Lauren Kitces is a member of our Data Privacy & Cybersecurity Practice, where she provides business-oriented privacy and cybersecurity advice to a wide range of clients, leveraging her in-house experience to provide mindful guidance. She has strong international experience, which she uses to help translate pre-existing international efforts into US regulatory compliance. Lauren enjoys the nuance and complexities that come with being in a field that is still evolving and forming both nationally and internationally.

    Lauren utilizes her analytical thought-process and over 10 years of legal and industry experience to provide clients with sound analysis of multifaceted privacy matters. She has an ability to efficiently address and manage substantive and procedural issues. She has skillful knowledge of subject matter in several areas of privacy, including the California Consumer Privacy Act (CCPA,) General Data Protection Regulation (GDPR) and cross-border data transfers.

    Lauren has advised on and facilitated CCPA compliance programs and all facets of CCPA remediation across a range of industries, including for ad-tech, financial services, technology, automotive and retail. She regularly drafts and advises on privacy materials, such as externally and internally-facing privacy notices, corporate policies and training materials.

    Lauren also addresses complex matters related to Privacy Shield applications and compliance, leveraging her cross-border knowledge and experience to provide clients with a holistic and informed perspective.

    Prior to joining the firm, Lauren worked in-house advising a global risk management, insurance brokerage, advisory and benefits administration company on both US and international data privacy. She was a key figure in implementing corporate compliance with the GDPR, and assessing and managing compliance with myriad other data privacy laws, including the CCPA, Chinese Cybersecurity Law and Brazilian General Data Protection Law.

    While her day-to-day work may focus on the current legal requirements, Lauren also stays well-informed of proposed, upcoming and evolving state, national and international privacy laws and requirements.

    A passionate contributor to the privacy community, Lauren is regularly sought out for her perspective and is an active public speaker. Lauren is a Certified Information Privacy Professional (CIPP/US). She served as a Chair of the DC IAPP Chapter from 2018-2019 and remains an active participant in the IAPP through her local DC Chapter and the Women Leading Privacy section. She enjoys the opportunity to connect with and learn from others in the privacy industry, and to help those developing in the industry to grow and advance.

    Award Mouse thought multimedia interface book medal screen monitor

    Education

    • University of Richmond, J.D., 2009
    • Miami University, B.A., 2006

    Admissions

    • Virginia
    • Not admitted in the District of Columbia; practice supervised by licensed members of the District of Columbia Bar

    {{insights.date}} {{insights.source}} {{insights.type}}
    {{blog.displayDate}}
    {{blog.title}} {{blog.source}}

    • Co-author, “Compliance with the California Consumer Privacy Act in the Workplace: What Employers Need to Know,” 29 COMPETITION 96, 96-115 (2019), Volume 2, 2019.
    • Speaker, “GDPR Extraterritoriality—Industry Perspectives and Best Practices for Operationalizing Global Compliance,” Privacy+Security Forum, Washington DC, October 14-16, 2019.
    • Speaker, “Privacy & Data Security: Shifting Frameworks,” Bloomberg Law Leadership Forum, Washington DC, September 18, 2019.
    • Speaker, “Overview of the Evolving Privacy Landscape,” Northern Virginia and Metropolitan Maryland ARMA Seminar, Washington DC, April 10, 2019.
    • Speaker, “Mastering the Cyber Insurance Application Process,” IAPP Privacy, Security, Risk 2018, Austin, TX, October 18-19, 2018.
    • Speaker, “Cracking the Toughest Nut in a DPIA: Identifying Specific Harms,” IAPP Privacy, Security, Risk 2018, Austin, TX, October 18-19, 2018.
    • Speaker, “Sophistication of the Small-Cap Board Related to Data and Information Governance,” National Association of Corporate Directors Annual Summit, Washington DC, September 29, 2018.
    • Author, “State Secrets in China: What You Need to Know,” Driven Inc. Blog, May 2014.

    Award Mouse thought multimedia interface book medal screen monitor