All PrivSec Global Agenda articles
-
Session
Operationalising Data Retention to Reduce Data Risks
It is estimated that up to 70% of an organisation’s unstructured data is redundant, obsolete and trivial, which creates enormous risk to potential cyber threats, as well as exposure to regulations such as the GDPR for non-compliance in handling and deleting data accordingly. Data you do not have cannot be breached, it isn’t discoverable in litigation or investigations, and it doesn’t require any efforts to store, secure, or manage effectively.
-
Session
Global Data Protection and Privacy Law Developments: How Ready is China and the World for their new Data Security Law?
China’s Data Security Law contains provisions that cover the usage, collection, and protection of data in the PRC. Violations will trigger penalty fines and even suspension of business and revocation of license or permits.
-
Session
Why Most CCPA Cases Will Fail: Five Hurdles Plaintiffs Must Clear
The California Consumer Privacy Act (CCPA) is a landmark U.S. privacy law with many laudable features. But the law’s private right of action is not among its strongest provisions. The CCPA’s private right of action only grants consumers who have suffered very specific data breaches a limited right to sue. However, this has not stopped law firms trying to force through legal challenges against businesses that have violated irrelevant parts of the CCPA.
-
Session
AI Regulation: Stifling Innovation or Not Going Far Enough?
There are a number of ongoing discussions surrounding whether AI can be trustworthy or that now is the time to harmonise AI principles, but what does regulation mean for Artificial Intelligence and Machine Learning?
-
Session
Global Data Protection and Privacy Law Developments, Canada; Reforms, regional developments, and new regulations: How Canada is developing their Data Protection Laws
A huge number of firms in Canada are preparing themselves for changes to the Data Protection and Privacy Laws in Canada, but are these reforms going to happen?
-
Session
Social Media Data Breaches: Serious or Just a “Scrape”?
In August, Facebook suspended the accounts of NYU researchers who were investigating political ads on the social media platform. Facebook stated that the researchers were “gathered data by creating a browser extension that was programmed to evade our detection systems and scrape data such as usernames, ads, links to user profiles”. But the discussions and arguments around scraping does not end there, as there are endless questions on its legality, and the fact that big companies use this BUT don’t want it used against them.
-
Session
Digital Advertising: “Walled garden” approaches and implications on competition law
With Google’s announcement that it will phase out third-party cookies by 2022, it’s clear that those walls, which keep so much of the data inside, are about to get even higher.
-
Session
International Data Flows: EU and UK data flows: The Future of the Post-Brexit Agreement
As detailed by The Law Society in the UK, “The outward flow of data from the UK to the EU/EEA remains unaffected since the UK government has determined that it considers all EU 27 and EEA member states to be adequate for the purposes of data protection.”
-
Session
How easy is it to phish your business?
As cybersecurity and cyberthreats become more prevalent in our personal and working lives, businesses have invested in solutions like antivirus software and endpoint protection to try and secure their employees, data and intellectual property. While these measures have been effective to some extent, we still hear about ransomware and malware attacks in the news almost every day. Do you know how secure your organization is and if you’re vulnerable to this type of attack?
-
Session
UK Data Protection Index Panel
The UK Data Protection Index is produced by Data Protection World Forum and The DPO Centre. Each quarter the Index provides a glimpse into the changing attitudes and sentiments of Data Protection Officers across the UK.
-
Session
Artificial Intelligence/Machine Learning: Regulate the Usage, Not the Technology
Many arguments that surround the regulation of AI discuss how this will stifle technology and innovation. What is the regulations centred more around the usage of AI than of the technological advancement?
-
Session
Global Data Protection and Privacy Law Developments: POPIA; The First Three Months
South Africa’s Protection of Personal Information Act (POPIA) came into enforcement from 1st July 2021.
-
Session
Data Breaches: The Brand Battle for CMOs After Your Data is Breached
Fresh cyber attacks and data breaches across Volkswagen, Audi, McDonalds and Electronic Arts highlight the growing cybersecurity and data threat. So what can marketing leaders do about preventing and reacting to these crises?
-
Session
Spotting the signs of insider risk – and stopping a security incident before it happens
When it comes to cybersecurity and the risks that go alongside it, we know that people aren’t perfect – they get hacked, they make mistakes, and they also break the rules. And as employees continue to enjoy the flexibility of remote work, these human-activated risks to email security are surging as at-home employees continue to blur the lines between work and home life. Legacy technologies cannot keep pace, relying on static policies that frustrate and, ultimately, fail to solve the problem, leaving organisations vulnerable to both inbound and outbound data breaches and attacks.
-
Session
The Role of Privacy in ESG (sponsored by OneTrust)
With more focus on ethical data use, more companies are assessing their approach to environment, social and governance (ESG) criteria. Investors are looking beyond financial indicators to assess long-term value. Employees, consumers, and clients are also important stakeholders are demanding accountability when it comes to handling sensitive data and protecting information.
-
Session
Covid-19 Vaccines, Data Protection and the Great HR Debate
The roll out of the Covid-19 vaccine has employers thinking - will they obtain, and how might they manage data on employee’s covid-19 vaccination status? And if they are collecting this, how will this affect the company’s thinking on a return to the office strategy?
-
Session
Ransomware is not out of control, it is everything from cryptocurrencies to users
This panel will explore a controversial topic: what is more out of control at the moment, ransomware attacks or our susceptibility due to outside forces such as cryptocurrencies and the very users/staff of our companies?
-
Session
Exterro - Conquering a CPRA Data Retention Strategy in 60 Days
The California Privacy Rights Act (CPRA) comes into effect on January 1, 2023. Among its new requirements is a new data retention provision. Personal and sensitive information must be disposed of when its purpose has been fulfilled, and the organization must disclose the retention policy at the time of collection. And the data retention policies apply to data collected on or after January 1, 2022. Under CPRA, companies can no longer simply hold on to individuals’ personal data forever, they must have robust data retention and disposal practices.
-
Session
Global Data Protection and Privacy Law Developments USA: Will Next Year see a Federal Privacy Law Under the Biden Administration?
Many more states within the US are leading the legislative charge to follow California, Colorado and Virginia to pass Privacy Acts into law. From New York and Massachusetts to North Carolina and Ohio, moves are afoot.
-
Session
International Data Flows: The Future Under the New SCCs
In June, the European Commission finalised the modern SCCs in a bid to restore normal EU-US data transfer agreements.