Helping you understand the impact of GDPR. GENERAL DATA PROTECTION REGULATION (GDPR) RSM s GDPR experts
GREGOR STROBL Munich, Germany Partner Risk Advisory Services (RAS) Master of Arts (M.A.) in Corporate Restructuring CIA, CISA, CISM German, English Gregor has extensive experience with the implementation and ongoing monitoring of GDPR projects for middle-market companies and international corporations by using ISO standards as well as other globally accepted standards. He has considerable experience in serving clients in the field of internal control, risk management and internal audit services as well as other specialist services such as compliance management, forensic services and business process improvement. Gregor.Strobl@rsmgermany.de
TERRY McADAM Dublin, Ireland Management Consulting Partner BSc Finance and Fellow of Institute of Chartered Accountants in Ireland English Terry has led the delivery of a range of relevant and complex projects for both international and Irish organisations, including the conduct of targeted privacy impact assessments (PIA) and executive awareness (EA) assignments for a series of clients from diverse industry sectors including financial services, professional services and NGOs. These projects have been conducted against the backdrop of both current national data protection legislation and the pending GDPR. tmcadam@rsmireland.ie
FABRIZIO BULGARELLI Milan, Italy Partner Head of Risk Advisory Service (RAS) and IT Services CISA COBIT5 ISO27001LA ISO22301LA DPO Italian English B2 German A1 Fabrizio has been involved in the European project of asset quality review AQR lead by BCE in cooperation with Banca d Italia. He is Member of the Commission UNI/CT 526 UNINFO APNR-ICT and he participates in workshops regarding the regulation of Professional ICT profiles for Privacy. Previously, Fabrizio held the position of Executive Director of ISACA Milan Chapter - AIEA (Italian Association Information Systems Auditors) He controls and coordinates projects of business continuity and European CAD for public administration in Alto Adige, in cooperation with Agenzia per l Italia Digital (Cnipa/DigitPA). Fabrizio.Bulgarelli@rsmrevisione.it
GORDON MICALLEF Żebbuġ, Malta Director; responsible for Business / Technology Advisory Services CPA, CISA, CGEIT, CRISC, PRINCE2 English, Maltese, Italian GDPR impact/risk assessment Technology/Cyber Cloud Processes Contracts Consent Accountability framework Incident management GDPR training delivery GDPR implementation activities Data Protection policies and procedures Info security policy Incident Management Industries operated in with relevance to GDPR Banking Insurance Online Gaming Telecoms / data centre Public Sector / Authorities Utilities Gordon.Micallef@rsm.com.mt
MARINUS (RIEN) HOMMES Eindhoven and Heerlen, Netherlands Head of RAS / Partner and team leader of 12 privacy professionals Certified IT-auditor - RE Certified external auditor - RA Privacy expert Fluent: Dutch, English, German Reasonable: French, Spanish Broad experience in all security & privacy aspects of the GDPR including; Awareness programmes Zero measurement GAP analysis Implementation plans Tooling for ISMS Privacy data and data breach registers Certification (ISO27K), PDCA cycle, etc. Rien has also produced and delivered a number of presentations and seminars. rhommes@rsm-nl.nl
BORJA GARCIA DE RODA Madrid, Spain Partner Madrid Office Lawyer Masters in Business Law by IE Business School, Madrid. 2000 Bachelor of Law University Abat Oliba-CEU, Barcelona. 1999 English, Spanish and Catalan Borja has extensive experience in advising companies relating to new technologies, e-commerce and data protection. Borja is currently working with, and advising, a range of companies from different sectors in their adaptation to the GDPR and the future Spanish legislation in this regard. bgarcia@rsm.es
ALAIN MARCUSE Boston, USA Director of Security, Privacy, and Risk Services Consulting - Risk Advisory Services CISSP Certified Information Systems Security Professional QSA PCI Council Qualified Security Assessor English, Spanish, French (native proficiency) Alain acts as the national lead for GDPR consulting services for RSM s US member firm. He brings 30 years of international experience in Information Technology, Information Security, and Data Privacy to bear to the new challenges posed by the GDPR, assisting our US clients with compliance with the much stricter regulatory regime it represents for US companies. Alain leads engagements including data audit, privacy governance review, GDPR compliance roadmap development, technical safeguard assessments, and other advisory services. Based in Boston, Alain s experience includes industry and consulting roles in the United States, South America, and Europe. This international experience helps provide US clients with valuable insights in understanding and meeting the GDPR s intent and requirements. Alain.Marcuse@rsmus.com
STEVEN SNAITH London, UK Partner. Head of Technology Risk Assurance. BSc, CiPFA, CISA, CISM, PRINCE2, CEH English Steve s expertise includes cyber security, project assurance, data governance, interrogation and mining, IT risk assurance, data analytics, systems resilience, third party assurance and application security and ERP audits. Steven has worked in the specialism of data security and compliance for over 10 years and currently has extensive experience in assisting organisations in developing their GDPR control frameworks. Linked to data governance, Steve also developed RSMUK s cyber security team, providing a range of services from penetration testing to project board security initiatives assurance. He also often comments on the latest data and IT Security developments in the national press and this year has contributed towards articles for both Sky News and the Times. Steven.Snaith@rsmuk.com
TOMAS SYKORA Pardubice, Czech Republic Sales director cloud solutions and services Senior consultant IT services Czech, English 10 years IT experience Tomas.Sykora@rsm.cz