Francesca Rubina Gaudino

Francesca focuses her practice on the full spectrum of data protection, cybersecurity and digital regulatory compliance, advising multinational clients on operational, strategic and governance level matters. She routinely designs and coordinates global privacy compliance programs, manages multijurisdictional data governance frameworks, and supports clients through interactions with supervisory authorities —including filings, authorizations, investigations and high risk processing assessments.

Her advisory work covers advanced technological ecosystems, such as AI enabled platforms, cloud infrastructures, behavioural advertising, digital HR tools, social network environments, mobile applications and multi territorial digital services. Francesca regularly advises on complex cross border transfers and on the structuring of compliant data sharing models, including those driven by new EU rules such as the Data Act and the Data Governance Act.

She has extensive experience guiding clients through critical scenarios —from cybersecurity events to regulatory scrutiny— and provides strategic counsel on privacy risk management, security frameworks and IT outsourcing structures. Francesca also leads multidisciplinary teams on privacy matters linked to clinical trials, telemedicine, whistleblowing systems, internal investigations and data retention models.

• Acting as lead coordinator in a series of multijurisdictional privacy and security focused projects, in relation to the design, implementation and management of complete privacy compliance of multinational companies groups.
• Advising on the implementation of CRM/CEM projects.
• Advising on corporate and website policies and procedures.
• Advising on whistle blowing schemes, monitoring and performance assessment systems and management of internal investigations.
• Advising on the management and retention of company data and information.
• Advising on the performance of clinical trials and telemedicine.
• Advising on online multifunctional platforms, cloud computing, adoption of forward thinking marketing strategies in web 3.0 environment, mobile applications and ecommerce.
• Involved in different applied research projects funded by the European Commission within the 6th and 7th Research Framework Programmes for the definition of advanced technical solutions for interactive and mobile based technologies (Privacy by Design).

• Band 2, TMT: Information Technology, Chambers and Partners Europe (2026) 
• Spotlight Individual, TMT: Data Protection, Chambers and Partners Europe (2026) 
• Next Generation Partner of the Year, Data Protection, Legal 500 Italy Awards (2026)

• Milan Bar Association
• AIPPI – International Association for the Protection of Intellectual Property
• Associazione Italiana Privacy (AIP) 
• Federazione Italiana Privacy (FIP) 
• Data Privacy Management International (DPM)