Ponemon Institute Fellows
 |
Alessandro Acquisti is an Assistant Professor of Information Technology and Public Policy at the H. John Heinz III School of Public Policy and Management, Carnegie Mellon University, and a member of Carnegie Mellon Cylab. His work investigates the economic and social impact of IT, and in particular the interaction and interconnection of human and artificial agents in highly networked information economies. His current research focuses primarily on the economics of privacy and information security, but also on the economics of computers and AI, agent’s economics, computational economics, ecommerce, cryptography, anonymity, and electronic voting. His research in these areas has been disseminated through journals (including Marketing Science, IEEE Security & Privacy, and Rivista di Politica Economica); edited books ("Digital Privacy: Theory, Technologies, and Practices.'' Auerbach, 2007); book chapters; and leading international conferences. Prior to joining CMU Faculty, Alessandro Acquisti researched at the Xerox PARC labs in Palo Alto, CA, with Bernardo Huberman and the Internet Ecologies Group (as intern), and for two years at RIACS, NASA Ames Research Center, in Mountain View, CA, with Maarten Sierhuis and Bill Clancey (as visiting student). At RIACS, he worked on agent-based simulations of human-robot interaction onboard the International Space Station. In 2000 he co-founded PGuardian Technologies, Inc., a provider of Internet security and privacy services, for which he designed two currently pending patents. Alessandro has received national and international awards, including the 2005 PET Award for Outstanding Research in Privacy Enhancing Technologies and the 2005 IBM Best Academic Privacy Faculty Award. |
 |
Jerry Archer is Managing Director for Devonshire Enterprises which provides management and security consulting to a broad range of corporations, including venture capital groups and start-up companies. He regularly advises industry groups on matters related to information security and secure e-commerce. Previously, Jerry served as senior vice president of Global Interoperability for Visa International. He has also held executive positions at Fidelity Brokerage Company, Bankers Trust, CSC and Mitre. For his work with the US Intelligence Community, Jerry was awarded the Presidential Hammer Award, the CIA Distinguished Service Award and the DCI Meritorious Unit Citation. Jerry is a member of many industry groups such as the ACM, IEEE, ISAC, ISC2, and ISSAC. |
 |
Dr. Ann Cavoukian is recognized as one of the leading privacy experts in the world. An avowed believer in the role that technology can play in protecting privacy, Dr. Cavoukian’s leadership has seen her office develop a number of tools and procedures to ensure that privacy is protected in Ontario – and around the world. Dr. Ann Cavoukian was appointed Ontario's Information and Privacy Commissioner in 1997, and is the first to be reappointed for a second term. Noted for her seminal work on Privacy Enhancing Technologies in 1995, her mantra of “privacy by design” seeks to embed privacy into the design specifications of technology, thereby achieving the strongest protections. Dr. Cavoukian’s published works include Who Knows: Safeguarding Your Privacy in a Networked World (1997), written with Don Tapscott, and, The Privacy Payoff: How Successful Businesses Build Customer Trust (2002), written with Tyler Hamilton. |
 |
Alan Chapell is the founder of Chapell & Associates, a premier research and consulting firm focusing on issues of consumer privacy. Previously he established the privacy program at Jupiter Research, a research firm targeting the consumer Internet economy. Alan also was responsible for the creation and implementation of DoubleClick’s research product suite that resulted in DoubleClick’s Advertising Effectiveness products that measure the brand impact of online advertising. He also worked with e-mail marketing firms including Yesmail, now a division of Experian, where he assisted clients with issues of privacy. He is a regular contributor to the iMedia Connection, the DMNews and the International Association of Privacy Professionals’ Privacy Officer Advisor. |
 |
Harry Chapman is a founder and Principal of the Bay Area Consulting Group LLC, a San Francisco-based consulting firm. Mr. Chapman has extensive experience assisting organizations apply the powerful concepts of the Balanced Scorecard to enable change. His work with a division of Wells Fargo Bank developing and implementing a Balanced Scorecard is now a Harvard Business case currently taught at Professor Robert Kaplan's course at the Harvard Business School. Dr. Kaplan is on of the creators of the Balanced Scorecard. Mr. Chapman has assisted large client organizations develop Balanced Scorecards in the United States, Canada and South Africa. He currently leads a two-day seminar every six months on the Balanced Scorecard in Rome. Mr. Chapman has developed a Balanced Scorecard framework tailored to privacy. He is an expert in developing practical and effective performance measurement programs directed toward improving organizational performance. Mr. Chapman is a Certified Management Consultant through the Institute of Management Consultants. He is a founder of the Bay Area Consultants Network, a non-profit organization dedicated to enabling consultants become better, more effective consultants. |
 |
