Amber Welch

Amber Welch is a Privacy Technical Lead for Schellman & Company, LLC. With more than 6 years of experience as a technical writer and privacy and security governance consultant, she is dedicated to GDPR and other privacy-focused engagements. Amber has served as a panelist during Black Hat and published several articles on recent privacy developments. She holds a master’s degree from the University of Nebraska, as well as the CIPP/E and CCSK designations from the International Association of Privacy Professionals and the Cloud Security Alliance.

  • Schellman’s Response to the EDPB Comments

    Schellman’s Response to the EDPB Comments

    Comments by Schellman & Company, LLC on the European Data Protection Board’s Annex 1 of the “Guidelines 4/2018 on the accreditation of certification bodies under Article 43 of the...

    Read Article
  • Microsoft Supplier Security and Privacy Assurance (SSPA) Program Attestation

    Microsoft Supplier Security and Privacy Assurance (SSPA) Program Attestation

    If your organization is a current or aspiring Microsoft vendor, you’re probably familiar with the Microsoft Supplier Security and Privacy Assurance Program (SSPA) program (previously...

    Read Article
  • Free Privacy Tools for Individuals and Organizations

    Free Privacy Tools for Individuals and Organizations

    Happy Data Privacy Day! Every January 28th, the United States joins Canada, India, and 47 European countries in raising awareness for data protection and the privacy of individuals’...

    Read Article
  • Australia’s Anti-Encryption Collision with GDPR Sub-Processing

    Australia’s Anti-Encryption Collision with GDPR Sub-Processing

    On December 6th, Australia passed a surprising law with a global impact on privacy. The new law requires any Australian company to build backdoors to encrypted data and communications...

    Read Article
  • Phishing the GDPR Data Subject Rights

    Phishing the GDPR Data Subject Rights

    Companies across the globe are now working toward compliance with the EU GDPR, while phishers may be preparing to exploit their new compliance processes. Airbnb first fell prey to a...

    Read Article
  • Security in a Post-GDPR World

    Security in a Post-GDPR World

    With so much focus on organizational compliance and privacy adoption, it’s easy to overlook the important role that individuals can play as their own privacy and security advocates....

    Read Article
  • loading
    Loading More...