.

Villain
Academic Library

RECORDS RETENTION POLICY AND SCHEDULE

Drafting a policy, schedule and communication how to implement group-wide data retention rules.

DATA PROTECTION TRAINING

Hand-crafting organization-specific data protection training unit (SCORM) for +2000 employees.

Students and Teacher in Classroom
Law

REGULATORY INSIGHTS

Providing data protection advice to various clients and stakeholders on a daily basis. Main focus in Switzerland, Germany, the UK, Singapore and the Philippines.

DATA INCIDENT MANAGEMENT

Preparing a process how to handle data incidents (detection, reporting, triage, containment, communication, post-incident analysis)

Business Team
bottom of page