Mark Thompson, CIPP/E, CIPM, CIPT, FIP



Global Privacy Advisory Lead

Mark Thompson is a KPMG LLPs Privacy Practice Leader

Mark is Privacy Practice Leader for KPMG Privacy Advisory Practice, which helps clients build and embed pragmatic governance frameworks, processes and controls to address complex multijurisdictional compliance and risk management challenges. Thompson specializes in the assessment and management of privacy and security business and regulatory risks. Priorto joining KPMG Mark was Privacy Practice Leader for Concentium Ltd, and he worked eight years at Ernst & Young, where he helped build the Privacy Advisory Services Practice as well as consulting services in risk management, IT security and IT advisory.

Mark's client base ranges from Forbes 500 to high-growth entrepreneurial businesses in sectors as diverse as financial services, pharmaceutical and biotechnology, travel, retail, telecommunications, media, government and transport. He has managed and delivered privacy advisory assignments for clients with operations in over 100 jurisdictions, working directly with management on the ground in more than 20 countries.
As well as advising on business risk and compliance challenges in areas such as HR, sales and marketing, outsourcing, mobile and location-based services and social media, Mark is often asked to author articles, deliver training and speak at conferences on these and other matters.He has co-authored privacy and security thought leadership magazine articles and proprietary publications, and government consultation papers.

Mark was a founder member of the CIPP/E Certification Advisory Board. He is also on the IAPP training faculty and is has been a co-chair of the IAPP London KnowledgeNet. Mark holds a BA (hons) in business studies and an MSc in information security, and his professional credentials include CIPP/E, CIPT, CIPM, Prince2 Practitioner, TOGAF 8 and ITIL.


Contributions by Mark Thompson

  • Data Subject Revolution: What’s Changed and What’s to Come
    Speaker at IAPP Europe Data Protection Congress 2018
  • Subject Access—It’s Not All About the Individual
    Speaker at IAPP Europe Data Protection Congress 2017
  • The Customer Is Key: Trust, Loyalty and Care in the New World
    Speaker at IAPP Europe Data Protection Congress 2016
  • Processing Today: You Take the Risk? I Take the Risk? We Take the Risk?
    Speaker at IAPP Europe Data Protection Intensive 2016
  • The Ten Million Dollar Question: Managing Privacy Risks in Your Supply Chain
    Speaker at IAPP Europe Data Protection Congress 2015
  • How Cybersecurity and Data Protection Intersect: A View for Global Companies
    Speaker at IAPP Europe Data Protection Intensive 2015