For close to 10 years, Shea Leitch has served as a trusted advisor to multinational companies who rely on her to provide timely and practical advice as they build and adapt their global privacy and security programs. A Certified Information Privacy Professional (CIPP/US, E), Shea’s in-depth knowledge of privacy and data security issues makes her a sought-after counselor to companies in various sectors, including the social media, advertising, retail and automotive sectors.

In her practice, Shea has assisted various clients with the development of international, enterprise-wide data protection programs. In light of the constantly evolving nature of data protection law, she routinely advises clients regarding the adaptation of existing privacy programs to satisfy new legislation. Shea also provides targeted guidance on privacy compliance for clients using cutting-edge technologies, such as biometrics, artificial intelligence and advertising technology. As a strategic advisor, Shea helps clients bring products to market, by identifying practical solutions that facilitate business growth and innovation, while mitigating legal and regulatory risk.

Proactively, Shea assists her clients to assess and develop their cybersecurity capabilities to meet evolving legal and regulatory requirements and respond to increasingly advanced threats. In addition to her cybersecurity counseling practice, she brings deep experience regarding the detection, containment, investigation, notification and regulatory follow-up arising from security incidents.

Award Mouse thought multimedia interface book medal screen monitor
  • Advise major international adtech company regarding implementation of new EU Standard Contractual Clauses for international data transfers.
  • Conduct transfer impact analyses to advise global service provider on applicability of US national security law.
  • Advise international social media company on biometric technologies and compliance with privacy law.
  • Provide guidance regarding anticipated EU artificial intelligence (AI) regulation and potential impact to enterprise use of augmented reality and virtual reality.
  • Spearhead development of EU Standard Contractual Clause contract tool.
  • Partner with security consultant to conduct NIST 800-171 assessment for defense contractor.
  • Advise global retailers on adaptation of global privacy programs for CCPA compliance.
  • Develop CCPA program for national real estate technology company.
  • Partner with privacy consultants to develop required policies, procedures and documentation for CCPA and GDPR compliance for companies in the real estate, transportation, telecommunications, retail and sports franchise sectors.
  • Develop data protection addenda to ensure compliance with relevant privacy law and appropriate security requirements.
  • Audit and evaluate tracking technologies and disclosures regarding same to ensure compliance with CCPA and GDPR for retail, real estate, telecommunications and transportation sector companies.
  • Develop incident response plans for companies in various sectors, including beverage, hospitality and manufacturing.


  • The Ohio State University Moritz College of Law, J.D., 2013
  • The Ohio State University, B.A., cum laude, 2009


  • Washington, 2020
  • District of Columbia, 2016
  • Ohio, 2013

Memberships & Affiliations

  • Certified Information Privacy Professional, EU, US (CIPP/US, CIPP/E)

{{}} {{insights.type}} {{insights.contentTypeTag}}
{{blog.title}} {{blog.source}}

  • Panelist, “A “Reasonable” Approach to Data Security,” Privacy + Security Forum, November 3, 2022.
  • Panelist, “Ensuring Your Organization is Prepared to Meet the Current Cybersecurity Regulatory Environment,” Privacy + Security Forum, November 4, 2022.

Award Mouse thought multimedia interface book medal screen monitor