Ina Rothe

pragmatische Wirtschaftsjuristin mit Schwerpunkten Datenschutz und Compliance

Köln, Deutschland

Erfahrungen

Juli 2020 - Dez. 2022
2 Jahren 6 Monaten
Berlin, Deutschland

Founder and Managing Director

ALL AML GmbH

ALL AML, a Joint Venture of Berlin Risk and Two Towers, is a One-Stop-Shop for all obliged entities under AML regulation that require external Money Laundering Officer or Know Your Customer services. ALL AML consults on AML compliance, coaches MLOs and undertakes enhanced due diligence investigations.

Exemplary services:

  • 09/2020 to 12/2023: External Money Laundering Officer for a number of entities obliged under the German Moneylaundering Act.
  • AML consultancy services, including setting up an AML risk management, developing policies, procedures and controls, designing and undertaking employee trainings
Sept. 2016 - Bis heute
8 Jahren 9 Monaten
Köln, Deutschland

Founder and Managing Partner

Two Towers Consulting GmbH & Co. KG

Two Towers Consulting is a boutique compliance consultancy, i.e. data protection, compliance management, cyber risk as well as training & coaching with an affiliated law firm and a Trusted Partner Network.

Exemplary services:

  • (Deputy) external data protection officer for
  • a retail company with subsidiaries in Europe and the US
  • a European manufacturing company
  • an international automobile manufacturer
  • an international construction equipment manufacturer
  • 01-12/2023: development and implementation of a compliance management system at a German SME in the information technology sector, including development of policies, implementation, training, whistleblowing system
  • GDPR gap analysis (audit) and action plan for a semiconductor manufacturer
  • Compliance consulting/training for various companies in different industries (e.g. financial, automobile, pharmaceutical), including e.g. Deutsche Bank (together with Steinbeis Hochschule Berlin), and two European central banks.

Sample Publications/Lectures:

  • Regular publications on the Two Towers blog and other blogs, e.g. on data protection in recruitment, on the design and implementation of deletion concepts or on minimizing risks of investment companies by developing strong data protection and artificial intelligence compliance management
  • Corporate Compliance Zeitschrift/CCZ 3/2024: Data protection: Lack of email encryption a GDPR violation without damage? An overview and perspectives for companies, March 2024
Feb. 2014 - Juli 2016
2 Jahren 6 Monaten
Düsseldorf, Deutschland

Authorized signatory/senior manager/team lead, Forensic, Risk & Compliance

BDO AG Wirtschaftsprüfungsgesellschaft

Feb. 2009 - Jan. 2014
5 Jahren
Berlin, Deutschland
Lorem ipsum dolor sit amet

KPMG AG Wirtschaftsprüfungsgesellschaft

Juli 2006 - Jan. 2009
2 Jahren 7 Monaten
London, Vereinigtes Königreich
Lorem ipsum dolor sit amet

KPMG LLP

Apr. 2006 - Juni 2006
3 Monaten
London, Vereinigtes Königreich

Researcher – Pre-Employment Screening

Control Risks Group

März 2006 - März 2006
1 Monate
London, Vereinigtes Königreich

Compliance / CSR Research Analyst

SERM Rating Agency Ltd

Analysis of Compliance risks and performance with a focus on Corporate Governance and Corporate Responsibility

Zusammenfassung

Which company doesn't wish for simply doing business without any surprises? And yet, many companies are the victims of intentional or unintentional compliance or security violations. As an expert in preventing compliance breaches of internal or external origin, I have been helping companies for many years with identifying their risks, taking adequate measures and investigating any suspicious activities. I am a commercial lawyer (LL.M.), with a background in educational research and now almost 20 years of experience in the wider compliance industry. Many of these years I spent in senior roles at renowned global auditing and consulting firms. Until, in 2016, I started out as an entrepreneur as one of the founders of Two Towers Consulting and Legal. Since establishing Two Towers in 2016, my main fields of activity are general compliance and data protection, including information security. I am an analyser and auditor, an optimizer and developer, an investigator and trainer. I 'do' letters, numbers, tech and AI and I offer this my generalist expertise as a project consultant or manager as well as an external compliance or data protection officer. As an information security auditor and data protection officer I had the opportunity to familiarise myself with many a business tool, from the widely popular ones, such as SAP, Salesforce, MS 365, DocuSign, Cleverreach, Google Ads etc., to the more specialised ones, e.g. Roadmunk, Frontify or DISPONENTgo. Furthermore, as an active member of the relevant professional associations, I regularly network with my peers and publish, train and lecture on my areas of expertise and passion.

Sprachen

Deutsch
Muttersprache
Englisch
Muttersprache
Russisch
Grundkenntnisse
Spanisch
Grundkenntnisse

Ausbildung

Jan. 2011 - Jan. 2014

University of Saarbruecken / University of Kaiserslautern

LL.M. · Commercial Law · Deutschland

Sept. 1997 - März 2004

Humboldt Universität zu Berlin / University of Essex

Master · Educational Sciences · Deutschland

Specialised in quantitative educational research, inter alia, working for the Max Planck Institute for Human Development and Humboldt University Berlin, where I supported global studies, such as PISA, and local studies, such as TIMMS, with both data collection and statistical analyses.

Zertifikate & Bescheinigungen

Bafa-registered Consultant

Cyberrisikocheck

Bundesamtes für Sicherheit in der Informationstechnik (BSI)

qualifizierte Aufsichtsrätin

Deutsche Börse

Data Protection Officer

TÜV

ISO/IEC 27001 Lead Auditor

Certified Fraud Examiner