Imagen de fondo
Flecha descargaDownload firm presentation
Flecha izquierdaBack to Team

Leocadio Marrero Trujillo

Of Counsel

lmarrero@magliona.cl

PRACTICE

A specialist in personal data protection, privacy, cybersecurity, and regulatory compliance, with more than thirty-eight years of experience in strategic, technological, commercial, and risk-management consulting. His practice focuses on the design, implementation, and auditing of privacy management systems based on international standards (ISO 27701, ISO 27001, ISO 31700, among others), as well as GDPR compliance and alignment with Ibero-American regulatory frameworks. He has led data governance initiatives, privacy-by-design models, impact assessments, incident management processes, and compliance program development, applying a comprehensive GRC and cybersecurity perspective.

PROFESSIONAL EXPERIENCE

An entrepreneur and senior consultant, Leocadio serves as Data Protection Officer (DPO) for various institutions in Spain, including the Las Palmas Bar Association (ICALPA), the Canary Islands Council of Bar Associations, the Eastern Canary Islands Association of Industrial Engineers (COIICO), and the Gran Canaria Association of Quantity Surveyors and Technical Architects (COATTGC).

He is the CEO of GRCx3, a consultancy specializing in privacy, information security, and corporate governance, from which he has led regulatory compliance projects, privacy audits, risk analyses, and business continuity initiatives.

EDUCATION

He holds advanced certifications in privacy, data protection, information security, risk, and cybersecurity, including: ISO 27001, ISO 27701, ISO 27017, ISO 22301, ISO 31000, ISO 31022, ISO 37002, ISO 37301, ISO 9001, NIST CSF, COBIT19, CDPSE, CPCC, CDPP, LCSPC, CSFPC, AENOR Certification in Personal Data Protection, CIPDP, and is a Cyber-Cooperator at INCIBE.

ACADEMIC ACTIVITIES

Academic Director of the Diploma in Privacy Implementation and Compliance and of the Executive Program for Data Protection Officers under the AEPD scheme at USACH; Academic Director of the Diploma in Data Protection at UNIANDES; instructor at ISACA; lecturer for the GRC-IA certification and the ISO 42001 Program at AEC; lecturer for the Data Protection Officer Program at the Data Privacy Institute; certified instructor for the Canary Employment Service in cybersecurity; and faculty member at several business schools and executive training institutions.

PUBLICATIONS AND MEMBERSHIPS

He has published specialized studies and articles on privacy., cybersecurity, and compliance.
He is a member of APEP, ISMS Forum Spain, CCI, ISACA Madrid, aeDPD, Internet Society, IAPP, ALAP, IGF Spain, and AEC.

LANGUAGES

Spanish.