Dafina Buçaj

Data Privacy and Cybersecurity Attorney | CIPP/US, CIPM

Las Vegas, NV, United States

Details

Education: Master of Laws - LLM

University of Cambridge

2011 : 2012

Doctor of Juridical Sciences (JSD/PHD) (All But Dissertation)

Cyber law

Loyola Law School, Los Angeles

2018 : 2021

Bachelors of Law (LLB)

University of Prishtina

2007 : 2011

Bachelor's degree

Journalism

University of Prishtina

2008 : 2011

Experience: - Help clients implement enterprise-wide data security and privacy programs following federal, state, and global privacy regulations.

- Assists global organizations in developing data security and privacy programs to ensure adherence to global regulations, such as the General Data Protection Regulation (GDPR), Personal Information Protection and Electronic Documents Act (PIPEDA), and China Personal Information Protection Law (PIPL), as well as U.S. state laws, such as the California Consumer Privacy Act (CCPA) and the Virginia Consumer Data Protection Act (VCDPA).

Works with clients to mitigate legal risk by identifying vulnerabilities and implementing procedures and controls using practical solutions.

2023 : Present

Constangy

Data Privacy and Cybersecurity Attorney

Researching on Topics : cybersecurity policies, prevention of cyber harm, policies and regulations enacted by states governing the internet use, global and national regulatory regimes and strategies, the legal status of cyber active defense measures, protection and safety measures applied by private companies.

2018 :

Loyola Law School, Los Angeles

Doctoral Candidate in Cyber Law and Policy

Co-teaching in topics of International law, Cybersecurity and Cyberwarfare

2020 : 2021

Loyola Law School, Los Angeles

Adjunct Instructor

• Counsels and advises clients on the development and implementation of enterprise-wide data security and privacy programs and regulatory compliance under federal, state, and international privacy regulations

• Assists global organizations in the creation of right-sized data security and privacy programs addressing compliance with numerous global regulations, including the GDPR, PIPIEDA, CASL, POPIA, LGDP, PIPL and other emerging privacy and security laws.

• Reviews existing data security and privacy protocols to work with clients to mitigate legal risk by identifying vulnerabilities and implementing procedures and controls using practical, cost-effective solutions.

• Helps clients with their data privacy and security regulatory assessments, information privacy and security protocols and policies, external policies, data collection, vendor risk assessments, contract development and review, and threat mitigation plan development.

2022 : 2023

Octillo

Data Privacy Attorney

- Advising on global privacy laws and ensuring compliance with GDPR, CCPA, POPIA, CASL

- Designing and implementing the privacy program, including drafting privacy policies and procedures

- Reviewing, drafting and negotiating contracts and advising on data privacy matters related to vendors.

- Conducting privacy impact assessments and vendor risk assessments

- Compliance with security standards, NIST, ISO, PCI

- Advising on all matter’s privacy

2021 : 2022

Association for Talent Development (ATD)

Data Privacy & Security Manager

Company: Constangy

Years of Experience: 12

Spoken Language: Albanian, English, French, Spanish

Skills

Analytical Skills, Complex Problem Solving, Compliance, Consulting, Cyber & International Law, Cyber Law, Cyber policy, Cybersecurity, Data Privacy, Data Protection/Management, European Law, General Data Protection Regulation (GDPR), Government, Governmental Affairs, Government Relations Strategy, Human Rights, International Law, International Relations, Law on Cyberspace, Leadership, Legal Advice, Legal Compliance, Legal Opinions, Legal Research, Legal Writing, Management, Microsoft Office, Microsoft Word, Nonprofit Organizations, Policy, Policy Analysis, Policy Improvement, Policy Research, Politics, Privacy Compliance, Privacy Law, Privacy Regulations, Project Management, Public Affairs, Public Policy, Public Relations, Public Speaking, Relationship Maintenance, Research, Strategic Planning, Strategy, Teaching, Teamwork, Training, Writing

About

Experienced Attorney with a broad background in law, data privacy, cybersecurity and public policy. Skilled in stimulating change and adept at communicating those changes to an audience. Actively participated in significant privacy program development and delivering sound feedback and opinions on policy modifications and changes. Current experience resides in data privacy, cybersecurity, public policy and academia. Diligently pursuing a research doctorate degree in cyber law.