ABOUT
Meet Caro Robson
Caro Robson is an AI ethicist, privacy pro and frequent keynote speaker. An expert in digital regulation, Caro has over 15 years’ experience in the field, including as Executive Director of Strategy for the information regulator of a UK crown dependency, leader of the digital practice for a prominent public policy consultancy in Brussels, and advisor to UK and Afghan governments, international organisations and the international military in Afghanistan during the conflict.
Caro has built and managed digital compliance programmes for two multinationals whilst based in the UAE, acted as legal advisor to law enforcement in the UK, and has worked extensively with governments across Africa and the Middle East in developing cyber, privacy and human rights legislation.
Caro is currently UK Ambassador for the Global AI Association, an NGO focused on promoting ethical AI, a Non-Executive Director and Senior Advisor to Netherlands-based AI company Spectrum Intelligence, and a freelance digital risk and compliance consultant, based in the UK. Caro is a frequent keynote speaker on technology policy and AI, and an expert member of WP.6’s Group of Experts in Risk Management in Regulatory Systems.
Education
Caro holds an Executive MBA with distinction from Oxford, an LLM with distinction in Computer & Communications Law from Queen Mary, University of London, and is a Fellow of Information Privacy with the International Association of Privacy Professionals. She has contributed to legal textbooks, publications, and research on privacy and data governance, including for the EU, ITU and IEEE.
University of Oxford (2018 - 2019)
Executive Masters in Business Administration
Grade - Distinction
Queen Mary University of London (2010 - 2012)
Master of Laws (LLM), Computer & Communications Law
Grade - Distinction
University of Cambridge (2001 - 2004)
MA (Cantab), English
Bar of England and Wales (common Professional Examinsation, Bar Vocational Course)
Grade - Commendation
Admission to Bar of England & Wales
Skills: Global Regulatory Compliance · Public Policy
Licenses & Certification
Certified Information Privacy Manager (CIPM)
IAPP International Association of Privacy Professionals
Issued: 2023 Expires: 2025
Credential ID: 88960917
Skills: Data Privacy · Privacy Compliance · Program Management · Data Governance
Certified Information Privacy Professional/Europe (CIPP/E)
IAPP - International Association of Privacy Professionals
Issued: 2023 Expires: November 2025
Credential ID: 88960931
Skills: Legal Compliance · Data Privacy · Privacy Law · UK/EU Data Protection Legislation (GDPR)
Fellow of Information Privacy (FIP)
IAPP - International Association of Privacy Professionals
Issued: 2018
Credential ID: 11402538
Skills: Global Regulatory Compliance · Project Management · Strategy · Public Policy
Certified Information Privacy Professional (Europe)
IAPP - International Association of Privacy
Issued: Nov 2017
Skills: Skills: Global Regulatory Compliance
Certified Information Programme Manager
IAPP - International Association of Privacy Professionals
Issued: Jul 2016
Skills: Global Regulatory Compliance · Project Management · Strategy
Certificate of Good Standing (Non-Practising)
The Bar Standards Board
Issued: Jul 2006
Skills: Global Regulatory Compliance
Experience
-
Non-Executive Director and Senior Advisor - Spectrum IntelligenceSpectrum Intelligence Caro is currently a Non-Executive Director and Senior Advisor to Spectrum Intelligence, a Netherlands-based AI company that provides ethical data labelling, cleansing and verification services to client across sectors and geographies by empowering employees on the autistic spectrum to use their autistic superpowers to promote AI for good.
-
UK Ambassador - Global AI AssociationGlobal AI Association · Freelance Caro is the UK ambassador and a senior leadership team member of international non-profit think tank the Global AI Association, which focuses on advocating for ethical AI, fair digital markets and the promotion of dialogue between commercial sectors and multilateral bodies including the UN.
-
Director of Regulatory Strategy - Information Commissioner of UK Crown DependencyJersey Office of the Information Commissioner Jan 2023 - Sep 2023 Caro was headhunted to be Executive Director of strategy for data protection regulator in financial centre Jersey, responsible for conceptualising strategy to meet objectives and ensure its implementation for organisation’s long-term future. She maximised resource efficiency by delivering a practical, implementable strategy at less than £250,000 cost, increasing organisation’s regulatory reach into three major sectors including financial services, trusts and insurance, reducing case completion timescales through improved automation Caro contributed her legal and technology expertise to major government projects including Future Economy Programme, achieving strategy to create viable digital economy by 2030, and assisted in drafting new legislation on digital markets, cryptoassets and cybersecurity. She also chaired sub-group of Global Privacy Assembly, and represented the organisation in international events and forums.
-
Data Protection & Digital Lead, Senior Legal Advisor - Milieu SRLMilieu SRL Oct 2021 - Oct 2022 Brussels, Belgium Caro developed and led the data protection and digital practice for Milieu Consulting SRL, an independent private sector consultancy committed to serving the public interest by providing high quality consulting services to EU institutions. She provided strategic direction, business development and leadership with shared management responsibility for 40 in matrix environment, directly managing research teams of up to 15 within dedicated project budgets of up to €1 million. Caro identified new consulting opportunities and clients, recognising and winning three major contracts worth over €1 mil value each, increasing profile of organisation and size of permanent and ad hoc team. She consulted as expert legal and public policy advisor to EU institutions, resulting in published papers influencing EU and national legislation and policy on data protection, digital markets, EU funds and AI. Caro also managed complex research and analysis projects for several major contracts of over €1 mil value, working closely with diverse clients to produce actionable insights within timeframes and project budgets.
