About the IAPP

Caitlin Fennessy, CIPP/US

IAPP

Research Director

+16034279200 X401
caitlin@iapp.org

Caitlin Fennessy is the Research Director at the International Association of Privacy Professionals. Caitlin also leads the IAPP’s privacy engineering initiative and serves as an in-house privacy expert. 

Prior to joining the IAPP, Caitlin was the Privacy Shield Director at the U.S. International Trade Administration. Caitlin joined ITA in 2009 and spent the next ten years working on international privacy and cross-border data flow policy issues. Caitlin served an adjunct professor of international privacy law at the University of Maine School of Law in 2016 and 2015 and at the University of New Hampshire School of Law in 2014. Before her time at ITA, Caitlin worked in the National Security Division of the Office of Management and Budget and with the U.S. Senate Foreign Relations Committee. 

Caitlin has a master’s degree in public affairs from Princeton University and a bachelor’s degree in social policy from Northwestern University.

Contributions by Caitlin Fennessy

• New EU SCCs: A modernized approach
  The Privacy Advisor
• A breakdown of EDPB's recommendations for data transfers post-'Schrems II'
  The Privacy Advisor
• Top-5 operational impacts of Brazil’s LGPD: Part 3 — International transfers
  The Privacy Advisor
• Privacy Leaders’ Views — The Impact of COVID-19 on Privacy Priorities, Practices and Programs
  
• White Paper – The Skill Set Technologists Need to Implement a Privacy Risk Management Framework
  
• Certification Nation! Limits and Benefits of GDPR Certification & ISO Standards
  Speaker at IAPP Privacy. Security. Risk. 2020 - Canceled
• Raising The Privacy Standard
  Speaker at Virtual Melbourne KnowledgeNet: 1 October 2020
• Practical aspects of the 'Schrems II' decision
  Speaker at Virtual Bristol and London Joint KnowledgeNet: 10 September 2020
• The 'Schrems II' decision: EU-US data transfers in question
  Westin Research Center
• Manual contact tracers and privacy: Building trust is a local effort
  The Privacy Advisor
• CPRA's top-10 impactful provisions
  Westin Research Center
• Virtual justice and privacy: What does COVID-19 mean for due process?
  Privacy Perspectives
• A timely resource: Updated guide to US government data sharing
  The Privacy Advisor
• Brazil’s New Data Protection Law: A Local and Global Lens
  Moderator at IAPP Global Privacy Summit 2020 - Canceled
• Brexit and Data Adequacy: UK, EU and U.S. Perspectives
  Moderator at IAPP Global Privacy Summit 2020 - Canceled
• US Sen. Moran's new privacy bill: Stacking up the federal proposals
  Westin Research Center
• Microsoft launches open-source privacy mapping tool
  Privacy Tech
• White Paper – The Skill Set Needed to Implement a Privacy Risk Management Framework
  
• White Paper – The Skill Set Needed to Implement a Global Privacy Standard: ISO/IEC 27701 alignment with IAPP CIPM and CIPP/E certifications
  
• EU representative on 'How to operationalize Article 27' of the GDPR
  The Privacy Advisor
• Measuring Privacy Operations
  Web Conference Speaker
• The advocate general's 'Schrems II' opinion: What it says and means
  Privacy Tracker
• The IAPP's top resources of 2019
  Westin Research Center
• US sens. unveil new federal privacy legislation
  Westin Research Center
• Measuring Privacy Operations in 2019
  LBS Speaker at IAPP Europe Data Protection Congress 2019
• The Privacy Shield review and its potential to impact Schrems II
  Westin Research Center
• Member of Research Advisory Board 2019 - 2050
• White Paper – 5 Steps You Must Take to Prepare for the CCPA
  
• A closer look at Carnegie Mellon's privacy engineering program
  Privacy Tech
• Inside the Privacy Shield annual review: Increasing common ground
  Privacy Perspectives
• ISO 27701 Privacy Standard and Certification
  Web Conference Speaker
• The unique challenges CCPA poses for SMEs
  Westin Research Center
• Privacy engineering: The what, why and how
  Privacy Tech
• White Paper – GDPR at One Year: What We Heard from Leading European Regulators
  
• NIST Privacy Framework nearing completion
  Privacy Perspectives
• Could the CJEU upend the global framework for data flows by answering a different question?
  Privacy Perspectives
• Member of Privacy Engineering Section Advisory Board 2019
• GDPR compliance: Hits and misses
  Westin Research Center
• Study: An estimated 500K organizations have registered DPOs across Europe
  The Privacy Advisor
• IAPP FAQs: Are GDPR-compliant companies prepared for CCPA?
  Westin Research Center
• Notes from the IAPP, April 12, 2019
  United States Privacy Digest
• NIST Privacy Framework recognizes critical need for workforce development
  Privacy Tech
• Getting Privacy Shield Right
  Speaker at Global Privacy Summit 2017
• One-on-one Privacy Shield Consultations
  Speaker at IAPP Europe Data Protection Intensive 2017
• Privacy Shield in Practice: Oversight, Enforcement and International Cooperation
  Speaker at IAPP Europe Data Protection Intensive 2017
• One-on-one Privacy Shield Consultations
  Speaker at IAPP Europe Data Protection Intensive 2017
• Privacy Shield - The Transfer Mechanism of Choice?
  Web Conference Speaker
• EU–U.S. Privacy Shield: The Nuts and Bolts
  Speaker at Privacy. Security. Risk. 2016
• One-on-One Privacy Shield Consultations
  Speaker at Privacy. Security. Risk. 2016
• Your Guide to Privacy Compliance and Cross-Border Data Flows
  Speaker at Northern New England KnowledgeNet: May 24, 2016
• The Latest on BCR and CBPR: Is Interoperability to Be Expected?
  Speaker at Global Privacy Summit 2016
• Member of Research Advisory Board 2016 - 2017
• Inside the CBPR
  Speaker at IAPP Europe Data Protection Congress 2015