Mirian Rodrigo

完整简历

Mirian Rodrigo is a lawyer specialising in data protection, privacy, cybersecurity, and digital law. She advises national and international clients across sectors such as technology, energy, insurance, and media on compliance with the GDPR, the Spanish LOPDGDD, and related EU digital regulations including the AI Act, NIS 2, DORA and the Data Act.

Her practice focuses on complex privacy and cybersecurity matters, including data-breach response, international data transfers, data-processing agreements, and implementation of governance frameworks. She regularly assists clients in managing relationships with processors, assessing legitimate interest, conducting DPIAs, and updating Records of Processing Activities.

Mirian also provides strategic advice on technology and IP-related issues, supporting businesses in the development of digital products, marketing activities, and AI-driven solutions. She has experience working with cross-border teams and coordinating with regulators, insurers, and forensic vendors during incident response.

Committed to promoting awareness of privacy and cybersecurity, Mirian contributes to internal and external training sessions and has prepared various client alerts and legal notes on GDPR compliance, AI governance, and international data transfers.

相关经验

• Advising multinational clients on GDPR and Spanish data protection compliance, including drafting Records of Processing Activities (RoPAs), DPIAs and legitimate interest assessments.
• Supporting companies in managing data breaches, coordinating with forensic vendors, insurers and supervisory authorities such as the AEPD.
• Preparing and negotiating Data Processing Agreements (DPAs) and international data transfer mechanisms, including SCCs and Transfer Impact Assessments.
• Designing and implementing global data privacy governance models for organisations with multi-jurisdictional operations.
• Advising on the use of cookies, digital marketing practices, and consent collection mechanisms under GDPR and ePrivacy rules.
• Supporting clients in the energy, insurance, technology and media sectors on cybersecurity, digital transformation and AI governance.
• Drafting internal procedures and policies on information security, data retention and incident response.
• Advising on IP and IT contractual matters, including licensing, SaaS agreements and technology procurement.
• Providing legal guidance on new EU digital regulations, including the AI Act, NIS 2, DORA and the Data Act.
• Preparing client alerts, training materials and external publications on data protection, cybersecurity and AI compliance.