Andres Saravia

Andres Saravia

Privacy & AI Compliance

Fort Lauderdale, United States

#OpenToWork

About

Highly accomplished Privacy Manager with a Ph.D. in Data Protection and Certified as Information Privacy Professional (CIPP/US), dual IAPP certifications (CIPP/US, CIPM). Over 22 years of expertise in global privacy regulations (GDPR, CCPA, LGPD, US State Regulations) and emerging AI compliance. Proven track record of driving measurable compliance improvements and minimizing risks across Fortune 500 organizations.

What I'm looking for

A Privacy Manager or Privacy Analyst role

Experience

Infosys Ltd

Data Privacy Manager

Infosys Ltd

Mar 2025 – Present

Executing a global privacy program for a banking client, ensuring compliance with US Federal/State regulations, LGPD, and GDPR. Increasing compliance for CCPA, GLBA, SOX, LGPD, and GDPR through the PbD framework. Managing data processing lifecycles using OneTrust and client-developed privacy tools. Managing Cookies and Legitimate Interest on PII processing through OneTrust Cookie Banner module.

GDPRCCPAOneTrust
Ultimate Kronos Group

Compliance Research Advisor

Ultimate Kronos Group

May 2023 – Jul 2024

Provided compliance guidance to internal teams and 50+ clients, ensuring 100% adherence to GDPR, PIPEDA, and U.S. privacy regulations. Increased compliance effectiveness by 70% through leading AI and privacy law training programs (EU AI Act, GDPR, CCPA, LGPD, PIPL). Improved privacy management efficiency by 85% by resolving complex Data Subject Access Requests (DSARs). Achieved 89% program coverage in GDPR-compliant Records of Processing Activities (RoPA).

GDPRPIPEDAAI Compliance
Nasdaq

Data Privacy Consultant

Nasdaq

Oct 2022 – Apr 2023

Negotiated and executed 850 complex Data Processing Addendums (DPA) to ensure 100% compliance with Standard Contractual Clauses (SCC). Conducted Transfer Impact Assessments (TIA) to align international data transfers with Schrems II requirements. Optimized SCC vendor questionnaires within the OneTrust platform.

SCCTIAOneTrust
Arcova

Senior Consultant, Strategy and Risk

Arcova

Sep 2021 – Sep 2022

Reduced potential regulatory fines by 80% for Fortune 500 clients by implementing GDPR and CCPA frameworks. Mitigated risks for finance and healthcare clients through comprehensive PIAs, DPIAs, and TIAs. Conducted comprehensive PIAs, DPIAs, and TIAs for clients in finance and healthcare, effectively mitigating privacy risks. Improved operational efficiency by 20% by developing Privacy SOPs using Archer Crowe tools.

GDPRCCPA
Meridian PDP

Data Protection & Privacy Consultant

Meridian PDP

Aug 2018 – Sep 2021

Reduced regulatory non-compliance incidents by 40% by guiding organizations in implementing GDPR, HIPAA, and GLBA. Enhanced privacy awareness and preparedness across 1,000+ schools, parents, and industry groups through specialized training, increasing stakeholder readiness by 25%. Delivered technical reports and compliance plans that streamlined regulatory adherence processes, saving clients 15% in compliance-related costs.

GDPRHIPAA

Education

University of Zaragoza

University of Zaragoza

Ph.D. · Philosophy of Law - Data Protection

2007 – 2013

University of La Republica

J.D. · Juris Doctor

1993 – 2002

Certifications

Securiti Certified AI Security and Governance

Securiti

GDPR DPO 180 Certified

GDPR DPO

OneTrust Certified Privacy Professional

OneTrust

CIPP/US

Certified Information Privacy Professional

CIPM

Certified Information Privacy Manager

Skills

Team LeadershipPrivacy MetricsExcelMicrosoft Office SuiteBigIDOneTrustColorado AI ActEU AI ActData Privacy FrameworkTIASCCSchrems IIHIPAALGPDCCPAPIPEDAGDPR

Languages

English (Full professional proficiency)Portuguese (Full professional proficiency)Spanish (Native or bilingual proficiency)