Skip to main content

Andrea C. Maciejewski designs and implements privacy programs for clients of all sizes – from Fortune 500s to start ups – and in all sectors, including digital entertainment, marketing, online education, retail, and consumer goods. Andrea helps companies build efficient and effective international compliance programs that focus on limiting exposure in high-risk jurisdictions. Andrea offers clients practical legal counsel, striving to understand the underlying business model and provide strategies that manage costs and risks, while attempting to maintain normal businesses operations.

Her practice concentrates on synthesizing international data privacy laws and regulations including the General Data Protection Regulation (“GDPR”), China’s Personal Information Protection Law (“PIPL”), and other comprehensive privacy laws in countries such as India, Australia, New Zealand, and others. She also advises on comprehensive U.S. state privacy laws as well as federal data privacy laws, such as the Children’s Online Privacy Protection Act (“COPPA”) and the Family Educational Rights and Privacy Act (“FERPA).

Some of the specific documents Andrea drafts include data processing addendums, intracompany agreements, cross-border transfer agreements, privacy policies, privacy impact assessments, and data inventories. She has experience in U.S. and multi-national record retention practices, and frequently counsels on updating those practices for compliance with new privacy laws.

Additionally, Andrea provides counsel on data concerns unique to video games, eSports, and mobile gaming. She also teaches the practice-focused Privacy Compliance class at the University of Colorado Law.

Outside of the firm, Andrea is a rock climber, skier, and avid cook. Her bucket list items include visiting every national park and (eventually) completing the Triple Crown of Hiking.

Concentrations

  • Privacy and data compliance
  • International privacy compliance (including GDPR)
  • Privacy contracting and cross-border transfers mechanisms
  • U.S. privacy compliance (including federal and state laws and regulations)
  • Video games, eSports, and digital entertainment

Capacidades

Experiencia

  • Assisted nationally recognized companies with the establishment and maintenance of their data privacy program.
  • Provides ongoing advice and counseling concerning data privacy related risks to companies, including nationally recognized retailers and hospitality companies.
  • Provides ongoing advice and counseling concerning multi-national privacy compliance programs and risks to global companies, including AI service providers, technology providers, retailers, and sports teams.
  • Created numerous multi-national retention schedules for global companies.
  • Created comprehensive GDPR and U.S. privacy programs for multi-national companies.
  • Advised on privacy compliance issues under various laws in APAC, LATAM, and EMEA.
  • Adjunct Professor, Privacy Compliance, University of Colorado Law, 2023-Present
  • Fellow, Government Entrepreneurial Leadership Accelerator (GELA), 2017

Reconocimientos y Liderazgo

  • Listed, The Best Lawyers in America, "Ones to Watch," 2023-2025
    • Technology Law, 2023-2025
    • Privacy and Data Security Law, 2024-2025
  • Team Member, a U.S. News - Best Lawyers® "Best Law Firms," "Law Firm of the Year" in Information Technology Law, 2024
  • Denver City Lead, Leadership Council on Legal Diversity, 2020-Present
  • Member, International Association of Privacy Professionals (IAPP), 2019-2020
  • Member, Colorado Bar Association, 2016-2020

Credenciales

Educación
  • J.D., University of Colorado
    • Resources Editor, University of Colorado Law Review
  • B.A., magna cum laude, Southern Methodist University
    • Phi Beta Kappa
Con licencia para ejercer en
  • Colorado

Related Capabilities

Data Privacy & Cybersecurity Alimentos, Bebidas y Agronegocios Advertising & Marketing Technology Cross-Border Transfers & Transfer Impact Assessments Cybersecurity Readiness Assessments Data Breach Incident Response Data Inventories & Records of Processing Data Minimization & Records Retention Financial Information Privacy Global Data Protection Programs Health Information Privacy Privacy Gap Assessments Privacy & Security Employee Training Regulatory Investigations State Privacy Laws Tabletops/Incident Response Training Video Games & Esports