Michelle Schaap, CIPP/US



Founder of Data Security and Privacy Practice

Michelle A. Schaap, founder of Chiesa Shahinian & Giantomasi PC's Privacy & Data Security Group, regularly advises on cybersecurity preparedness, counsels when data security incidents arise and trains companies on best practices for security procedures addressing both their business operations and their customers’ concerns. Michelle assesses risk management practices and security incident preparedness in developing proactive security incident response and recovery plans.

Michelle further advises clients on their legal mandates under applicable privacy legislation and best practices; assists clients in the vetting of vendors that process confidential and personal data on behalf of clients; and guides clients in understanding guidelines for privacy and cybersecurity imposed by their customers. 

Additionally, she works with clients in contract drafting, negotiation and review, including online undertakings, in critical areas of privacy and security.

Michelle counsels clients on incident and breach response – often serving as quarterback to the incident response team, working closely with her client’s senior executives, forensics, law enforcement, insurance advisors and other critical members of the team.

She is a Certified Information Privacy Professional, awarded from the International Association of Privacy Professionals, with a concentration on U.S. private-sector law (CIPP/US), and earned her certification on Cybersecurity: Managing Risk in the Information Age from Harvard in association with HarvardX and Cybersecurity and Privacy from Mitchell Hamline School of Law.

Michelle is a subject matter resource on cybersecurity and privacy for the New Jersey Small Business Development Corporation. She is a sought after speaker and has authored numerous articles to educate business owners on privacy and cybersecurity risks and obligations.


Contributions by Michelle Schaap

  • Negotiating Key Provisions in Vendor Technology Contracts: Mitigating and managing vendor risks
    Speaker at Virtual New Jersey KnowledgeNet: August 25, 2022