About the IAPP

Andrew Clearwater, CIPP/US

OneTrust

CPO

Andrew Clearwater serves as Director of Privacy at OneTrust. Clearwater is a Certified Information Privacy Professional (CIPP/US), holds an LLM in Global Law and Technology and is a licensed attorney.  In his role as Director of Privacy, Clearwater provides counsel, leadership, and guidance on data protection.  Clearwater is also responsible for providing public policy analysis in the areas of privacy, data security, information policy, and technology transactions.  Clearwater is a globally recognized privacy thought leader and has spoken at many of the world's leading privacy conferences on behalf of OneTrust.
 
Before joining OneTrust, Clearwater was the Privacy Officer for RxAnte, the leading platform for improving medication use and drug therapy outcomes through predictive analysis and targeted clinical programs. Clearwater also held privacy roles at the Future of Privacy Forum, a leading privacy think tank as well as the Network Advertising Initiative, a non-profit organization that is the leading self-regulatory association dedicated to responsible data collection and its use for digital advertising. In addition, Clearwater made contributions to the NTIA mobile application transparency discussion, helped launch a privacy seal program for companies that use consumer energy data, participated as a member of the W3C Tracking Protection Working Group, and taught as an adjunct professor of privacy and technology law at the University of Maine.

Contributions by Andrew Clearwater

• ISO 27701: All About the New Privacy Standard & How You Can Get Certified
  Speaker at IAPP Europe Data Protection Congress 2019
• ISO 27001 & the GDPR: Identifying Overlap and Streamlining Efforts
  Speaker at IAPP Canada Privacy Symposium 2019
• A Playbook for 'Reasonable and Appropriate' Security Measures and Safeguards
  Speaker at IAPP Canada Privacy Symposium 2019
• Are Businesses Ready for the CCPA? See the Survey Results
  Speaker at Global Privacy Summit 2019
• Member of Privacy Bar Section Advisory Board 2019 - 2020
• GDPR Enforcement: Is it really about the fines?
  The Privacy Advisor
• Implementing appropriate security under the GDPR
  The Privacy Advisor
• GDPR vendor management: We've seen this movie before
  The Privacy Advisor
• Practical tips for consent under the GDPR
  The Privacy Advisor
• GDPR compliance: Combine and conquer
  The Privacy Advisor
• Considerations for operationalizing data-subject rights under GDPR
  The Privacy Advisor
• Data Mapping: How to Do It and Why It Matters
  Speaker at IAPP Canada Privacy Symposium 2017
• DPO as a Service
  Speaker at IAPP Canada Privacy Symposium 2017
• An Agile Approach to PIAs and Privacy by Design
  Speaker at Privacy. Security. Risk. 2016
• The Internet of Things
  Speaker at Northern New England KnowledgeNet: March 26, 2015
• Industry of Privacy Project: Early Insights
  The Privacy Advisor
• Big Data’s Thirst Is Driving Change in Minimization Philosophy
  Privacy Perspectives
• 410,000 Lavabit Users Weren’t Edward Snowden
  Privacy Perspectives
• Are data breach mitigation costs cognizable damages?
  The Privacy Advisor
• New theory of harm in data breach cases
  The Privacy Advisor