Laura Vivet
Senior Director

Data Privacy Professional; GDPR Compliance

Laura Vivet is a Senior Director based in London with more than 15 years of experience in the field of European and international data protection laws and has worked for the public and private sector in Europe and in the United States.

  • Experience

    Laura is a European licensed attorney with litigation experience in the field of consumers’ rights, civil and commercial law. She is certified by the International Association of Privacy Professionals (CIPP/E, CIPP/US) and is member of the Barcelona and American Bar Association.

    Laura has collaborated as a professor in different LLM programs focused on data privacy law and cybersecurity with several universities of Barcelona and has actively participated as a data privacy expert with organizations such as Dataguidance/One-Trust, the IAPP, and the Latin American Data Protection Observatory. At the IAPP, she was member of the Certification Advisory Board for Europe during the transition to the GDPR where she actively helped the organization update the EU exams.

    Laura is a subject matter expert for the Ankura’s privacy team, she has drafted policies and procedures for multinational corporations to prepare them for GDPR compliance. She regularly works with clients and project managers at Ankura designing strategies for compliance with multiple data protection laws in complex, large scale, cross border projects.

    Prior to joining Ankura, Laura collaborated with the Future of Privacy Forum (FPF) in Washington DC developing best practices and analysis on data privacy and drone technology, she also worked for the Federal Aviation Administration (FAA), serving as a privacy specialist to support the revamping of the FAA privacy program encompassing a large number of government systems.

    Laura graduated in Law from the Autonomous University of Barcelona and specialized in European and International Law from the University Grenoble Alpes, France.

    Laura’s professional experience includes:

    • Global Privacy Assessments, Programs and Implementation – Defined the scope of application of multiple privacy legislations for multinational organizations including the GDPR, ePrivacy directive, CCPA, and PIPEDA. Analyzed the intersection between privacy laws and other sector specific laws such as consumer, health, employment, aviation, and financial sector regulations. Provided customized remediation strategies for compliance. Drafted multiple privacy policies and procedures, including global marketing and social media guidelines, privacy notices, training programs, data processing agreements and vendors’ due diligence, Legitimate Interest Assessments, Data Subject Rights procedures, Data Protection Impact Assessments, Privacy by Design analysis, records retention, data flow analysis, SCCs, Privacy Shield and global data transfer strategies, data inventory, audit plans, Ad Tech and cookies analysis.
    • Research and policy development – Participated in multiple international initiatives and organizations including the Future of Privacy Forum, the Ibero-American Data Protection Observatory, the Analogies Project, and Dataguidance-OneTrust to analyse the impact of new technologies on privacy and human rights. Wrote reports and provided insight from an international perspective on different legal, privacy and technology issues including drone technology and regulations, Big Data, Cloud Computing, Privacy by Design, Ad Tech and the Right to be Forgotten. Provided analysis and benchmarked privacy and cybersecurity laws from multiple jurisdictions, including Europe, Canada, California, Mexico, Brazil, Singapore, DIFC, and Macao.
    • Public sector and aviation – Worked as a federal contractor for the US Federal Aviation Administration providing support and analysis of privacy and security risks of numerous complex systems and databases according to the DOT/FAA regulations and the US privacy regulations. Provided support to the development of the drones’ registration program.
    • Legal background – Ten years’ experience in litigation and procedural law (Criminal, Civil, Bankruptcy, and Commercial law). Provided legal advice on privacy matters including data protection compliance programs, and analysis of international data flows to companies from different business sectors including health, technology, hospitality, advertising, online platforms, sports, and legal services. Represented clients in mediations, arbitrations, court trials and appeals. Developed and implemented litigation, settlement and trial strategies. Drafted settlement letters, lawsuits, contracts, agreements and all kinds of legal instruments.

  • News & events
    • International University of Catalonia, Barcelona, collaborator professor, LLM on Cybercrime, 2017-2019.
    • Goethe Institut and Future of Privacy Forum, Washington DC, “Understanding EU Law, Institutions and Policymaking: focus on Spain, Catalonia and Basque Country”, October 27, 2016
    • World Bank Group, Washington DC, “Drones, Privacy and IoT”, June 29, 2016
    • Pompeu Fabra University, Law School, Barcelona, L.L.M. in Professional Legal Practice, “Data Protection Legislation: The Lawyer’s responsibilities”, 2013-2014.
    • Pompeu Fabra University, Computer Science Department, Barcelona, “Conflict Resolution and Negotiation in the ICT Sector”, 2009
  • Insights & innovation
    • “The princess and the right to be forgotten” (in Spanish) La Vanguardia. March 2017
    • “Drones and Privacy by design: Embedding Privacy Enhancing Technology in Unmanned Aircraft”
    • Future of Privacy Forum in conjunction with the White House’s first ever Workshop on drones and Aviation. August 2016.
    • “Privacy above all other fundamental rights? Challenges with the implementation of the right to be forgotten in Canada” (contributor), submitted to the Office of the Privacy Commissioner of Canada, April 2016
    • “San Jose Declaration, towards the implementation of a Seal on the processing of personal data in Latin America“, The Latin American Data Protection Observatory, 2015
    • “Government, Big Data and Open Data“, The Latin American Data Protection Observatory, August, 2014.
    • “Study on guarantees in data protection and Habeas Data: a vision from Latin America”, (co-author) awarded second prize by the Spanish Data Protection Authority, 2014
    • “Big Data & Privacy by Design (PbD)“The Latin American Data Protection Observatory, August 2014.
    • “Declaration of Mexico City, to the implementation of safeguards for privacy in treatment of Big Data” (in Spanish), El Derecho, Francis Lefebvre, August 2014.
    • “Privacy Policy Should Fit Like a Glove“, The Analogies Project, (English, Catalan, and Spanish) 2014
    • “EU data breach notification rule: the key elements”, The Privacy Advisor, Europe Data Protection Digest, IAPP Daily Dashboard, August 2013.