Krete Paal

Experience

• 

  Law firm Selberg and CO

  Jan 2013 - Jan 2013

  Lawyer
• 

  Tallinn Circuit court

  Jan 2014 - Jan 2015

  Legal Consultant
• 

  Law Firm LMP

  Jan 2015 - Jan 2016

  Legal Assistant
• 

  Tallinn Centre Districts Administration

  Jan 2016 - Jan 2018

  Lawyer

  City of Tallinn is Estonia's capital and the country's largest municipality with ca 1000 officials and employees. As a legal counsel in the City Center Government and as a legal counsel/DPO in a city owned foundation Tallinn Television, providing legal advice to different departments and solving legal disputes. My main responsibilities were to:- prepare and revise Tallinn City Council and City Government regulations and decisions;- advise on State Aid, data protection, public procurement, labour law, intellectual property, contract law;- advise members of the board regarding business law;- conduct privacy trainings;- solve civil disputes. Awarded as the Employee of the year in 2018. Member of the Tallinn City data protection task force in 2018-2019: Participation in the development of a plan for implementing the General Data Protection Regulation in the city of Tallinn, and aligning the administration of the Central City government with the data protection laws. Show less

• 

  Foundation Tallinn Television

  Dec 2018 - Aug 2019

  Lawyer/Data protection Officer

  The tasks related to labor law, intellectual property, contract law, and data protection. Drafting and reviewing author agreements. Advising the management on corporate law.

• 

  Estonian Police and Border Guard Board

  Aug 2019 - Jun 2020

  Data Protection Officer

  While working at the Estonian Police and Border Guard Board, Estonia's largest public sector entity, a key institution handling migration, citizenship, border controls, and police duties, I held important roles that required both sensitivity and strict confidentiality.Main Duties and Responsibilities:Led the implementation of applicable laws and rules, including the Law Enforcement Directive, General Data Protection Regulation (GDPR), and other Estonian laws in the law enforcement field.Carried out all tasks expected of a Data Protection Officer (DPO), making sure we followed GDPR, the Estonian Personal Data Protection Act, and the Public Information Act.Set up and managed a privacy program to help the organization handle private information correctly.Arranged and led training sessions on privacy to help staff understand and follow best practices.Worked with other international DPOs and groups, like Europol and Interpol, to share knowledge and best practices.Partnered with the Estonian Ministry of Interior Affairs to work together on better privacy practices. Show less

• 

  Veriff

  Jun 2020 - Aug 2023

  At Veriff, a recognized leader in AI-driven identity verification, I've been at the forefront of privacy and data protection. With a global footprint spanning from the US, Silicon Valley, LATAM to Africa and Asia, Veriff operates from hubs in Estonia, New York, London, and Barcelona.Upon joining Veriff, I shaped Veriff's European Union privacy framework, later expanding it globally to accommodate Veriff's diverse clientele. My key accomplishments include:Overseeing compliance with international data protection regulations;Streamlining processes and documentation, reinforcing Veriff's dedication to data protection.Directing the DPO Office across Veriff's global branches, encompassing:internal privacy audits;company-wide privacy education;constructed global data subject access request and Registry of Processing Activities;global data breach management;different regulatory affairs and law enforcement cooperation;collaborative engagements with regulatory authorities;client negotations, emphasizing our data protection robustness.In recognition of my efforts, I quickly advanced to lead the DPO Office. Member of the task forces who successfully attained certifications like ISO27001, 270017, 27018, and SOC2 Type 2 in Veriff.The DPO Office executes a global mandate monitoring Veriff's compliance with data protection laws and is Veriff's external single point of contact for privacy matters. Show less

  • Head of DPO Office

    Apr 2021 - Aug 2023

  • Legal Counsel / Data Protection Officer

    Jun 2020 - Apr 2021
• 

  GDPR Register

  Oct 2023 - now

  Chief Executive Officer & Chief Product Officer

  GDPR Register (www.gdprregister.eu) - Your Ultimate Ally in Privacy Management!Dive into GDPR Register - we're pioneering change in the realm of privacy documentation management. Our cutting-edge software is designed to redefine how you handle privacy documentation, streamlining the process for businesses, big or small. Simply and efficiently.We offer a range of tools including: Inventory of Personal Data and Systems; Records of Processing Activities (ROPA);Registry of Data Processing Agreements;Data Breach Reporting Tool;Data Subject requests registry;Reporting and Export Tools;Team, task and responsibility management.Discover our offerings at: gdprregister.eu.At GDPR Register, we present an all-encompassing software that's crafted to make privacy documentation management a breeze.Our vision is unambiguous: To digitalize and organize the entire privacy documentation process. This ensures effortless synergy between privacy professionals and all relevant parties. With our platform, it's not just about connecting the dots; it's about actively engaging data stakeholders, ensuring unparalleled standards in data protection. Show less