Professional Bio

Ivan Macôo is an Associate of Hellerstein & Associates and a Senior Legal & Compliance professional with over 18 years of international experience advising on data protection, data privacy, regulatory compliance, and risk management across the telecommunications and financial services sectors. He is a certified CIPP/E, CIPM, AML/CTF & Governance Leader with a strong track record in designing and implementing privacy and compliance frameworks aligned with GDPR, ISO 27001, and international best practices. Ivan holds an LLB and a bachelor's degree in Commerce and Law, along with an international diploma in Money Laundering and a postgraduate degree in Corporate Law and Governance.

Ivan served as Chief Legal Counsel for Vodacom Mozambique and Vodafone M-Pesa for over 13 years, where he established privacy governance structures from the ground up, developed Data Protection Impact Assessment (DPIA) processes, and strengthened AML and data protection frameworks in a complex, multi-stakeholder environment. He has been recognized for developing and managing robust data privacy and data protection compliance programs ensuring alignment with GDPR and anti-money laundering (AML) frameworks for Mozambique.

Ivan has significantly contributed to safe and compliant operations throughout his career and is adept at reducing security incidents while upholding a proactive approach to compliance. His professional focal points include data protection and privacy, transaction monitoring, financial crime prevention, KYC/CDD, policy development, governance, internal controls, and regulatory reporting. Delivering on these areas of expertise requires effective communication and negotiation skills, as well as stakeholder engagement, incident response, and crisis management to support efficiency and optimize results.

Ivan previously served as Head of Legal and Compliance with Vodacom Mozambique (Vodafone Affiliate) & Vodafone M-Pesa, where he established data privacy governance from scratch while enhancing AML risk frameworks and transaction monitoring functions. He has extensive experience engaging with regulators, leading cross-functional training initiatives, and translating legal requirements into operational policies and procedures.

Currently, Ivan advises an international client base on privacy, AML/CTF, and corporate governance matters, with a focus on cross-border regulatory alignment and risk management. He is a Mozambican national, fluent in Portuguese and English, with a strong understanding of both local regulatory context and international data protection standards.