About the IAPP

ShanShan Pa, CIPP/E, CIPP/US, CIPM, CIPT, FIP

State Street

Managing Director, Alpha Technology Risk

ShanShan manages global privacy and compliance at Alibaba Cloud. She deals with the security and privacy compliance aspects of the cloud business. Prior to that, she worked in both, at internal and external compliance and audit functions in the areas of finance, pharmaceutical and technology. She has been active board members and supporter of multiple industry organization chapters such as the Cloud Security Alliance (CSA), the International Association of Privacy Professionals (IAPP), the Information Systems Audit and Control Association (ISACA) and a longtime volunteer for the SANS institution's security awareness program. She is an advocate for bridging privacy and security, and raising overall awareness.

Before joining the Publishing Advisory Board, ShanShan started as a Young Privacy Professional Leader, engaging local organizations and hosting educational network events to promote privacy in the community. She is also a Certified Information Systems Auditor (CISA) and a Certified Information Security Manager(CISM).

Contributions by ShanShan Pa

• Navigating GenAI: Insights from Regulatory Advancements in AI Governance
  Speaker at IAPP Asia Privacy Forum 2024
• Member of Research Advisory Board 2024 - 2025
• Code of Conduct Under GDPR: Alignment, Interoperability and Potentials
  Web Conference Speaker
• Member of Education Advisory Board 2021 - 2022
• Speaker at IAPP Europe Data Protection Congress 2020 - Cancelled
• Privacy Awareness Redux: How to Promote Privacy from Governments to Employees
  Speaker at IAPP Summit Sessions 2020 Online
• Dual Literacy in Privacy and Security — A Guide for Infosec Professionals
  Speaker at IAPP Summit Sessions 2020 Online
• Dual Literacy in Privacy and Security — A Guide for Infosec Professionals
  Web Conference Speaker
• Mitigating Third-Party Mayhem
  Speaker at IAPP Summit Sessions 2020 Online
• Mitigating Third-Party Mayhem
  Web Conference Speaker
• Member of Privacy Engineering Section Advisory Board 2020 - 2021
• Code of Conduct: A Practical, Cost-Effective Way to Demonstrate GDPR Compliance
  Speaker at IAPP Europe Data Protection Congress 2019
• Data Protection Impact Assessments: The Full Picture
  Speaker at IAPP Europe Data Protection Congress 2019