Hilary Wandall, CIPP/E, CIPP/US, CIPM, FIP



SVP, Privacy Intelligence and General Counsel

Hilary Wandall is General Counsel and Chief Data Governance Officer of TRUSTe. She oversees all legal, regulatory and policy matters and manages TRUSTe’s Policy and Data Governance and International Regulatory Affairs teams. Wandall joined TRUSTe in 2016 after 22 years at the global pharmaceutical company, Merck, where she most recently was AVP, Compliance and Chief Privacy Officer. Wandall led the global privacy program at Merck since 2004, including its efforts to become the second company in the world to achieve APEC CBPR certification, the first company to achieve CBPR certification of its entire privacy program, and the first company to achieve EU BCRs based on its APEC CBPR certification. During her tenure at Merck, Wandall also held positions as a corporate attorney, compliance officer, marketing promotion manager and biomedical research scientist.

Wandall is actively engaged in efforts to support the development of the privacy profession, to drive interoperability across privacy and data protection regimes around the world, and to scale and integrate privacy and data governance through technology. She has been involved in various organizations across the privacy community, such as the IAPP Board of Directors, the International Pharmaceutical Privacy Consortium, the OECD Privacy Experts Working Group, the International Accountability Foundation, the Future of Privacy Forum and the Centre for Information Policy Leadership.

Wandall received her law degree and MBA from Temple University, Master of Bioethics from the University of Pennsylvania, and Bachelor of Science in Biology from Moravian College. She holds the CIPP/US, CIPP/EU and CIPM certifications. She is admitted to practice in New Jersey and Pennsylvania. Wandall resides with her family in Pennsylvania


Contributions by Hilary Wandall

  • Mitigating Third Party Mayhem
    Speaker at IAPP Global Privacy Summit 2020 - Canceled
  • Measuring Privacy Operations in 2019
    LBS Speaker at IAPP Europe Data Protection Congress 2019
  • Demystifying the Role of Automated Intelligence in Privacy Management
    Speaker at IAPP Privacy. Security. Risk. 2019
  • NIST Roundtable: Privacy Framework Discussion Draft
    Speaker at IAPP Canada Privacy Symposium 2019
  • International Developments Impacting Canada
    Speaker at IAPP Canada Privacy Symposium 2019
  • GDPR, CCPA and Beyond—Benchmarking Data Across Regulation Compliance
    Speaker at Global Privacy Summit 2019
  • Demonstrating Responsible Use Through Legitimate Interests
    Speaker at Global Privacy Summit 2018
  • APEC Cross-Border Privacy Rules
    Speaker at Hong Kong KnowledgeNet: 7 December 2017
  • What's the Risk of Not Complying with the GDPR?
    Speaker at IAPP Europe Data Protection Congress 2017
  • Growth of the Cross Border Privacy Rules System in Asia
    Speaker at Privacy. Security. Risk. 2017
  • Privacy Impact Assessments for Smart City Projects
    Speaker at Privacy. Security. Risk. 2017
  • Introducing GDPR: A Primer for Asian Professionals
    Speaker at Hong Kong KnowledgeNet: 27 September 2017
  • Privacy on the Ground: Managing Personal Data and Privacy Risks in Organisations
    Speaker at United Nations Global Pulse and IAPP Joint Event
  • Privacy Developments in Asia
    Speaker at San Francisco Bay Area KnowledgeNet: April 27, 2017
  • Firestarter Session: Re-Envisioning the Privacy Leader as a Business Enabler
    Speaker at Practical Privacy Series 2016
  • The Regulators’ View
    Speaker at IAPP Asia Privacy Forum 2016
  • The Changing Landscape of Healthcare Marketing: Preparing for the Future
    Speaker at Global Privacy Summit 2016
  • Sales and Profits Are Everyone’s Responsibility—Shouldn’t Privacy Be Too?
    Privacy Perspectives