Nick is a technologist who began his career as a physicist at Caltech and then a senior research director at JPL after his PhD. Nick was formerly director of corporate engineering for Hewlett-Packard and CEO of two companies (Atherton Technology and CRI). Nick was VP of Strategic Customer Relationships at ParcPlace-Digitalk and started ZOOM Marketing with Ellie Victor in 1996. In 2004 Nick took a sabbatical from ZOOM and joined Microsoft as a Partner to develop the Microsoft Global SI strategy. In his spare time, Nick builds and plays acoustic guitars, turns wild bowls in his woodshop, and sees just how long he can stay at the bottom chasing turtles in funny-looking scuba gear. |
 |
Peggy Eisenhauer is the founder of Privacy & Information Management Services – Margaret P. Eisenhauer P.C., an internationally-recognized law firm. For the past 15 years, she has helped companies develop and document privacy, security and fair information programs, including policies and procedures governing the collection, use and distribution of all types of personal information. Peggy has extensive experience with U.S. and international privacy laws as well as industry best practices for managing consumer, customer and employee information. She represents companies in a diverse range of industries. In addition to a J.D. with honors from the University Of Georgia School Of Law, Peggy holds a Masters of Science in Information & Computer Science from the Georgia Institute of Technology. She is a member of the International Association of Privacy Professionals and a member of CIPP Advisory Board. She is admitted to practice law in Georgia and Florida, U.S.A. She can be reached online at www.PrivacyStudio.com. |
 |
Mari J. Frank, attorney and privacy consultant, is the creator of The Identity Theft Survival Kit, the audiocassette series Identity Theft Prevention and Survival, co-author of Privacy Piracy (with Beth Givens), and the author of two new books published by Porpoise Press (January 2005): From Victim to Victor: A Step by Step Guide for Ending the Nightmare of Identity Theft (2nd Edition, with CD) and Safeguard Your Identity: Protect yourself with a Personal Privacy Audit. Mari is also the host of Privacy Piracy a weekly one hour radio show at KUCI 88.9 FM and www.kuci.org/privacypiracy ( at the University of California, Irvine campus) dealing with issues of privacy in the information age. Mari consults with corporations and government agencies and provides professional training programs on privacy and ID theft issues. She serves on the State of California's Advisory Board of the Office of Privacy Protection; the Identity Theft Task Force of the LA County District Attorney and California's DMV Task Force on Privacy, and the advisory boards of the Privacy Rights Clearinghouse and the Identity Theft Resource Center. She's an Orange County Sheriff Reserve, a certified trainer for the State Bar of California, a law professor, and currently teaches Conflict Management at the University of California, Irvine. She's also a member of the International Association of Privacy Professionals. |
 |
Reed Freeman is a Partner in the Kelley Drye Collier Shannon's Advertising and Marketing Practice Group. He focuses on all aspects of consumer protection law, including privacy, data security and breach notification, online and offline advertising, and direct marketing. Previously, Mr. Freeman served as Chief Privacy Officer and Vice President for Legislative and Regulatory Affairs at Claria Corporation. Prior to joining Claria, Mr. Freeman was a Member of Collier Shannon Scott (Kelley Drye Collier Shannon as of April 2006). He has also served as staff attorney in the Federal Trade Commission's Bureau of Consumer Protection and was a law clerk for U.S. District Judge Claude M. Hilton (E.D. Va.). Mr. Freeman has been a member of the Department of Homeland Security's Data Privacy and Integrity Advisory Committee since 2005 and an Adjunct Professor for advertising and privacy law at George Mason University School of Law since 2000. He is a Certified Information Privacy Professional by the International Association of Privacy Professionals. Mr. Freeman is a frequent author and speaker on issues related to advertising and marketing law. |
 |
Jean-Paul is an accomplished business executive, strategist, and change agent. He has more than 24 years’ leadership experience working across multiple verticals in the highly regulated and competitive environment of the pharmaceutical industry. He energetically engages global organizations with bold initiatives that transform the entire culture. With Pharmacia he was the first in the industry to implement a corporate Internet strategy. His activities propelled Pharmacia as the leader in the field, ultimately having a very positive effect on its image. At Pharmacia, Jean-Paul was again the first in the industry (along with Merck) to serve in the full-time Privacy Director/Corporate Privacy Officer position. He continued in this role with Pfizer after the acquisition of Pharmacia. Before his 10 years of corporate functions in the U.S., Jean-Paul has mainly been active with sales and marketing responsibilities in the Benelux region. Jean-Paul holds a Ph.D. in biology (ecology) from the University of Antwerp, Belgium. |
 |
