Zerina Curevac

Zerina Curevac


Zerina Curevac focuses her practice on privacy and cybersecurity law, counseling clients on cross-border data transfers, data protection compliance, security incidents and breaches, and commercial contract negotiation. She works closely with clients to help them to meet their obligations under regulations such as the EU-US and Swiss-U.S. Privacy Shield Framework, the General Data Protection Regulation (GDPR), the e-Privacy Directive, Children’s Online Privacy Protection Act, FTC Act, biometric and genetic/genomic data privacy laws (e.g., GINA, BIPA, etc.), and HIPAA compliance. Zerina holds the CIPP/US certification from the International Association of Privacy Professionals.


  • EU GDPR compliance
  • Biometric and genetic/genomic data privacy laws
  • Improving privacy programs
  • Security breach notifications
  • Privacy and security assessments
  • Data transfer agreements
  • Product counseling



  • Seconded onsite with an international SaaS client to lead and manage GDPR compliance, including obtaining formal buy-in from C-suite executives, data mapping across 90+ software products and departments, and overhaul of the marketing and sales program aimed at maximizing investments.°
  • Delivered actionable advice and researched data breach notification obligations across U.S. and 107 international jurisdictions for multiple clients.°
  • Led Privacy Shield certifications for clients ranging from large multinational organizations to startup companies.°
  • Drafted and revised internal policies and processes for compliance with Singaporean and Canadian (including provinces) data protection laws.°
  • Drafted, analyzed, and assisted with negotiation of HIPAA Business Associate Agreements for HIPAA-regulated entities and non-regulated entities.°
  • Drafted global and segmented Privacy Policies for clients operating across jurisdictions, including the EU, Canada, Asia Pacific, and Latin America.°
  • Drafted and negotiated Data Processing Agreements and developed a privacy and security pre-contracting questionnaire to be used to evaluate and assess service providers and/or partnerships.°
  • Advised product development teams of FTC Section 5 and compliance requirements under GDPR, as well as applicable employment, library technology, cybersecurity, biometric, genetic/genomic, student/education, and COPPA legislation.°

°The above representations were handled by Ms. Curevac prior to her joining Greenberg Traurig, LLP.

  • Certified Information Privacy Professional (CIPP/US), International Association of Privacy Professionals, 2015
  • Legal Intern, 23andMe, Inc., 2016
  • Law Clerk, TiVo Inc., 2015-2016
  • Law Clerk, Genomic Health, Inc., 2014-2015

Recognition & Leadership

  • Member, Women in Security and Privacy, 2015-Present
    • Member, Events Committee, 2017-Present
  • Member, International Association of Privacy Professionals, 2014-Present
  • Volunteer, Operation Care and Comfort, 2014-Present
  • Member, Santa Clara County Bar Association, 2015-2017


  • J.D., with honors, Santa Clara University School of Law, 2016
    • Editor, High Tech Law Journal
    • Editor, Journal of International Law
    • High Tech Law – Corporate Specialization Certificate
  • B.A., with honors, University of Washington, 2013
  • California
  • Bosnian-Serbo-Croatian, Native
  • German, Conversational