About Staff
I-Chin Lee is a licensed attorney in Taiwan and also holds certifications as both a Taiwan CPA and a U.S. CPA (AICPA). She possesses expertise in taxation, compliance, and risk management. She currently serves as a Senior Legal Researcher at the Science & Technology Law Institute (STLI) of the Institute for Information Industry, specializing in privacy compliance, as well as enterprise operational risk management and analysis.
In addition to leading initiatives such as the Taiwan Personal Data Protection and Management System (TPIPAS) and the Global Cross-Border Privacy Rules (Global CBPR) certification mechanisms, she excels at integrating privacy compliance, operational risk management, and financial auditing. With a clear and engaging communication style, she interprets regulatory trends and helps organizations achieve an optimal balance between compliance requirements and business operations.
.Columbia University Enterprise Risk Management, Master of Science in Enterprise Risk Management
.National Chengchi University, Bachelor of Accounting
.National Chengchi University, Bachelor of Laws
.Institute for Information Industry / Science & Technology Law Institute / Project Manager (November 2020 - )
.EY Transaction Advisory Services/ Assistant Supervisor (December 2019 – July 2020)
.KPMG Audit/ Auditor (December 2018 – July 2019)
.CIT Bank/ Risk Analyst (May 2018 – September 2018)
Article
.I Chin Lee, ”An Unfinished Framework, Yet Responsibilities Already Imposed: The Offensive and Defensive Dynamics of Administrative Inspections and Investigations”, Taiwan Bar Journal (October), 18-39 (2025).
.I Chin Lee, ”Best Practices in Risk Management for Personal Data Profiles”, Science and Technology Law Review, 35(12), 27-37 (2023).
.I Chin Lee, ”Provisions of Processing Data for Scientific Research under South Korea’s Personal Information Protection Act”,
.I Chin Lee, "Open Banking in Taiwan: Opportunities and the Risks", Science and Technology Law Review, 34(1), 23-30 (2022).
.I Chin Lee,"The Implementation of the Australia’s Open Banking Regime and the Scope of Consumer Data Right”, Science and Technology Law Review, 33(4), 10-13 (2021).
.I Chin Lee,"Protecting Digital Footprints, Shedding Light on the Opportunities for Financial Digital Transformation”, CIEE.202106, 107-109 (2021).
Videos, and Press Releases
.Ready for It? Strategies and Trends in Administrative Inspections Under the Personal Data Protection Regime
.A Comprehensive Analysis of the Personal Data Protection and Management System
.Personal Data Protection Amendments Passed: Public and Private Sectors Enter a New Era of Compliance
.Evolving Materiality Standards for Major Information Disclosures: Analysis of the Three Revisions to Cybersecurity Incident Materiality Criteria
.Building a Gold-Standard Personal Data Protection Brand—Let TPIPAS Support You!
.Executive Yuan Announces New Measures: Protecting Personal Data Becomes Priority
.The Wave of Personal Data Protection Is Coming—TPIPAS Leads Enterprises in Data Governance
.South Korea Osbtains GDPR Adequacy Decision: Privacy Certifications Strengthen Global Competitiveness
.China Releases the Measures for Compliance Audits of Personal Information Protection, Clarifying Corporate Audit Obligations
.The UK and South Korea Sign a Data Adequacy Agreement to Expand Digital Economy Opportunities
.The Third U.S. State—Colorado Officially Enacts the Colorado Privacy Act
.Bar Admissions: Taiwan (2025)
.CPA: Taiwan (2019)
.CPA: Guam, U.S.A.(2018)
.Senior Securities Specialist
.Certified Privacy Management Professional, Certified Privacy Internal Auditor , and Certified Privacy Lead Auditor, Taiwan Personal Information Protection and Administration System (TPIPAS)
.ISO 27001:2013 Lead Auditor
.ISO 27701:2019 Lead Auditor
.BS 10012:2017 + A1:2018 Lead auditor