Her big break came when a social media startup, reeling from a public breach of user location data, hired her as their first Data Protection Officer. The engineering team saw her as a “no” person—a roadblock. The CEO saw her as a necessary evil.
Steffi refused.
It was a radical shift. Suddenly, privacy wasn’t a legal shackle. It was a design challenge. The team started building “privacy by default” settings, simplified data download tools, and clear, cartoonish icons that told users exactly what data an app was using, in real time. Steffi Sesuraj
“Let’s play a game,” she announced to the skeptical engineers.
“You can fix a bug in a week,” she told the board, her voice calm but absolute. “You take a decade to rebuild a broken trust.” Her big break came when a social media
Steffi Sesuraj never set out to be a hero. She set out to be a librarian in a digital world—an organizer, a guardian, and a translator. She proved that the most important code in any system wasn’t written in Python or Java. It was written in integrity.
The backlash, when it came, was brief. The public, exhausted by corporate cover-ups, was stunned by the honesty. News headlines read: “Company Messes Up, Then Does the Unthinkable: Tells the Truth.” The stock dipped for a day, then soared as the company was hailed as a new gold standard for digital ethics. Steffi refused
After law school, while her peers flocked to corporate mergers and intellectual property battles, Steffi dove headfirst into the then-niche world of data privacy. She pored over the dense, 88-page text of the General Data Protection Regulation (GDPR) like it was a thriller novel. While others saw compliance checklists, she saw a framework for dignity.
Her most famous case, however, came when a major smart-home device company discovered a vulnerability that had been silently recording snippets of private conversations. The company’s legal team wanted to bury the report, issue a quiet patch, and hope no one noticed.