Head of Privacy | Data Protection and Privacy Attorney
Tracy Boyes is the Head of Privacy and Data Protection Officer at Scytale, where she guides companies through complex global privacy regulations, including GDPR, POPIA, CCPA, HIPAA, and the EU AI Act. A seasoned Data Protection and Privacy Attorney with over a decade of experience at the intersection of law and technology, she is also a CIPP/E-certified privacy professional. Tracy has advised both multinational corporations and high-growth startups with clear, practical solutions to modern privacy challenges.
She earned law degrees from the University of Edinburgh and the University of Pretoria and began her legal career at Michalsons. Tracy is known for making complex legal topics easy to understand, combining accuracy with creativity. Off duty, she’s a former radio presenter with a natural talent for clear communication.
Discover what the EU Cyber Resilience Act means for your business, its key requirements, and what it takes to stay compliant.
Learn what CCPA penalties look like and how your business can avoid costly fines with the right compliance strategy.
Discover the top 7 CCPA compliance tools of 2025 to protect customer data and streamline compliance.
Discover some GDPR compliance best practices for your business, setting you up for a successful GDPR certification process.
Get the essential checklist for POPIA compliance. Learn key requirements and steps to meet South Africa’s data protection law.
Learn the essentials of South Africa’s POPIA, its impact on data protection, and how it compares to global privacy laws.
Despite extensive information available about the GDPR, many misconceptions still persist. This blog breaks down some of them.
The California Consumer Privacy Act (CCPA) is state legislation that sets data privacy rights for Californian residents.
The comprehensive CCPA compliance checklist helps you meet all requirements and avoid potential compliance trouble to your business.
As a data privacy framework, GDPR focuses on safeguarding personal information and enforces strict rules for data management.
Discover the main differences between the two significant consumer data privacy laws and how to navigate data privacy regulations.
In this blog, we will discuss what GDPR compliance entails and provide tips on how to create an effective GDPR data protection policy.
