Jordan Fischer leads Octillo’s Compliance and Advisory Team, representing clients in cross-border data management and information governance, creating cost-effective and business-oriented strategies for information security, data privacy, and technology compliance.
Jordan practices in multiple jurisdictions throughout the United States in both state and federal courts, as well as internationally in Europe, Asia, and South America. She has been recognized in 2019, 2020, 2021, and 2022 as a Super Lawyers Rising Star – Technology Law and was named to the American Bar Association’s On The Rise – Top 40 Young Lawyers list in 2022.
Jordan counsels clients on a wide variety of regulatory requirements, including the General Data Protection Regulation (GDPR) and implementing member state law, the California Consumer Privacy Act (CCPA)/California Privacy Rights Act (CPRA), the Fair Credit Reporting Act (FCRA), the Driver’s Privacy Protection Act (DPPA), biometric data laws, global data breach standards, and federal and state unfair business practices acts.
She also provides counsel on a variety of security and privacy frameworks, including the International Standards Organization (ISO) 27001 and 27701, the National Institute of Standards and Technology (NIST) cyber and privacy frameworks, and the Payment Credit Card Industry Data Security Standard (PCI DSS).
Jordan has extensive experience in the intersection of law and technology, regularly evaluating and assessing legal and business opportunities and risk to provide public and private sector clients with critical data privacy and cybersecurity assessments and strategy. With a global perspective, Jordan represents clients regarding contractual negotiations related to technology, data management, security, and privacy and helps to build out compliance programs to address a multitude of regulatory requirements and best practices.
She also provides insight into third-party management, working with clients to build solutions to ensure security and privacy are accounted for in its supply chain. Jordan has represented clients in a variety of sectors, including emerging technologies (blockchain, Internet of Things (IoT), and Artificial Intelligence (AI)), pharmaceutical, healthcare, agriculture, adtech, and manufacturing. Jordan works with clients to develop business solutions that incorporate privacy-by-design and security-by-design concepts, merging regulatory requirements with real-world practical solutions.
In addition to her private practice, Jordan is a Lecturer in Cybersecurity at the University of California, Berkeley and a Professor of Law at the Thomas R. Kline School of Law. She is also the Director of the Kline School of Law’s Center for Law and Transformational Technology. In her academic work, Jordan brings an interdisciplinary approach to her research, exploring the convergence of the law and technology, as well as the practical implications of regional data protection regulations within a backdrop of the global economy.
Jordan is a globally recognized speaker on a variety of technology law topics. Additionally, she is the host of the American Bar Association’s ‘Cybersecurity and Data Privacy: The New Frontier’ podcast, which focuses on data security, privacy, and related legal topics. On the podcast, Jordan discusses key considerations across industries related to the intersection of law and technology.
Jordan is a Certified Information Privacy Professional for Europe (CIPP/E) and a Certified Information Privacy Professional for the United States (CIPP/US), as well as a Certified Information Privacy Manager (CIPM), as certified by the International Association of Privacy Professionals. Jordan is a certified trainer for the International Association of Privacy Professionals. Jordan is fluent in English and French.
Before joining Octillo in 2020, Jordan clerked for Koen Lenaerts, the President Judge of the Court of Justice of the European Union, and was a founding member of a women-owned law firm.
- Develop and collaborate with clients to manage global privacy and security compliance programs to meet a variety of legal requirements, including the General Data Protection Regulation and the California Consumer Privacy Act.
- Conduct tabletop exercises and training related to a variety of global privacy and security scenarios.
- Represent clients in global security and breach responses, including responses under the General Data Protection Regulation.
- Advise on data subject/consumer data requests, helping to build customized solutions to address data rights within a client’s infrastructure.
- Counsel executive leadership to address strategic business risks within cyber, privacy, and technology infrastructure.
- Negotiate complex technology-related contractual relationships across a wide variety of industries, including banking, healthcare, manufacturing, artificial intelligence, SaaS platforms, and gaming.