About the IAPP

Karen Lee Lust, CIPP/EU, advises clients on lowering risk associated with using and storing information across jurisdictions. Karen advises companies of all sizes regarding cross-border transfer and information governance issues arising in the US and the world, and particularly in the EU. She has advised regarding GDPR compliance, including structuring and implementing processes and GDPR programs. Karen counsels clients with regard to best practices and company policies dealing with processing and transfer of personal data of employees and customers, as well as preparing for and responding to data breaches.