In 2007, Priscilla Hill-Ardoin retired from her position as Chief Privacy Officer of AT&T, Inc. after a distinguished career with the corporation and several of its subsidiaries including Southwestern Bell Telephone Company and Southwestern Bell Yellow Pages. Priscilla Hill-Ardoin founded the organization which is responsible for ensuring AT&T has policies and procedures in place to maintain full compliance with state and federal regulatory requirements governing telecommunications. She served as associate vice president-corporate services and as chairman of the board for the AT&T Foundation. She has served as the company’s director of diversity, and held positions in strategic planning, marketing and network operations. As a recognized leader in the communications industry, Hill-Ardoin supported the advancement of women and minorities in all areas of the business. In 2003, she was appointed by FCC Chairman Michael Powell to the Chairman’s Advisory Commission on Diversity in Communications in the Digital Age. |
 |
Chris Jay Hoofnagle is senior staff attorney to the Samuelson Law, Technology & Public Policy Clinic and senior fellow with the Berkeley Center for Law & Technology. His focus is consumer privacy law. From 2000 to 2006, he was senior counsel to the Electronic Privacy Information Center (EPIC) and director of the organization's West Coast office. He was also a non-residential fellow with Stanford University's Center for Internet and Society for the 2005 academic year. Among his recent academic publications are "Identity Theft: Making the Unknown Knowns Known," forthcoming in the Harvard Journal on Law & Technology; "Putting Identity Theft on Ice: Freezing Credit Reports to Prevent Lending to Impostors," forthcoming in Stanford University Press; "A Model Regime of Privacy Protection" in the University of Illinois Law Review (with J. Solove, 2006) and "Big Brother's Little Helpers: How ChoicePoint and Other Commercial Data Brokers Collect, Process, and Package Your Data for Law Enforcement" in the North Carolina Journal of International Law & Commercial Regulation (2004). He is admitted to practice law in California and the District of Columbia. |
 |
Jim Jordan is the founder of Jordan Legal Counsel, P.C., assisting companies with global compliance programs, with particular emphasis on laws pertaining to personal data protection, information technology, and e-commerce. Previously, he spent six years as an in-house lawyer for the General Electric Company, where he held the title of Chief Privacy Leader and Senior Counsel for E-Commerce & Information Technology, was responsible for global privacy law compliance, and led the implementation of a pioneering Binding Corporate Rules (BCR) program that has been formally approved by Data Protection Authorities in a number of EU Member States as a basis for international transfers of employment data. Prior to GE, Jim was a partner in the Intellectual Property Transactions Group of the law firm Alston & Bird, LLP. He is a member of the International Association of Privacy Professionals (IAPP), a Certified Information Privacy Professional (CIPP), a member of the IAPP's CIPP Advisory Board, and teaches the "Workplace Privacy" module of the CIPP examination preparation program. He received both a Physics degree (B.S. 1979) and a law degree (J.D. 1988) from the University of Georgia, and served on active duty for seven years as a U.S. Navy nuclear submarine officer. He can be reached at jimjordan3@comcast.net. |
 |
Matt Leonard is a privacy and strategic marketing executive. His more than 25 years of experience managing direct marketing operations along with his seven plus years developing and implementing privacy and information strategies, policies, and practices in complex organizations gives him a unique perspective on the issues surrounding responsible information practices. Most recently, Matt directed Privacy and Information Policy at Harte-Hanks, a major end-to-end direct marketing service organization. He spent ten years at IBM in a variety of positions in Direct Marketing, Customer Information and Privacy. Prior to IBM, Matt managed catalog and other direct marketing organizations in the US. These organizations included the Bradford Exchange, Ringer Research, Control Data, Just For Kids, Haband and others. As a result, Matt is an industry recognized expert in all aspects of marketing from Database Analytics to Product Development. Matt brings an incredible depth of experience in marketing as well as specific expertise regarding privacy practices in marketing oriented organizations. He is often seen, and heard, speaking to organizations about privacy and about marketing. He’s well known in the Direct Marketing Association, the Business Marketing Association and other professional associations. Matt has periodically been involved in industry standards groups and as an advocate of effective privacy and information practices as a basic business requirement. |
 |
