Our Team

Dr Jodie Siganto


Jodie is one of Australia’s leading privacy and security experts and the Founder of Privacy 108 Consulting. A qualified lawyer with over 20 years of experience, Jodie advises government departments, Australian businesses and international organisations on matters related to privacy and information system security.

Jodie’s expertise and profound understanding of the legal, privacy and data security industries allow her to offer a unique capability to advise on a wide range of privacy, security and technology issues. Following a stint in private practice, she has held in-house counsel roles for Tandem Computers, Unisys Asia and Dell. In 2000, she co-founded data security firm, Bridge Point Communications.

Pursuing her interest in the intersection of privacy, security and the law, Jodie completed her doctorate on privacy and information security practice in 2014. In addition to a PhD, Jodie holds security and privacy certifications from all of the leading security and privacy institutes worldwide and is a certified instructor for the International Association of Privacy Practitioners (IAPP) and (ISC)2, regularly delivering security and privacy training for the British Standards Institute.

A passionate advocate for privacy and data protection, Jodie wants to help organisations ensure they retain the trust of their stakeholders and the wider community, in the ways that they collect, use and secure data. She believes that the most effective solutions begin with robust and thoughtfully designed information security and privacy programs and continue to mature with practical guidance and support from subject matter experts. In 2020, Jodie started Privacy 108 Consulting to do just that.

Jodie is committed to developing and supporting the careers of privacy and security practitioners in Australia and has been involved with a range of privacy industry groups, including as the Chair of the AISA Policy Committee and AISA Education Director. When she is not championing the importance of privacy and information security, you might see Jodie carving up the slopes (or enjoying a well-deserved après ski).

Expertise summary: 

  • Privacy impact assessments
  • Privacy compliance audits and assessments
  • Privacy management framework development
  • Incident response preparedness
  • Data breach notification advice
  • Privacy and cyber security training
  • Security and threat risk assessments
  • Security awareness development

Qualifications & certifications: 

  • PhD (QUT) LLM (University of Sydney)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Privacy Manager (CIPM)
  • Certified Information Privacy Professional EU (CIPP/E)
  • Certified Information Privacy Technologist (CIPT)

Professor John Swinson

John is one of Australia’s leading experts in information technology law, including privacy and cybersecurity.

As a former partner of the international law firm King & Wood Mallesons, John has 30 years of legal experience, with principle focus on technology law and intellectual property law. John has considerable experience in the domestic and international aspects of technology law, and has represented organisations such as Microsoft, Tinder, Baidu, Toyota, Olympus, Peanuts, Marvel Comics, Rio Tinto, Technology One and Entain Group.

He is currently a professor at The University of Queensland in the Law facility, teaching subjects such as Internet law, privacy law, cybersecurity law, , copyright law, and the application of law to new technologies.

John is a strategic adviser for Privacy 108, collaborating on research assignments, providing strategic support and assisting with some of the more challenging issues raised in our practice.

Expertise summary: 

  • Privacy law
  • Cybersecurity law
  • Technology law
  • Licencing, copyright, patent law
  • Trademarks and trade secrets
  • Electronic commerce

Siska Lund


Siska is a data privacy, IT and corporate and commercial counsel with an extensive background working at the intersection of business strategy, technology, law and data across a range of industries: healthcare, cloud computing, energy management, insurance, energy and infrastructure.  

Prior to joining Privacy 108, Siska was the Global Head of Data Privacy Advisory & Engagement at global med-tech company where she spearheaded strategic initiatives and provided expert counsel on privacy matters. She has had a diverse and progressive career in both Australia and overseas serving in key in-house legal counsel roles, guiding organisations through legal and global privacy and data challenges.  

Siska is also an Assistant Professor at Bond University’s School of Law where she teaches in areas such as corporate governance, commercial and corporate law, and start-up law. She is committed to nurturing the next generation of privacy professionals, shaping a brighter future for the field.  

Qualifications & certifications: 

  • LLM (University of Melbourne) 
  • LLB (Hons) / B Int’l Bus (Bond University) 
  • Certified Information Privacy Professional EU (CIPP/E) 

Shelley Caverzan


Shelley brings a wealth of experience in data privacy, project management, change management, and IT service management across industries including education, banking, credit reporting and government. This rich background proves invaluable when it comes to crafting and executing privacy compliance programs or enhancing existing ones to align with evolving global and local legislative and business requirements including the commercial utilisation of data.  These skills are extensively leveraged in assessing the privacy implications of novel initiatives, as well as in the creation of data inventories and comprehensive data mapping exercises.   

Her expertise includes designing and implementing privacy programs, conducting impact assessments, interpreting global regulations, and managing privacy incidents. Shelley’s notable projects include overhauling the global privacy policies for a major bank and establishing comprehensive privacy programs for an international education organisation. With a focus on aligning with evolving legislative requirements, Shelley ensures organizations are equipped to navigate complex privacy landscapes while upholding data protection standards. 

Shelley’s proactive approach to privacy extends to providing training and awareness programs, integrating privacy considerations into every stage of the customer journey, and developing standards to govern the management of personal information. Her commitment to excellence and her ability to communicate complex concepts in simple terms make her a trusted advisor in the realm of data privacy. 

Qualifications & certifications: 

  • Bachelor of Management Studies (University of Waikato)
  • Certified Information Privacy Manager (CIPM)