Your shopping cart is currently empty.
We are market leaders in terms of depth and breadth of experience. Our DPOs (data protection officers), lawyers and cyber security experts have decades of experience between them. When you sign up with us, you get access to the whole team and our collective experience. Details of our senior management team and our consultants are set out below.
Christina has overall responsibility for the running of GRCI Law. She oversees commercial strategy, client relationship management, product development and new business. She has a track record of driving growth through evidence-based strategy and providing excellent client service. She is a non-practising solicitor with a background in business development, marketing, communications and broadcast media. Before joining GRCI Law, Christina worked for a number of top 50 law firms across domestic and international markets, including Gowling WLG, TLT and Browne Jacobson.
Loredana oversees operations, service delivery, and management and development of the consultant team. She has more than 15 years’ experience in the fields of privacy rights, data protection and cyber security in both the private and public sectors. She is a specialist in international and European law, and a qualified attorney at law in France and Italy. Based in Brussels, Loredana advises GRCI Law clients on a wide range of data privacy issues. She is a certified GDPR consultant, data protection officer and trainer, and has worked at the European Court of Human Rights, at the Directorate General of Human Rights and Legal Affairs of the Council of Europe, and for international law firms in the EU. Her previous experience includes advising on landmark cases brought before the European Court of Human Rights, including cases on data protection and privacy rights. She has also contributed to European capacity-building projects aimed at strengthening awareness of European legal standards, including data protection. Loredana’s PhD thesis was on the protection of personal data processed within the framework of judicial proceedings. She has helped design and implement elearning courses and training materials on data protection and privacy, and has worked as an associate lecturer at the universities of Manchester, Salford and Strasbourg. She has contributed articles to a range of publications.
Natalie is a member of our senior management team and is an expert in business risk management. She is a practical, solution-orientated qualified commercial, contracts and data protection lawyer with more than 25 years of international experience. At GRCI Law she advises clients on a wide range of data privacy issues, including multi-jurisdictional issues, due diligence for acquisitions, and legal compliance issues relating to marketing, CRM systems, HR, supplier agreements, cross-border data transfers and standard contract clauses. Her previous experience includes advising on commercial contracts and policies, risk, data protection, competition law and intellectual property. Natalie has advised UK councils, UK government departments and several multinational organisations as well as clients including General Motors, Vodafone, BT Global Operations, NATS (formerly National Air Traffic Services), Bombardier, Network Rail, Oil Spill Response and Cemex. She has also advised the UK Department for Transport on regulatory and risk issues and on the potential effect of Brexit on government projects. She has negotiated, drafted and implemented multimillion-pound international contracts, including with the South African, Namibian, Mozambican, Botswanan and Singaporean governments.
Cliff leads the Cyber Incident Response Service within GRCI Law. He began his career teaching computer systems and network technologies in further and higher education. He moved into the defence industry, where his main areas of expertise were risk management and accreditation, incident management and response, and secure systems architecture and configuration. Cliff has experience in both IT and OT environments. He understands the complexity of cyber security incidents and their potential impact on the organisation, its users and its customers.
Clare is a lawyer and compliance professional with extensive experience in providing legal and regulatory advice across various disciplines (particularly data protection/privacy and marketing law) and covering a wide number of jurisdictions globally. She has more than 20 years’ experience working in both in-house and consultancy roles, including serving as lead legal adviser and subject-matter expert on data privacy compliance to several major FTSE 100 companies. Her strengths lie in analysing complex legislation and delivering clear, commercial and practical guidance on operational compliance to business stakeholders at all levels.
Judith is a certified privacy practitioner with a Juris Doctorate degree in law. She has been instrumental in developing policies and procedures in line with international, EU and UK requirements. She also leads the implementation of governance frameworks for client organisations in information security and risk management to achieve regulatory assurance. Judith focuses on comprehensive and actionable strategies so that privacy issues can be addressed within all areas of an organisation and ensures subsequent monitoring and communication with relevant stakeholders at the highest levels of an organisation.
Ola is a certified privacy professional experienced in working alongside various stakeholders to promote best practice in personal data management. She has worked as a data privacy and compliance liaison across a range of sectors r organisations. Her experience includes leading the data privacy compliance function of a leading US law firm and being the DPO for one of the UK’s largest events, advertising, marketing and brand experience agencies. Ola has also worked for a leading healthcare provider that delivers clinical, health and well-being services She provides tailored advice and guidance across all business areas on data privacy compliance requirements, including policies and procedures, DPIAs (data protection impact assessments), data sharing, international data transfers and data subject rights. She is passionate about helping organisations find the right solutions to meet their data privacy obligations.
Ada is a skilled strategist and policy, communications and project management professional. Her experience includes working as an in-house legal adviser specialising in data protection issues for a financial services regulator. She advised on a wide variety of such issues and represented the organisation in dealings with the ICO (Information Commissioner’s Office). Ada was also an in-house legal adviser for a media and telecommunications regulator, for the European Commission, and has been a guest lecturer at the London School of Economics on the techno–legal aspects of information systems.
Anisha holds a bachelor’s degree in law and a master’s degree in legal practice. She is able to break down complex legislative requirements into easily presentable and digestible material. Anisha is responsible for providing gap analyses for clients and advising them on areas where they can improve, as well as maintaining excellent client relationships and a high level of service.
Helen is a compliance professional with a wide range of experience in consumer and criminal law and dispute resolution. Her key areas of focus are incident and breach management and complex DSARs. She has advised on a range of complex DSARs for GRCI Law clients, including a leading pizza brand and a well-known gym group. Her role involves regular liaison with the ICO on behalf of clients. Helen has worked for Trading Standards and a construction trade body, where she was the in-house DPO. She is well placed to provide advice and guidance to clients on data protection compliance as well as implementing data protection policies and procedures, including delivery of staff training.
Vanessa holds a degree in computer forensics and has worked for West Midlands Police as a digital forensics officer. She has been involved in complex crime cases and was awarded a Diamond Award and an Excellence in Service Delivery Award. Vanessa also holds a number of cyber security and forensics qualifications. She is part of GRCI Law’s Cyber Incident Response team, helping clients with their cyber security requirements.
Natasha is an accomplished sales and business development professional with more than five years’ experience. She has a track record of building strong relationships and has a consultative approach to sales. She focuses on identifying the right solutions for clients to meet their specific needs. Natasha is responsible for new business growth and client relationship management at GRCI Law.