About the IAPP

ShanShan Pa, CIPP/E, CIPP/US, CIPM, CIPT, FIP

State Street

Managing Director, Alpha Technology Risk

ShanShan manages global privacy and compliance at Alibaba Cloud. She deals with the security and privacy compliance aspects of the cloud business. Prior to that, she worked in both, at internal and external compliance and audit functions in the areas of finance, pharmaceutical and technology. She has been active board members and supporter of multiple industry organization chapters such as the Cloud Security Alliance (CSA), the International Association of Privacy Professionals (IAPP), the Information Systems Audit and Control Association (ISACA) and a longtime volunteer for the SANS institution's security awareness program. She is an advocate for bridging privacy and security, and raising overall awareness.

Before joining the Publishing Advisory Board, ShanShan started as a Young Privacy Professional Leader, engaging local organizations and hosting educational network events to promote privacy in the community. She is also a Certified Information Systems Auditor (CISA) and a Certified Information Security Manager(CISM).

Contributions by ShanShan Pa

• Code of Conduct Under GDPR: Alignment, Interoperability and Potentials
  Web Conference Speaker
• Member of Education Advisory Board 2021 - 2022
• Speaker at IAPP Europe Data Protection Congress 2020 - Cancelled
• Privacy Awareness Redux: How to Promote Privacy from Governments to Employees
  Speaker at IAPP Summit Sessions 2020 Online
• Dual Literacy in Privacy and Security — A Guide for Infosec Professionals
  Speaker at IAPP Summit Sessions 2020 Online
• Dual Literacy in Privacy and Security — A Guide for Infosec Professionals
  Web Conference Speaker
• Mitigating Third-Party Mayhem
  Speaker at IAPP Summit Sessions 2020 Online
• Mitigating Third-Party Mayhem
  Web Conference Speaker
• Member of Privacy Engineering Section Advisory Board 2020 - 2021
• Code of Conduct: A Practical, Cost-Effective Way to Demonstrate GDPR Compliance
  Speaker at IAPP Europe Data Protection Congress 2019
• Data Protection Impact Assessments: The Full Picture
  Speaker at IAPP Europe Data Protection Congress 2019
• Data Protection Impact Assessments: The Full Picture
  Speaker at Global Privacy Summit 2019
• Must-Have Privacy Training Features for Your Team
  Author
• Building and Managing an Effective Risk Assessment Program
  Speaker at Privacy. Security. Risk. 2018
• How Privacy Tech Is Bought and Deployed
  Speaker at Privacy. Security. Risk. 2018