You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Lucia V.LV

Lucia V.

Data Privacy, Tech Policy & GRC Consultant

450 €/día
Madrid, ES
8-15 años

Tiempo medio de respuesta: 1h

Acerca de Lucia

I help organisations navigate EU digital regulation — turning complex compliance requirements into operational action.
My focus is GDPR, NIS2, DORA, and the EU AI Act. I work with technical teams, legal counsel, and C-level stakeholders to build governance frameworks that are functional, not just documented.
Background includes data protection and OT security at BASF, and compliance work at Santander Group across multiple jurisdictions. I hold CISM, CIPP/E, CIPM, and FIP certifications.
Available for remote advisory engagements, fractional DPO/CISO support, and regulatory monitoring retainers.
  • Español

    Bilingüe o nativo

  • Inglés

    Competencia profesional completa

  • Portugués

    Competencia profesional básica

Acepta trabajo presencial
Madrid (hasta 50 km), Barcelona (hasta 10 km), Málaga (hasta 10 km)

Experiencia

  • Freelance
    Data Privacy, Tech Policy & GRC Consultant
    enero de 2025 - Hoy (1 año y 7 meses)
    Madrid, España
    ● Cross-border privacy & compliance: DSARs, DPIAs, data mapping, GDPR/CCPA/LGPD/PIPL & regulator engagement.
    ● GRC & Cybersecurity: NIS2, DORA, ISO 27001 & COBIT; risk registers & incident-response planning.
    ● AI Ethics & Tech Policy: EU AI Act and Digital Markets Act regulatory alignment, governance impact assessments, data-access transparency analysis, and policy advisory for digital platform ecosystems.
    privacidad Ciberseguridad EU AI Act GDPR DORA
  • BASF Digital Solutions
    Cybersecurity Governance, Risk & Compliance Manager
    enero de 2024 - febrero de 2025 (1 año y 1 mes)
    Madrid, Spain
    ● Built and monitored cyber risk frameworks aligned with ISO 27001, NIST CSF, and CMMC.
    ● Defined KPIs, dashboards, and maturity models for global IT/OT systems.
    ● Led compliance audits, remediation plans, and internal control automation.
    ● Coordinated third-party risk initiatives and executive-level reporting.
    Ciberseguridad ISO 27001 Compliance
  • BASF Digital Solutions
    Global Data Privacy Specialist
    junio de 2021 - diciembre de 2023 (2 años y 6 meses)
    Madrid, Spain
    ● Managed privacy compliance in 20+ countries, including DPIAs, TIAs, and vendor assessments.
    ● Reviewed SCCs, data processing agreements, and global consent management.
    ● Delivered internal privacy training and incident response documentation.
    ● Embedded privacy-by-design with product, IT, and legal teams.
    ● Advised digital product teams on Privacy-by-Design in customer-facing platforms, supporting DPIAs and controller/processor role allocation.
    privacidad Ciberseguridad GDPR

Recomendaciones

Sé el primero en recomendar a Lucia

Ayuda a este freelance a destacar compartiendo tu experiencia.

Estos perfiles de freelance también coinciden con tus criterios

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Formación

  • Master of Public Management
    Potsdam University
    2016
    Master of Public Management
  • Master in Government & Public Administration
    Ortega y Gasset & UIMP
    2015
    Master in Government & Public Administration

Certificados

  • CISM (Certified Information Security Manager)
    ISACA
    2024
    Information Security Management ISO 27001 Cybersecurity Governance, Risk and Compliance
  • CIPM (Certified Information Privacy Manager)
    IAPP
    2022
    Data privacy Compliance Data Protection Officer Information Management GDPR Compliance

Conjunto de habilidades profesionales

Categorías