Thornton May is one of the premier ‘communicators’ in the information technology industry today. He combines a scholar's passion for empirical research, an entrepreneur’s capacity for opportunity identification and a stand-up comic's gift for storytelling to assisting executives figure out what comes after what comes next. He is responsible for sculpting executive education IT curricula at four major business schools: UCLA, UC-Berkeley, Arizona State and Ohio State. From 1997-2000, Thornton was responsible for designing and delivering the information technology portion of the curriculum at the University of Amsterdam’s Controller’s Institute [special program for multinational Chief Financial Officers]. With James Robinson, III (former Chairman of American Express) Thornton founded the Director's Institute (a program to improve Board Level technology decision making). Thornton served on the Ph.D. review board at the University of Texas, Austin. Thornton serves on the Advisory Board at Comdex (largest trade show in the computer industry). Thornton’s insights have appeared in the Harvard Business Review (on IT strategy); The Financial Times (on IT value creation); The Wall Street Journal (on the future of the computer industry); the M.I.T. Sloan Management Review (on the future of marketing), American Demographics (on the evolving demographics of Electronic Commerce), USA Today (on the future of the consumer electronics industry), and Business Week (on the future of CEO direct reports) and on National Public Radio (debating the future practice of strategy with Professor Michael Porter). |
 |
Joanne McNabb is Chief of the California Office of Privacy Protection. Created by legislation and opened in 2001, the first-in-the-nation Office is a resource and advocate on identity theft and other privacy issues. In addition to providing information and education for consumers, the Office also publishes privacy practice recommendations for business and other organizations. McNabb is a Certified Information Privacy Professional and is co-chair of the International Association of Privacy Professionals’ Government Working Group. She also serves on the Privacy Advisory Committee to the U.S. Department of Homeland Security. She is a frequent speaker at privacy conferences and seminars. Before starting the Office of Privacy Protection, McNabb had over 20 years experience in public affairs and marketing, in both the public and private sectors, including five years with an international marketing company in France. Her marketing background gives her an understanding of the commercial uses of personal information that have become a significant privacy concern. McNabb attended Occidental College and holds a master’s degree in Medieval Literature from the University of California, Davis. |
 |
Peter is Chief Information Officer at Survey Sampling International (SSI), a leading supplier of Internet, telephone, postal mail, and personal interview samples to market and survey research agencies in the U.S., Canada, Europe, Latin America, Australia, and Asia. Peter has more than 25 years of experience in a wide range of information technology, market/survey research and data privacy and security activities, applying expertise in information technology and market/survey research methods. Peter has extensive experience with all CASIC (Computer Assisted Survey Information Collection) technologies, specializing in internet-based market/survey research Prior to joining SSI, Peter was Executive Vice President and Chief Information Officer at Harris Interactive and Senior Vice President and Chief Information Officer at Roper Starch Worldwide. Prior to his tenure at Roper Starch, he was on the staff of the National Opinion Research Center (NORC) at the University of Chicago. Peter is currently a member of the Board of Directors of CASRO (Council of American Survey Research Organizations) and is co-chair of CASRO’s Internet Research Task force and chair of CASRO’s Technology Committee. Peter holds a B.A. and M.A. from Queens College of the City University of New York. |
 |
Richard Purcell is the Chief Executive Officer of Corporate Privacy Group, an independent privacy consulting firm focused on establishing sustainable, affordable privacy programs in corporations, agencies and institutions. Previously, Richard developed one of the early global privacy programs as Microsoft's first Chief Privacy Officer. Richard has enjoyed a lengthy service in the privacy profession. In addition to his consulting practice he is currently Chairman of the Board of Directors of TRUSTe, a member of the Dept of Homeland Security's Privacy Advisory Committee and of the IAPP's Advisory Board for Privacy Certification. Previously, Richard co-founded and sat on the Conference Board's Council of Chief Privacy Officers, served on the IAPP Board of Directors, and was a member of the Federal Trade Commission's Advisory Committee on Online Access and Security. |
 |
John C. Reece is Chairman and CEO of John C. Reece & Associates, LLC, the firm he founded in 1999 to provide personal leadership assistance to corporate and government executives in resolving issues having high impact on their enterprises’ value creation performance. The firm assists many private and public sector clients—both large and small—with a strong mix of new and repeat relationships. Previously, Mr. Reece served as Deputy Commissioner for Modernization & Chief Information Officer (CIO) at the IRS. Prior to the IRS, Mr. Reece was Vice President of Information Technology at Time Warner Inc (TWI), functioning as that company’s first CIO. Before moving to TWI, Mr. Reece created a CIO role at Alexander & Alexander Services, Inc., a global insurance broker. In addition to CIO leadership roles, Mr. Reece has more than 30 years of additional management and consulting experience. He currently is a board member of Unysis’ Security Leadership Institute, InfraSi, Inc. and serves on Applied Identity and CloudShield, Inc.’s advisory boards. He has previously served on advisory boards at AT&T, Oracle, Sun Microsystems and Bristol Myers-Squibb. Mr. Reece is a principal member of the Council for Excellence in Government and a participating member of the Industry Advisory Council (IAC). |
