About the IAPP

Carolyn is a Partner with PricewaterhouseCoopers in Atlanta with over 24 years of experience helping clients manage risk and systems of internal control, specializing in privacy, cybersecurity, information technology and business process. Carolyn helps organizations build and enhance their privacy and information security programs and ensure they will be sustainable over the long term. Carolyn often serves as the Independent Assessor in response to consent decrees from regulators such as the FTC and OCR. She also helps companies prepare for compliance with such consent decrees. She focuses on governance and risk assessment, data inventories, flows, and classifications. Carolyn helps organizations assess their program models, training and awareness programs, communications across the organization, and systems of control. In addition, Carolyn helps organizations build control mechanisms and implement monitoring programs that include reporting to senior management and the Board of Directors. Carolyn also assesses her clients' controls and monitoring of third parties and provides advice to such clients to help them enhance, and often remediate, such controls and programs.



Carolyn is a Certified Public Accountant (CPA) as well as a Certified Information Privacy Professionals (CIPP) and Certified Information Systems Auditor (CISA). She has a B.S. in Math from Bucknell University and an MBA from Georgia Tech.



Carolyn is a frequent speaker and often quoted in a variety of media outlets such at Reuters TV, CSO.com, Compliance Week, and Bloomberg Businessweek.