Sayli N

Built a boutique law firm focused on data privacy and technology law compliance .

Advised startups and health tech clients across India on privacy frameworks and regulatory readiness.

Drafted privacy policies , DPIAs, TIAs, DPAs, LIAs, SCCs, and external/internal privacy notices.

Acted as an external DPO, supporting clients with regulatory filings, audits, and compliance operations.

Collaborated with Advantage Vidarbha on digital governance, privacy documentation, and legal strategy.

Delivered DPDPA seminars at Maharashtra National Law University and Ambedkar Law College, building awareness of India's privacy law.

• Assisted clients in navigating complex regulatory landscapes, enabling them to achieve full compliance with applicable laws.

• Collaborated with legal teams to review contracts and agreements, safeguarding clients from potential privacy violations.

• Evaluated third-party vendors for compliance with client''s privacy requirements, ensuring data protection throughout supply chain partnerships.

• Developed comprehensive privacy policies for clients, resulting in increased data protection and regulatory compliance.

• Led internal data privacy initiatives by designing and implementing policies for data collection, CRM usage, website analytics, and digital marketing, aligning operations with evolving global privacy standards, including GDPR, DPDPA, and UAE's PDPL (for Dubai-based clientele).

• Drafted and enforced internal SOPs and data governance policies covering consent, access control, retention, and breach response protocols.

• Managed and responded to Data Subject Requests (DSRs), including access, correction, and deletion requests, ensuring compliance with applicable laws across jurisdictions.

• Coordinated with legal and compliance teams to embed privacy-by-design principles into marketing tools, website platforms, and customer-facing technologies.

• Conducted privacy training programs for sales, marketing, and tech teams to build organization-wide awareness of personal data handling obligations, and compliance best practices.

• Acted as the Privacy SPOC for digital platforms, ensuring that tools like CRM, loyalty apps, and marketing automation were compliant with privacy and data security requirements.

• Oversaw website testing and backend operations to implement cookie consent tools, anonymization techniques, and secure data flows.

• Led vendor due diligence and third-party risk assessments (TPRM) with a focus on data protection compliance, contractual obligations (DPA/SCCs), and security benchmarks.

• Collaborated with IT and security teams to align digital operations with data security controls, including role-based access, encryption, and breach readiness protocols.

• Supported the company's DPDPA and PDPL readiness by mapping data flows, revising consent models, and standardizing data handling procedures across jurisdictions.