LAUREN KITCES, a member of our Privacy and Cybersecurity practice, provides business-oriented privacy and cybersecurity advice to a wide range of clients. She has strong international experience, which she uses to help translate preexisting international efforts into U.S. regulatory compliance. Lauren enjoys the nuance and complexities that come with being in a field that is still evolving and forming both nationally and internationally.
Lauren utilizes her analytical thought process and multifaceted legal and industry experience to provide clients with sound analyses of complex privacy matters. She has an ability to efficiently address and manage substantive and procedural issues. She has skillful knowledge of subject matter across many areas of privacy, including the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), the General Data Protection Regulation (GDPR), the Illinois Biometric Information Privacy Act, and cross-border data transfers.
Lauren has advised on and facilitated CCPA compliance programs and all facets of CCPA remediation across a range of industries, including for ad tech, financial services, technology, automotive, and retail. She regularly drafts and advises on privacy materials, such as externally and internally facing privacy notices, corporate policies, and training materials. She also coordinates and performs due diligence reviews and advises on security incident response and analysis. Lauren further addresses the complexities of international data transfers, leveraging her cross-border knowledge and experience to provide clients with a holistic and informed perspective.
Lauren previously worked in-house advising a global risk management, insurance brokerage, advisory, and benefits administration company on both U.S. and international data privacy. She was a key figure in implementing corporate compliance with the GDPR, and assessing and managing compliance with myriad other data privacy laws, including the CCPA, Chinese Cybersecurity Law, and Brazilian General Data Protection Law.
In addition to current laws and requirements, Lauren stays well-informed of proposed, upcoming, and evolving state, national, and international privacy laws and requirements.
As a Certified Information Privacy Professional (CIPP/US and CIPP/E) and a passionate contributor to the privacy community, Lauren is regularly sought out for her perspective and is an active public speaker. Most recently The National Law Journal named Lauren a 2020 Go-To Thought Leader for her contributions related to Privacy legislation in California. Lauren served as a chair of the International Association of Privacy Professionals (IAPP) Washington, D.C. chapter from 2018-2019 and remains an active participant in the IAPP through her local D.C. chapter and the Women Leading Privacy section. She enjoys the opportunity to connect with and learn from others in the privacy industry and to help those developing in the industry to grow and advance.