Isabela Guarino Tancredo CIPP/E
About:
I graduated as a lawyer in Brazil in 2019 and worked as a corporate lawyer for a year before specialising in the UK/EU GDPR and the Brazilian LGPD, which lead me to get my CIPP/E certification. I have worked for a data protection SaaS company in the UK as an analyst, then became a Senior Privacy Analyst for AB Inbev, which I had to let to when I got a job offer to live my dream and move to the UK to work as an external DPO for companies of all sizes, in the UK, US and the EU.
languages
English, Portuguese, Spanish
Expertise:
Experience:
Evalian Limited
Consultant at Evalian Limited
April 2022 - Present • Brighton, UK
As a Data Protection Consultant, I act as the external Data Protection Officer for more than 10 business clients from several different industries, some of which have offices both in the UK/EU and the US. I am responsible for delivering UK/EU GDPR gap analysis and remediation programmes for my clients, including drafting their policies and procedures, reviewing and creating processing and sharing agreements, carrying out DPIAs, legitimate interests assessments, creating ROPAs, executing DSARs, providing advice, delivering training and awareness communications and liaising with stakeholders from within and outside their businesses.Impace Group
Consultant at Impace Group
10 mth • June 2021 - April 2022 • Brighton, UK
Reported to the Data Protection Director, responsible for providing outsourced Data Protection Officer as a service, counselling companies of all sizes regarding data protection regulations (UK GDPR, DPA 2018 and correlated regulations) and driving data protection change through compliance maturity programmes. Responsible for drafting and implementing policies and procedures, DPIAs, responding to DSARs, liaising with the ICO and managing corporate data protection frameworks. Working in data protection product development to create a data protection consultancy products and services. • Provided in-time GDPR advice to solve complex challenges across business areas belonging to companies of all sizes • Conducted data protection audits and mapping data protection gaps to create a maturity analysis and remediation plan • Created policies, procedures, guidance, and working with the in-house teams to implement data protection routines • Raised UK GDPR awareness through newsletters, regulatory updates, and training • Creating and performing One Trust assessments (Legitimate Interest Assessment, Transfer Impact Assessment, Due Diligence, DPIA, Asset Assessment, Breach Reports and more) • Analysed data protection transfers – within the UK and EEA and cross border –, the parties’ responsibilities and signing the appropriate data protection agreements • Conducted DPIAs and Data Protection by Design and Default analysis of assets • Liaised with data subjects, the ICO and stakeholders regarding requests, complaints, and disputes • Created innovative data protection products and services such as platforms, articles, assessments, templates, knowledge base and training videos • Providided data breach advice and acting upon data breachesEducation:
Brazil
2020 - 2021
Postgraduate degre: Corporate Law and Compliance
Brazil
2020 - 2021
Postgraduate degree: digital compliance and data protection (GDPR and LGPD focused)
Brazil
2014 - 2019
Law (bachelor degree)