-
Director, Senior Counsel, Privacy & Data Protection, Middle East & Africa - MastercardMastercard Jul 2018 - Sep 2021 Dubai, UAE Caro led the privacy and data protection function for global fintech in Middle East and Africa, designing and managing regional compliance programme to meet commercial, legal and risk profile avoiding fines of up to $1 billion. She developed and implemented a major compliance programme for 78 countries and free zones, including training, thought leadership and risk assessment, and managed a team of four consultancy staff, maximising resource efficiency within $100,000 budget, avoiding potential fines of over $1 billion. Caro provided expert legal advice in data governance, AI, emerging technology and privacy; developed award-winning technology with project teams in commercial, humanitarian and government data use, entering new sectors such as central bank digital currencies and micro-enterprise payments in Sub-Saharan Africa. She also developed an automated system for assessment of projects against legal, commercial and reputational risks, reducing time for legal assessment and go-to-market process by almost 50% for new products. Caro also acted as subject expert to governments across region on new legislation, receiving Mastercard Law, Franchise and Integrity Leadership Award 2019 for work on Kenyan Data Protection ActLed privacy and data protection function for global fintech giant in Middle East and Africa region, through thought leadership, legal advice, and programme management.
-
Group Data Privacy Manager - Etihad Aviation GroupEtihad Aviation Group Oct 2014 - Jul 2018 Abu Dhabi, United Arab Emirates Caro developed and led the data privacy and cybersecurity function for the diversified global aviation and travel group Etihad, including loyalty programmes, marketing and data analytics functions. During her time at Etihad, Caro designed and implemented major compliance programme and data strategy for group’s 24 companies, achieving global GDPR implementation by May 2018 deadline. She worked closely with Board to secure £200,000 budget and support for organisational reform, avoiding potential fines of $400 million. Caro brought the group into compliance with privacy and digital regulation and culture, standardised data collection and handling systems/processes with information security and risk management teams. She also built and led team of three permanent and four consultancy staff, acting as champion for data governance within group and as external advocate with governments and international bodies, raising the group's profile.
-
Senior Legal Advisor - Foreign and Commonwealth OfficeForeign and Commonwealth Office Mar 2013 - Oct 2014 Afghanistan In Afghanistan, Caro mentored and advised a four-star Afghan General, achieving major institutional reforms for national security agency, and advised the UK Government and international military on international law and helped re-build Afghan legal code. Caro designed an organisational reform programme for Afghan security institution to increase effectiveness and meet international standards. She analysed organisational weaknesses, secured international funding and led a diverse multidisciplinary team of four to implement reforms within budget of £150,000. Caro achieved reduction in staff turnover by 30%, secured ongoing national funding for agency, and reduced case completion times by 50%. She was the recipient of Certificate of Appreciation (Attorney General Afghanistan) for the reforms achieved. As part of her role, Caro also advised the UK Government and international military on international law, including intelligence and data exploitation, including real-time events in theatre of conflict. She negotiated multi-national agreements on contentious issues of national sovereignty and international law, including between nations and international organisations. Caro coordinated with NGOs, UN organisations, international military and Afghan stakeholders to re-build Afghan legal code and institutions.
-
Lawyer: Data, Privacy & Technology - Serious Organised Crime AgencySerious Organised Crime Agency Apr 2009 - Mar 2013 London, United Kingdom Caro was recruited within this non-departmental public body of the UK Government to advise on data, privacy and technology law whilst managing and mentoring junior staff. At SOCA (now the National Crime Agency), she advised operational and policy teams on intelligence, cybercrime and privacy matters in the field of serious crime and counter-terrorism, including real-time, threat-to-life situations. She also advised the Board on major technology procurement projects and high-profile investigations. Caro advised Ministers and Senior Officials on domestic, European and international data privacy law, including the UK Prime Minister in high-profile cases, and contributed to new Privacy and Telecommunications legislation. Caro also represented the UK Government in international forums, including negotiating three multilateral agreements that enhanced cross-border cooperation among law enforcement agencies, addressing critical threats to national security.
-
Early Career Summary: Criminal & Regulatory BarristerPrivate Practice · Self-employed Sep 2006 - Apr 2009 London, United Kingdom Caro provided advocacy and advisory skills in Crown and Magistrates’ Court proceedings. Litigated cybercrime and internet offences, fraud cases, and dealt with complex legal arguments in confiscation proceedings valuing over £600,000. She prepared legal research for UK Law Commission in expert evidence and advice for senior counsel on new areas of law and complex issues, including cross-jurisdictional issues and criminal liability of corporations. Caro appeared as Junior Counsel in major prosecutions, including multi-defendant murder and fraud trials.
Skills
International Relations
International Development
Public Speaking
Event Planning
Advocacy
Nonprofit Organizations
Artificial Intelligence (AI)
Public Policy
Change Management
Strategy
Project Management
Global Regulatory Compliance