Nellie Berntsson

I am a data protection specialist, helping organizations translate the requirements of the General Data Protection Regulation (GDPR) into practical and sustainable workflows. I work with everything from policies and procedures to managing data subjects’ rights, conducting impact assessments, and reporting as a Data Protection Officer (DPO) to management and the board. Through clear checklists, structured processes, and hands-on support, I create the conditions for data protection to become a natural and integrated part of the organization. For me, it is crucial that employees feel confident in how to act in practice.

I have extensive experience from large corporations, where I have worked both as in-house counsel and as a DPO. This has given me a deep understanding of complex data protection and compliance issues, such as incident management, automated decision-making and profiling, data-driven and accurate customer analyses, as well as governance of information sharing within and between organizations. I have significant experience in risk management, impact assessments, and compliance reporting to management and boards, as well as in establishing group-wide structures, responsibilities, and governing frameworks for data protection.

Outside of work, I enjoy growing vegetables in my garden, which I frequently use in cooking and baking.