Impact Privacy is focussed on solving your privacy and AI problems, not just identifying them. As trusted providers of privacy, data protection, and AI services to the healthcare industry, we take a flexible, client-focussed, and personal approach to the work we do. Impact Privacy is on your team.
Impact Privacy integrates its services and team into your business. Likewise, we use our extensive expertise, experience, resources, and systems to proactively and seamlessly manage your privacy risks.
Additionally, we employ a risk-based approach, supporting complex global privacy and data protection needs for a worldwide client portfolio. At Impact Privacy, we have experience in the following industries:
The healthcare industry has unique responsibilities in its use and protection of personal information. So, Impact Privacy’s unique solutions empower healthcare businesses. For small and mid-sized enterprises (SMEs) and start-ups, our services help you navigate the complexities of these responsibilities. And, when your privacy risks are covered, you can better focus on sustainable growth and development.
From their years of working in the industry, Impact Privacy co-founders, Cindy and Léon, understand that the biggest privacy challenge for any healthcare business is translating complex requirements into positive actions and sustainable compliance. Balancing business needs, available resources, and risk appetites is vital to a business success.
Large healthcare enterprises achieve this through large teams managed by compliance professionals. Often, they are supported by advisers and costly technological solutions. However, the costs and practicalities of this approach are burdensome, with the only other option being compromise and uncertainty.
So, Cindy and Léon launched Impact Privacy to provide an alternative for clients. Our services combines enterprise-level capability with flexibility, understanding, and practicality.
Impact Privacy is built on the commitment and passion of our highly capable team.
Léon was an executive-level, in-house attorney for more than 15 years. He has delivered legal, privacy, risk, and compliance programmes in several sectors. In addition, he has led the legal and compliance functions of a listed major European healthcare outsourcing business.
Léon leads Impact Privacy’s European business. He builds deep and personal relationships with clients by delivering privacy solutions that leverage his deep understanding of European data protection principles, and his legal, risk, and compliance insights
With years of experience in senior operational and privacy officer roles for diverse companies, Cindy implements real privacy solutions. She understands how to reduce risk while building customer, and patient, trust from inside a business. And, she knows how to manage privacy as an asset and a true competitive advantage.
As Impact Privacy’s North America lead, Cindy works closely with technology, design, business, executive, and sales teams. Therefore, her happy place is leading initiatives that embed privacy into processes and technology.
Soomin is a certified International Privacy (CIPP/C) and AI Governance (AIGP) Professional committed to responsible innovation. Combining her educational and professional backgrounds in computer science, law, and leadership, Soomin helps companies operationalize data privacy and AI governance. With two decades supporting healthcare technologies in North America, her career highlights include founding an AI governance office and leading external AI research collaborations.
Soomin has held non-profit leadership roles in Ask AI and Women in Machine Learning, in the heart of the academic ML research community. She remains passionate about sharing her knowledge with clients and nurturing the next generation of privacy professionals.
Dr. Bill Edwards is a digital health technology leader and CTO with a PhD in numerical modelling. He has led multidisciplinary teams delivering digital health capabilities at scale across the primary care, social care, and pharmaceutical sectors. His background combines deep technical expertise with executive board experience, ensuring advice is not just theoretically sound, but commercially and operationally viable.
Bill guides organisations in building effective, safe, and compliant AI systems. He bridges the gap between technical innovation and strategic governance, ensuring that AI features are grounded in clear intended use and supported by the robust evidence needed to satisfy clinical and operational stakeholders.
Amanda worked in the Pharmaceutical Industry for 20 years. She has a background in sales and marketing, as well as compliance, clinical research, and data protection. She has worked with many businesses on their compliance journeys, delivering training, leading audits and writing policies. And, Amanda’s experience in both marketing and compliance gives her a valuable perspective on business objectives, enabling her to undertake tasks with both insight and creativity.
Amanda has a CIPP/E, a Post Graduate Certificate in Data Protection Law and Information Governance from Northumbria University and an Internal Auditor in ISO 27001 certificate.
Rosario has spent the last ten years helping public and private organisations to understand and effectively implement data protection requirements, in particular, in the health sector. Throughout her career, she has ensured that European and American companies expanding operations within the EU effectively comply with their data protection obligations. In addition to her consulting work, she regularly provides training on data protection and privacy topics and has been guest speaker at universities throughout the world.
Rosario is a certified DPO in France (AFNOR) and a member of the European Data Protection Board “Support Pool of Experts” in the field of “Legal expertise in new technologies”.
Paul has more than 20 years of experience in the IT industry. With that, he has a proven track record of successfully delivering complex IT implementation and change programmes for large, household-name organisations. Using that experience, Paul now focusses on supporting client businesses to implement effective information security strategies, including ISO 27001, PCI enablement, information risk reduction, and information security in the context of data privacy programmes.
Mary gets things done. She has extensive experience in project management and the digital healthcare space. And, she understands the complexities and challenges, as well as the constraints, faced by companies with limited resources. Adaptable and proactive, Mary has built her career and project successes by finding effective solutions and efficiencies.
With all that, Impact Privacy’s clients value Mary’s dedication to streamlining processes and delivering results.