Biography

Selected to the Chambers Global and Chambers USA lists of ranked attorneys for Privacy & Data Security, Odia is Co-Chair of our Privacy & Data Security Practice and Chair of Data Privacy Compliance & International Privacy.

She advises companies of varying industries and sizes on how to comply with data-related regulations involving artificial intelligence (AI), biometrics, General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) and other U.S. data protection laws.

With an emphasis on assessing trends and future proofing compliance, Odia provides clients timely, pragmatic advice on how to design and implement their products and services in a compliant manner — all delivered with a touch of humor. She also leverages a broad network of colleagues in more than 30 countries to prepare business for regulations around the world.

A recognized leader in the privacy space, Odia holds three law degrees, five bar admissions (New York, Pennsylvania, Israel, England & Wales (Inactive), New South Wales Australia (Inactive) and seven privacy certifications (IAPP Certified Information Privacy Professional in the laws of the United States – private sector (CIPP/US) and the laws of the European Union (CIPP/E), IAPP Certified Information Privacy Manager (CIPM); IAPP Privacy Law Specialist (PLS), IAPP Fellow of Information Privacy (FIP), PECB Certified Data Protection Officer (CDPO), and IT Governance UK Certified GDPR Professional (C-GDPR/P).

A former partner in a Tel Aviv law firm, Odia also is a Co-Chair of our Israel Practice Group and has substantial experience working with Israeli startups and assisting multinational companies with cross border transactions.

Representative Engagements:

  • Assisted several car manufacturers in their deployment of U.S. privacy compliance for their consumer facing, as well as connected and autonomous, functions.
  • Assisted an audience measurement business in compliance with the Maryland Online Data Privacy Act standard of data minimization and treatment of sensitive information.
  • Assisted a leading oil and gas company in its compliance with new state privacy laws and their interplay with state biometrics laws.
  • Assisted a large education tech provider in compliance with the UK Age Appropriate Design Code and the U.S. Children Online Privacy Protection Act (COPPA)
  • Assisted a leading retailer and a provider of human resources services in compliant deployment of AI-assisted functions for hiring and promotion.
  • Assisted a leading provider of connected devices and a clinical trial sponsor in compliance with EU cross border transfer requirements and transfer impact assessments.
  • Assisted a leading credit union in deployment of biometrics and AI projects, including conducting data protection impact assessments.
  • Assisted providers in the ad tech and genetics fields in compliance with the DOJ Final Rule Prohibiting and Restricting Transfers of Bulk Sensitive Personal Data.
  • Advised multiple clients on website privacy compliance to mitigate risk of lawsuits under CIPA in connection with website and email tracking pixels.
  • Assisted a large international hospitality provider with its global privacy compliance efforts, including revision of vendor agreements, revision of privacy and information security policies, assistance with Data compliance and preparation for GDPR compliance.
  • Assisted clients, including a supplier of aerospace systems and a medical device company, in the formulation and documentation of a cross-border data transfer strategy for employee information, preparation for certification under the Data Privacy Framework and preparation for compliance with the EU General Data Protection Regulation (GDPR).
  • Drafted and negotiated master services agreements, EU data processing agreements and information security policies for a company providing services for clinical trials conducted worldwide.
  • Represented a large broadcasting and telecom provider in the sourcing of hosted services related to its consumer information.
  • Assisted a provider of Voice over Internet Protocol (VoIP) telephony platform with sophisticated call analytics in the design of its service incorporating security considerations and in the negotiation of its services agreement and terms and conditions of use.
  • Advised a leading professional development membership organization on compliance with EU Data Protection Directive and "Cookie Directive."

Selected to the Chambers Global and Chambers USA lists of ranked attorneys for Privacy & Data Security, Odia is Co-Chair of our Privacy & Data Security Practice and Chair of Data Privacy Compliance & International Privacy.

She advises companies of varying industries and sizes on how to comply with data-related regulations involving artificial intelligence (AI), biometrics, General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) and other U.S. data protection laws.

With an emphasis on assessing trends and future proofing compliance, Odia provides clients timely, pragmatic advice on how to design and implement their products and services in a compliant manner — all delivered with a touch of humor. She also leverages a broad network of colleagues in more than 30 countries to prepare business for regulations around the world.

A recognized leader in the privacy space, Odia holds three law degrees, five bar admissions (New York, Pennsylvania, Israel, England & Wales (Inactive), New South Wales Australia (Inactive) and seven privacy certifications (IAPP Certified Information Privacy Professional in the laws of the United States – private sector (CIPP/US) and the laws of the European Union (CIPP/E), IAPP Certified Information Privacy Manager (CIPM); IAPP Privacy Law Specialist (PLS), IAPP Fellow of Information Privacy (FIP), PECB Certified Data Protection Officer (CDPO), and IT Governance UK Certified GDPR Professional (C-GDPR/P).

