Karen Brio focuses her practice on privacy and data protection counseling of clients in both established and emerging businesses. In this capacity, she helps them survey their technology, personnel, operations, vendors, partners, and risks and develop privacy policies, negotiate contracts, and construct and implement data governance programs to meet their business needs. Karen works with clients on managing a range of privacy laws and frameworks, including CCPA, GDPR, HIPAA, GLBA, and COPPA, as well as privacy requirements set by federal contract laws, state breach laws, and various international regulations, and best practices. Finally, Karen works with clients to develop incident response plans, oversee investigations, and breach response.
Karen previously served as an Assistant District Attorney in San Mateo County, California and as a litigator in several civil litigation firms. After law school, Karen clerked in the Circuit Court of Baltimore City in Maryland.
Karen is based in California’s Silicon Valley, the center of global emerging technology, and is particularly interested in understanding the intricacies of technology and its business impacts to organizations in every industry and all over the world. Karen is a Certified Information Privacy Professional (CIPP/US) by the International Association of Privacy Professionals and a member of Women in Security and Privacy.