 |
Howard A. Schmidt is president and CEO of R & H Security Consulting, LLC. He has a long and distinguished career in defense, law enforcement and corporate security spanning almost 40 years. He has served as Vice President and Chief Information Security Officer and Chief Security Strategist for online auction giant eBay. He most recently served in the position of Chief Security Strategist for the US CERT Partners Program for the National Cyber Security Division, Department of Homeland Security. He retired from the White House after 31 years of public service in local and federal government including the Air Force Office of Special Investigations and the FBI National Drug Intelligence Center. He was appointed by President Bush as the Vice Chair of the President’s Critical Infrastructure Protection Board and as the Special Adviser for Cyberspace Security for the White House in December 2001. He assumed the role as the Chair in January 2003 until his retirement in May 2003. Prior to the White House, Howard was chief security officer for Microsoft Corp., where his duties included CISO, CSO and forming and directing the Trustworthy Computing Security Strategies Group. Mr. Schmidt also serves as the international president of the Information Systems Security Association (ISSA) and was the first president of the Information Technology Information Sharing and Analysis Center (IT-ISAC). He is a member of the American Academy of Forensic Scientists. Mr. Schmidt has been appointed to the Information Security Privacy Advisory Board (ISPAB) to advise the National Institute of Standards and Technology (NIST), the Secretary of Commerce and the Director of the Office of Management and Budget on information security and privacy issues pertaining to Federal Government information systems. |
 |
Don Ulsch is Regional Director, Technology Risk Management, with Jefferson Wells. Previously he was senior director of Risk Management at Gartner Consulting. Don has more than 30 years of experience in security, risk management, threat analysis and policy research. Specializing in the early identification of emerging technical and non-technical threat conditions that affect IT infrastructure, he is a subject matter expert in the design of executive security awareness programs, policy analysis and development, and enterprise risk profiling based on changing global conditions. Mr. Ulsch was co-founder and managing director of Janus Risk Management, Inc., and was director of global risk management services at PricewaterhouseCoopers, LLP. He was also vice president and chief analyst for information security at Gartner Dataquest, and group vice president at Computer Intelligence. A research analyst with the National Security Institute (NSI) for 12 years, Don currently serves on its advisory board. He has also developed and taught courses for the Information Systems Audit and Control Association (ISACA) and the Institute of Internal Auditors (IIA). |
 |
David is currently the Chief Information Security Officer (CISO) for the State of Arizona, leading the Statewide Information Security & Privacy Office (SISPO). SISPO serves as the strategic planning, facilitation and coordination office for information technology security, privacy protection and the protection of the technology critical infrastructure in the State. Prior to the State of Arizona, David served with the City of New York at the Department of Investigation, for 6½ years, as Director; Digital Forensic Investigations and Director, NYC Citywide Information Security Program. David served for 1 year as the Director, Citywide Continuance Planning at the Department of Information Technology in a cooperative role with the Office of Emergency Management. David was with American Express for 11½ years and served in several capacities including Director of worldwide network change and problem management; and led the creation of the worldwide Information Security group, being named the 1st Corporate Information Security Officer for AMEX worldwide operations in 1989. |
 |
Alan S. Wernick is an attorney in private practice and a member of the bars of IL, NY, OH, and DC. He is a Martindale-Hubbell AV rated attorney and was selected as a Leading Lawyer in Computer & Technology Law. Since 1982 Alan's practice has concentrated in information technology law and intellectual property law, including copyright, trademark, trade secret, licensing law, and data privacy/security. He utilizes education and experience in law, ADR, accounting, and technology in understanding clients' objectives and in counseling clients in connection with their legal risk management. Alan has experience both in the private practice of law in Information Technology and Intellectual Property and as an in-house general counsel. Alan is a principal in Wernick & Associates, Ltd., and was formerly associated with several law firms including McBride Baker & Coles, Quarles & Brady LLP, and Roetzel & Andress. Alan is a frequent writer and lecturer. He serves on the Advisory Boards for several publications, including the CCH Guide to Computer Law published by CCH Wolters Kluwer. |
© 2006 Copyright Ponemon Institute - All rights reservedPrivacy PolicySite Map
Design by WDWEB