About the IAPP

Mr. Frank currently leads Deloitte & Touche LLP’s Privacy service offering in the United States. His professional experience includes almost 25 years in IT and Cyber Security. Mr. Frank excels at data governance, data privacy and data protection program development and remediation as well as rapidly responding to related regulatory enforcement actions. He has helped numerous organizations with various aspects of their data management, data privacy, and data protection programs, from requirements and controls definition, data classification, business process risk ranking and data flow analysis, risk assessment, and strategy development, through program development and remediation initiatives such as organizational models, notices, policies, procedures, and guidelines, training and awareness programs, metrics, monitoring, and reporting processes, business process and system controls definition, incident response plans, cross border transfer mechanisms (e.g. Model Contracts, Binding Corporate Rules), third party risk management programs, and data classification, loss prevention, encryption, rights management, and other data protection and cyber risk management technology solutions.

Mr. Frank has international privacy and data protection experience in the America’s, EMEA, and APAC, and has built global privacy and data protection programs to meet a variety of industry and international legal and regulatory requirements.  He has helped over 100+ organizations with various aspects of their data governance, privacy, and protection programs.

Mr. Frank is a Certified Information Privacy Professional and Certified Information Systems Security Professional, and has spoken on privacy and data protection at conferences for the IIA, ISACA, IAPP, Symantec, Veritas, and RSA.