David Manek

Dave is leading Ankura’s solution to assist organizations demonstrate compliance with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA) and other emerging privacy regulations. He is currently serving as a Data Protection Officer for his clients. Dave holds many professional certifications, including the CIPP/E and CIPM issued by the International Association of Certified Privacy Professionals. He is also a Certified Public Accountant.

Dave’s professional experience includes:

• Implementing over 150 GDPR and CCPA readiness programs;
• Serving as a Data Protection Officer for organizations in the following industries: biopharmaceutics, technology communications and peer-to-peer review;
• Executing assessments and developing compliance roadmaps using the NIST Privacy Framework and other privacy law specific control frameworks;
• Advising Counsel in complex biometric data litigation proceedings;
• Assisting organizations through California AG CCPA investigations;
• Building large-scale data inventories and maps;
• Developing consumer response processes and drafting standard operating procedures;
• Creating Transfer Impact Assessments for EU to U.S. data transfers;
• Implementing target operating models to support third party vendor risk management programs
• Developing data strategy and defensible deletion programs
• Implementing Privacy by Design processes and Data Protection Impact Assessments
• GDPR readiness project for San Francisco-based social media company. This company’s processing operations require regular and systematic monitoring of data subjects on a large scale and, as a result, it was determined that they would need to assign a data protection officer (DPO) under the GDPR. The client made the decision to assign Dave to act as an interim data protection officer (DPO) under the GDPR;
• GDPR readiness project for $12 billion distributor of healthcare products and services. He was engaged by a medical and healthcare products distributor and supplier to assess and implement their privacy program driven by the requirements of the European Union’s General Data Protection Regulation (GDPR) and the German Bavarian Data Protection Authority (DPA);
• Information governance project centered around the legal hold process for a large natural gas utility;
• GDPR readiness program for large transportation company;
• Privacy Shield and GDPR program for biotech company;
• Data mapping project for a global technology solutions provider in the food processing and air transportation industries;
• GDPR readiness assessment for satellite communications organization;
• GDPR readiness program for private medical device manufacturer;
• GDPR Data Protection Officer and readiness program for organization focused on product reviews of enterprise software products;
• GDPR readiness project for travel technology company;
• GDPR readiness assessment for large multinational automobile part manufacturer;
• GDPR Data Protection Officer for biopharmaceutical company beginning stage two trials in the EU;
• Global data privacy compliance program for a maker of smart garage doors;
• Global data privacy compliance program for a technology-oriented education organization;
• CCPA readiness program for manufacture of ATVs, Jet Ski personal watercrafts and motorcycles;
• CCPA readiness program for top five retail shoe manufacturer and sports equipment;
• CCPA and GDPR readiness program for telehealth organization;
• CCPA and GDPR readiness program for largest privately held manufacturer and distributor of medical supplies providing products, education and clinical programs;
• CCPA and GDPR readiness program for one of the largest plastics, chemicals and refining companies in the world;
• CCPA and GDPR readiness program of international distributor of promotional products and recognition products.