By Sam Pfeifle
Last week marked Zoe Strickland’s, CIPP/US, CIPP/G, CIPP/IT, first as managing director, SVP and CPO at JP Morgan Chase, as she has left her post at VP and CPO at UnitedHealth Group to take on the new role in the financial services industry. Housed in the legal department, Strickland is responsible for global privacy compliance and will be tackling the kinds of things most CPOs handle in global firms: governance, vendor oversight, privacy notices, risk assessments, incident management, online concerns—all the normal topics.
“There’s a lot of similarity,” she said, talking on the phone from her new Midtown NYC offices.
Which is maybe counterintuitive. Not only is she moving her husband and son across the country—and close to extended family—but Strickland is also jumping verticals, moving from healthcare into financial services. Shouldn’t there be a wave of new and different issues?
Sure, she allowed, “that whole issue of the U.S. and the EU perspectives becomes more of a challenge in this sector—for instance around anti-money laundering. How do you satisfy both? I do think the whole global compliance issue is a really important piece for financial services.”
“But I think the foundation of privacy remains the same,” she said. “Just look at mobile. How you do mobile correctly cuts across sectors. There are lots of issues that really aren’t that separate anymore. Like data flows and uses, and accountability. There might be different flavors of it, but there’s a lot of commonality there, too … You grow so much by seeing the different issues faced by different sectors. We’re all challenged by the fundamentals of privacy. What does notice look like? What do you collect? What do you do with it, and what do you share?”
Luckily, Strickland said JP Morgan is committed to privacy and provides appropriate resources.
“It’s going to be more around cohesion and governance and keeping up with privacy, which is always evolving,” she said of the new job. “It’s not that you don’t have to shore up compliance; processes can always be improved. But you have to keep track of where privacy is going next too.”
Like many privacy pros, Strickland will be keeping a close eye on the many regulatory environments in which JP Morgan operates, both globally and at the state level here in the U.S.
“You need to be up-to-speed on where the environment is heading,” she said. “And a lot of that is how do you feel about the basic compliance models you have in place? How aware are you of what’s coming down the pike? Then, how do you advocate for privacy within the organization and create reports and metrics that tell your story?”
Further, Strickland feels she can be an asset to the firm outside the company walls.
“I’ve always felt like privacy pros can be the true experts,” she said, “and help clients understand it. That adds a lot of value … How can we be strategic in serving them and do that in timely fashion so they’re not waiting around?”
But, hey, “it’s the third day in,” she laughed.
Read More By Sam Pfeifle:
Senate Bill Ending Shutdown Funds PCLOB
Brill To Headline “Reclaim Your Name” Event at NYU
W3C Do Not Track in Limbo
Amidst U.S. Gov’t Shutdown, State AGs Chuckle at Idea of Federal Breach Law