Shoshana E. Rosenberg is a Partner at OlenderFeldman LLP, Practice Leader of the firm's AI, Privacy, and Security practice, and the firm's Director of Artificial Intelligence. She counsels clients on privacy, security, and AI laws, as well as the development and deployment implications of technology across intellectual property, employment, federal contracting, commercial law, professional responsibility, and regulatory enforcement. Her work is grounded in systems thinking, engineering discipline, and experience within both startups and complex global organizations as a lawyer, executive, and operator.
Shoshana advises on international, federal, and state privacy law, including the GDPR, UK GDPR, U.S. state privacy laws, HIPAA, cross-border data transfers, and privacy program governance. Her AI practice covers the EU AI Act, emerging U.S. federal and state regulation, development, deployment and governance program design, procurement, vendor oversight, automated decision-making, and the integration of AI controls into product, platform, and enterprise governance. Her security and federal contractor work includes NIST CSF, ISO 27001, SOC 2, FedRAMP, CMMC, and OMB procurement requirements governing technology sourcing and covered-country restrictions for federal contractors. She also handles technology contracting, SaaS and software licensing, data processing agreements, AI-specific contract terms, M&A diligence, and regulatory enforcement defense.
Before joining OlenderFeldman, Shoshana spent nearly two decades building and leading privacy, data governance, AI governance, and compliance programs at professional services firms operating across more than forty countries. She served as Global Chief Privacy Officer, U.S. Chief Privacy Officer and Data Strategy Director, and most recently as Senior Vice President, Chief AI Governance and Privacy Officer, and Deputy General Counsel for digital, privacy, security, AI, and intellectual property. She was appointed to the U.S. Innovation Advisory Board. She conducted due diligence on transactions totaling more than $8 billion, managed portfolios of more than 250 active litigation matters, engaged directly with EU and U.S. regulators on industry-wide regulatory matters, and designed and oversaw the development of multiple enterprise software and technology tools, including two retrieval-augmented generation deployments built with external development teams.
Shoshana served as General Counsel and Corporate Secretary of SafePorter LLC, a B2B privacy-enhancing technology company recognized with the 2023 PICCASO Privacy Award, and, through her work as a consultant with Logical AI Governance, has built AI governance programs, training curricula, and policy suites for organizations across a broad range of sectors.
Shoshana is the author of Practical AI Governance (Kogan Page, 2026), which provides clarity for boards and executives, and sets out the PRISM framework, a lifecycle-based model for embedding governance into how AI systems are designed, deployed, monitored, and controlled. She is co-founder of Women in AI Governance, an international professional association of more than ten thousand members and an approved observer to the Global Privacy Assembly. She serves as an Advisor to the Institute of Operational Privacy Design, the AI for Developing Countries Forum, and co-led NIST Privacy Workforce Working Group 9.
Shoshana served in the United States Navy as an Interior Communications Engineer and later as a Judge Advocate General Corps Reserve officer. She holds a J.D. in International and Corporate Law from Rutgers Law School and an M.B.A. in Consulting and Business Strategy from the University of North Carolina Kenan-Flagler Business School. Her international legal training includes the Cornell Institute of International and Comparative Law at the Université de Paris-Sorbonne, the University of Notre Dame International Law Programme at the University of London, and the LL.M. program in EU Innovation and Technology Law at the University of Edinburgh. She holds the IAPP Privacy Law Specialist, Fellow of Information Privacy, AI Governance Architect, AI Governance Professional, Certified Information Privacy Manager, CIPP/US, CIPP/E, CIPP/C, Certified Data Privacy Solutions Engineer, and Information Governance Professional designations. She is admitted to practice in New Jersey and the District of Columbia.
Shoshana was named to AI Magazine's Top 100 Women in AI for 2026.