A former partner in a Tel Aviv law firm, Odia also is a Co-Chair of our Israel Practice Group and has substantial experience working with Israeli startups and assisting multinational companies with cross border transactions.

Representative Engagements:

  • Assisted several car manufacturers in their deployment of U.S. privacy compliance for their consumer facing, as well as connected and autonomous, functions.
  • Assisted an audience measurement business in compliance with the Maryland Online Data Privacy Act standard of data minimization and treatment of sensitive information.
  • Assisted a leading oil and gas company in its compliance with new state privacy laws and their interplay with state biometrics laws.
  • Assisted a large education tech provider in compliance with the UK Age Appropriate Design Code and the U.S. Children Online Privacy Protection Act (COPPA)
  • Assisted a leading retailer and a provider of human resources services in compliant deployment of AI-assisted functions for hiring and promotion.
  • Assisted a leading provider of connected devices and a clinical trial sponsor in compliance with EU cross border transfer requirements and transfer impact assessments.
  • Assisted a leading credit union in deployment of biometrics and AI projects, including conducting data protection impact assessments.
  • Assisted providers in the ad tech and genetics fields in compliance with the DOJ Final Rule Prohibiting and Restricting Transfers of Bulk Sensitive Personal Data.
  • Advised multiple clients on website privacy compliance to mitigate risk of lawsuits under CIPA in connection with website and email tracking pixels.
  • Assisted a large international hospitality provider with its global privacy compliance efforts, including revision of vendor agreements, revision of privacy and information security policies, assistance with Data compliance and preparation for GDPR compliance.
  • Assisted clients, including a supplier of aerospace systems and a medical device company, in the formulation and documentation of a cross-border data transfer strategy for employee information, preparation for certification under the Data Privacy Framework and preparation for compliance with the EU General Data Protection Regulation (GDPR).
  • Drafted and negotiated master services agreements, EU data processing agreements and information security policies for a company providing services for clinical trials conducted worldwide.
  • Represented a large broadcasting and telecom provider in the sourcing of hosted services related to its consumer information.
  • Assisted a provider of Voice over Internet Protocol (VoIP) telephony platform with sophisticated call analytics in the design of its service incorporating security considerations and in the negotiation of its services agreement and terms and conditions of use.
  • Advised a leading professional development membership organization on compliance with EU Data Protection Directive and "Cookie Directive."

Privacy & Data Certifications

International Association of Privacy Professionals

  • Privacy Law Specialist (PLS)
  • Certified Information Privacy Professional, U.S. – Private Sector; EU (CIPP/US, CIPP/E)
  • Certified Information Privacy Manager (CIPM)
  • Fellow of Information Privacy (FIP)

PECB

  • Certified Data Protection Officer (CDPO)

IT Governance UK

  • Certified GDPR Professional (C-GDPR/P)

Beyond Fox Rothschild

Odia has been a long time Philadelphia Chapter Chair at OneTrust PrivacyConnect and servers on the IAPP Research Advisory Board.

Client Resources

Odia frequently writes about new developments in the privacy space for our Privacy Compliance & Data Security blog. Topics include artificial intelligence, state privacy laws and regulations, and international privacy laws and regulations.

Odia also is very active on social media. Follow her on LinkedIn at www.linkedin.com/in/odiakagan/ or X at @odiakagan.

Bar Admissions

  • Pennsylvania
  • New York
  • Israel

Education

  • Temple University School of Law (LL.M., 2009)
  • University of Strathclyde, Glasgow (LL.M., with distinction, 2009)
    • IT and Telecommunications Law
  • Tel Aviv University School of Law (LL.B., 1999)

Memberships

  • International Association of Privacy Professionals
    • Research Advisory Board Member
    • Philadelphia KnowledgeNet Chapter, Co-chair
    • Publications Advisory Board Member
    • Privacy Bar Section Advisory Board Member
  • Philadelphia Bar Association
    • Business Law Section, Executive Committee Member
    • Business Law Section, Cyberspace Law Committee, Co-chair
  • OneTrust PrivacyConnect
    • Philadelphia Chapter, Chair
  • International Network of Privacy Law Professionals, Representative

Inactive Bar Admissions

  • England & Wales
  • New South Wales, Australia
  • Delaware Foreign Legal Consultant

Languages

  • Hebrew

Honors & Awards

  • Selected to the list of attorneys ranked by Chambers Global for Privacy & Data Security: Privacy - USA (2025, 2026)
  • Selected to the list of attorneys ranked by Chambers USA for Privacy & Data Security: Privacy - Nationwide (2024, 2025)
  • Listed as a "Notable Practitioner" (2021-2023) and "Recognized Practitioner" (2024-2025) in the Legally Israel 100 by Israel Desks 
  • Named to the "Lawyers on the Fast Track" list by The Legal Intelligencer (2013)