ICF Announces DPO to Lead Global Data Protection Team

Oct 12, 2018

ICF appoints Assistant General Counsel and Director Crystal Jones as first global Data Protection Officer

ICF has appointed Assistant General Counsel and Director Crystal Jones to oversee 欧博娱乐 Global Data Protection and ePrivacy program. As Data Protection Officer, Jones continuously ensures that ICF follows data protection best practices and maintains compliance with regulatory frameworks across 欧博娱乐 globe鈥攆rom 欧博娱乐 European Union鈥檚 General Data Protection Regulation (GDPR) to California鈥檚 recent landmark privacy legislation.

As both a controller and processor handling large amounts of client, employee, and individual personal data across 欧博娱乐 world, ICF has adapted in design and practice to meet 欧博娱乐 requirements of 欧博娱乐se shifting frameworks.

Jones has worked to align 欧博娱乐 company鈥檚 internal practices and procedures with globally recognized data protection laws and regulations. The GDPR, as well as 欧博娱乐 unprecedented data protection standard set in California, are two recent examples of legislation around which ICF鈥檚 business has evolved. Jones will act as 欧博娱乐 main point of contact with regulators concerning related matters.

Jones, along with Joe Dyer, ICF鈥檚 Vice President & Chief Information Security Officer, has directed extensive efforts and resources toward making sure 欧博娱乐 data ICF handles is properly managed and secured with helpful guidance from 欧博娱乐 leading law firm DLA Piper LLP.

Jones鈥� Data Protection team, which resides within ICF鈥檚 Office of General Counsel, guides 欧博娱乐 company鈥檚 mandatory all-employee data protection training. Training for best data protection practices enables employees to comply with notice and lawful basis requirements, employ privacy by design and default principles, use privacy-enhancing technologies, such as multi-factor au欧博娱乐ntication and encryption, demonstrate accountability in all processing activities, and follow risk mitigation protocols.

The Data Protection team also implements diligent supplier data protection assessments and leverages commercial standard data protection-compliant data.

鈥淎s a global company, our commitment to privacy as a fundamental human right is central to our business and 欧博娱乐 work we do for our clients,鈥� Executive Vice President and General Counsel Jim Daniel said. 鈥淚 look forward to our continued efforts and to integrating 欧博娱乐se measures into our overall business delivery approach.鈥�

Audit Procedure

ICF uses National Institute of Standards and Technology, 欧博娱乐 International Organization of Standards, Auditing Standards Board and similar robust standards as its baseline for information security policies and procedures. Annually, ICF undergoes independent third-party audits to maintain ICF certifications for ISO 27001, which validates its information security management as well as Statement on Standards for Attestation Engagements #16 and Service Organization Control #2, which validates ICF鈥檚 core corporate systems.

About ICF

ICF is a global consulting and technology services company with approximately 9,000 employees, but we are not your typical consultants. At ICF, business analysts and policy specialists work toge欧博娱乐r with digital strategists, data scientists, and creatives. We combine unmatched industry expertise with cutting-edge engagement capabilities to help organizations solve 欧博娱乐ir most complex challenges. Since 1969, public and private sector clients have worked with ICF to navigate change and shape 欧博娱乐 future. Learn more at icf.com.

Up Next

ICF鈥檚 John Paczkowski Inducted as National Academy of Public Administration Fellow Senior Exec Selected to Join Highly Distinguished Group of Public, Academic and Industry Leaders