Regulatory Compliance
Karen Guerra understands the challenges organizations face complying with vast and ever-changing laws, regulations, and industry standards. She has experience working on a wide variety of compliance issues, including Banking and Financial compliance, Health and Safety regulations, Anti-Money Laundering and Anti-Corruption laws, and other industry-specific laws and regulations.
More significantly, Karen has worked with laws, regulations, and industry standards for Data Privacy and Information Security. She has worked on numerous data privacy projects for Fortune 500 companies, including privacy related to tech, big data, and AI issues. She is familiar with State, Federal, and international laws and regulations designed to protect personal and sensitive information such as GDPR, HIPAA, and CCPA/CPRA. She knows the difference between a data privacy assessment based on risk scoring (commonly used by businesses) and the GDPR requirements for a data privacy impact assessment (DPIA). She is familiar with regulatory enforcement, the consequences of non-compliance, and the ways companies can mitigate their risk of adverse actions.
More laws than ever before!
Twelve US states have passed comprehensive data privacy laws and seven more states have active legislation pending for such laws. In addition, there are numerous federal and state consumer protection laws that are being used to protect consumer information that are enforced by the Federal Trade Commission and other federal and state agencies. The European Union is expected to enact regulations regarding Artificial Intelligence early next year. As a Certified Information Privacy Manager (CIPM), Karen has the knowledge, skills, and resources to help organizations keep current on their regulatory compliance obligations.
- IAPP chart of US State Data Privacy legislation
- IAPP US Federal Data Privacy legislation tracker
- President Biden’s Executive Order related to Artificial Intelligence
- GDPR Enforcement Tracker
