About the author

Michael Zurcher Michael Zurcher
Director and Senior Counsel, Privacy and Compliance

Michael has over twenty years of experience in data privacy and protection matters. At Iron Mountain, he is Director and Senior Counsel for Privacy and Compliance, with a focus on HIPAA, GLB, PCI DSS, “Safe Harbor”, European, Asian and South American data protection laws. In addition, Michael focuses on general compliance and regulatory matters, including building and managing policies and controls, providing training, conducting risk assessments, monitoring compliance functions, and creating and sustaining awareness of risks.

Prior to joining Iron Mountain, Michael was in-house counsel with a life science company and in private practice in Boston, San Francisco, Zurich and Geneva.
Data Protection Series: Thoughts on the New General Data Protection Regulation (GDPR)

The EU has reached agreement on a draft General Data Protection Regulation (GDPR) which will replace the current Data Protection Directive. The following blog discusses some of the key provisions that are relevant for records managers. The new law will come into effect in Q1 of 2018 (the final date […]


Read More    
Safe Harbour Ruling Highlights Discrepancies Between European and U.S. Data Privacy Laws

In early October last year, a key agreement that allows the transfer of European residents’ personal data from the European Economic Area (EEA) to the U.S. called ‘Safe Harbour’ was deemed invalid by Europe’s top court. The European Court of Justice (ECJ) made the landmark ruling on the agreement which […]


Read More