Annelies Moens

Managing Director, Privcore


Annelies’ vision is to make privacy core business – a discipline integral to business and government, with the chief privacy officer role as important as the chief financial officer role and chief digital & data officer roles.  Today much of the value of an entity lies in the data it holds. Annelies is one of Australia's Superstars of STEM in 2021-2022 and a mentor for the Boosting Female Founders initiative. A frequent presenter at national and international forums, Annelies is a widely recognised global privacy expert and thought leader with nearly 20 years' experience. She is also the Asia Pacific Senior Privacy Consultant for TrustArc.

A co-founder of the International Association of Privacy Professionals (IAPP) in Australia and New Zealand in 2008, Annelies was elected as its President in 2011-2012. She has been consulting in privacy since 2012. Through Privcore, she conducts privacy impact assessments, privacy health checks, data breach prevention, response and regulatory engagement and builds privacy programs for clients so they can increase trust and confidence.

Prior to founding Privcore, Annelies was Deputy Managing Director at Information Integrity Solutions where she led with her privacy consulting team hundreds of client deliverables over six years. Annelies' work also influenced the Australian government's decision to include Australia as a participant in the APEC Cross Border Privacy Rules System (CBPR) for safer regional transfers of data. Through her work with the Accident Compensation Corporation in New Zealand over a three year period to increase its public trust and confidence, she helped catalyse whole of government transformation in New Zealand in respect to privacy.

Annelies’ privacy career started at Australia's federal privacy regulator, now the Office of the Australian Information Commissioner. In her regulatory role over five years, she built extensive assurance and complaint handling expertise and led audit and investigation teams as Deputy Director, Compliance. Her previous roles have also included working as the External Relations Manager at AustLII and as the Group Manager and Chief Privacy Officer at the Copyright Agency Limited.

She has presented on privacy at many national and international events, including the Asia Pacific Economic Cooperation business and government forums, Asia Pacific Privacy Authorities, IAPP, Centre for Information Policy and Leadership, Australian Institute of Company Directors (AICD), Australian Information Security Association and at Standards Australia. She has been featured on the Femeconomy as a global thought leader, and in the Journal of Data Protection & Privacy for her article on “Data is your organisation’s core business: Are you prepared to govern it?” which she presented at the AICD’s Governance Summit in 2018. 

With an MBA in general international management (distinction) from the Vlerick Business School in Belgium, Annelies also has a First Class Honours Law degree, Arts (majoring in computer science) and Science degrees with emphasis on artificial intelligence and machine learning from The University of Queensland. Annelies is admitted as a legal practitioner in NSW. She is a Fellow of  the AICD, a Chartered Manager and Fellow of the Institute of Managers and Leaders Australia | New Zealand, and an IAPP Fellow of Information Privacy. She is a Certified Information Privacy Technologist and Certified Information Privacy Professional for European data protection law through the IAPP. Annelies has a Certificate in Advanced Dutch and understanding of French, Italian and Spanish.

Annelies loves the challenging and diverse work that the field of privacy provides and clients benefit from how she makes privacy easy for them. Next time you need an independent assessment or critical advice on how your organisation is handling customer or citizen data, reach out to Annelies: moens [at]

Dr John Selby

Head of Research & Training, Privcore 


John has researched and taught cybersecurity and privacy at Macquarie University, Sydney and is a founding member of the Optus-Macquarie Cybersecurity Hub. The Hub promotes an interdisciplinary understanding of cybersecurity by bringing together technology, business, legal, policy, security intelligence and psychology perspectives. John has consulted on cutting edge issues, such as: how company boards can build trust in the face of cybersecurity risks, online browser privacy, and the evaluation of software feedback systems. 

John has researched, written and presented on many topics including: cybersecurity and privacy, responding to data breaches and mitigating risks, privacy obligations locally and globally, including the EU’s General Data Protection Regulation (GDPR), assessing compliance and risk, data localisation laws globally, enhancing trust in online auctions, spam, WHOIS, biases in artificial intelligence (AI) and the governance risks of AI-based decisions. He is also the recipient of an iappANZ Legacy grant for privacy.


He has presented at the United Nations Internet Governance Forum, the Asia Privacy Scholars Network, Australia-India Youth Dialogue, Australian Institute of Company Directors, Australian Internet Governance Forum, Australian Society for Computers and Law, Macquarie Park Innovation District and to many international Universities. He has been a Visiting Professor at the University of Oslo, Norway, the University of Zürich, Switzerland and was a Postel Research Fellow at the University of Southern California.

John’s interdisciplinary career started in 1999 at what is now King & Wood Mallesons. In his role as solicitor, John advised telecommunications companies, Internet Service Providers and start-ups on cybersecurity, data protection, privacy, online contracting and mergers and acquisitions. He also worked in-house at Telstra on commercial agreements and monitored vendor compliance with software licence agreements.

He has prepared policy submissions for government and influenced privacy developments in the Asia Pacific region as a result of his work on data localisation. Channel 9 News, Weekend Sunrise, Sydney Morning Herald, The Conversation, The Project, ABC Radio, Triple J Radio and the Australian Financial Review have all interviewed John and The Lowy Institute recognised him as one of Australia’s “New voices in technology and international relations”.

With a PhD on the regulation of the .au domain name space from the University of New South Wales, John also has a First Class Honours Law degree and Bachelor of International Business and University Medal from Griffith University. John is admitted as a legal practitioner in NSW. He is a member of the Asia Privacy Scholars Network, Australian Domain Name Administration and the Internet Society of Australia. John has completed the GDPR training course from the Vrije University Brussels in June 2018. He is a Certified Information Privacy Manager (CIPM), Certified in European data protection law (CIPP/E), a Certified Information Security Manager (CISM) and Certified Information Systems Security Professional (CISSP).

John loves working with others and training them on cybersecurity and privacy in ways that capture his audience's attention and garners action. Clients love that John can express complex cybersecurity and privacy issues in ways that resonate and make sense to them. Next time you need staff training or research conducted that resonate, reach out to John: selby [at]