Rosalind Kennedy began her career in Privacy as an Attorney-Advisor in the Department of Justice, Office of Information and Privacy where she litigated cases under the Freedom of Information and Privacy Acts. She had a long career in governmental privacy, including stints at the Federal Bureau of Investigation, Privacy and Civil Liberties where she advised on matters concerning the Privacy Act of 1974 and Section 208 of the E-Government Act of 2002; and the Department of Homeland Security where she reviewed DHS intelligence products to determine compliance with the Privacy Act of 1974 and other DHS privacy policies and procedures.

She was the Privacy Officer for the Smithsonian Institution where she developed a comprehensive privacy program for twenty (20) museums. She then worked at Microsoft where she developed a comprehensive privacy program within the Corporate Privacy team then in a business unit within IT; ensured compliance with the Sarbanes-Oxley Act; managed high severity privacy incidents across the company and developed processes and procedures for data access and deletion requests. At Visa she reviewed and provided privacy guidance on contractual agreements with third-party suppliers, including International Data Transfer Agreements that governed cross-border transfers of Personal Information required by GDPR and other data protection laws and conducted privacy impact assessments.

Ms. Kennedy has extensive data privacy & governance experience with a track record of proven results.

Ms. Kennedy has experience with:

• CCPA and CPRA Strategy and Implementation

• CPRA Strategy and Implementation

• Privacy and marketing

• Privacy policy and process development

• Privacy training

• Privacy incident response strategy and management

• Third-Party Management

• Contract reviews

• Program development and implementation

• Building Compliance programs