Last Thursday In Privacy

Last Thursday In Privacy


AGENDA

 

 

 

 

CATCH-UP & WATCH ON-DEMAND

26th January 2023
A global livestream experience

 
 

Themes & Topics Will Include: 

→ Strategic Business Decisions to Implement a Data Protection and Security Culture
→ India’s Data Protection Dilemma: Will the PDP Bill Improve Protection of Personal Data?
→ International Data Transfers: Technical Solutions, ICO Guidelines and the Future
→ Data Protection Regulations Worldwide: 2023 Overview of Current Horizon
→ Data Protection in the Middle East and North Africa: Trends, Issues and Regulations
→ Are Data Localisation Requirements Necessary and Proportionate?
→ Privacy Program Management: How Companies Can Best Juggle Their Compliance Requirements
→ Insider Threats: If Prevention is Impossible, How Can Companies Avoid and Fortify?
→ A Europe Fit for the Digital Age: The Path Forward for ePrivacy, Online Marketing and Digital Fairness
→ Privacy in Post-Roe USA: How the Dobbs Decision is Shaping Legislation, Regulation and Enforcement
→ EU-US Data Transfers: Time to Relax?
→ Tell the Board They’re ALL a Key Priority: Compliance, Data Security and Data Protection
→ Third Party Risk Management: Strategies and Strength to Mitigate Cyber Threats and Deal with Risk

View The Full Agenda

Timings shown in Greenwich Mean Time (GMT) Thursday 26th January 2023
06:00

Strategic Business Decisions to Implement a Data Protection and Security Culture
06:00 AM - 07:00 AM

In this panel discussion, experts will discuss the strategies and best practices for implementing a culture of data protection and security.

Panelists will discuss risk assessments, employee training, and the use of technology to enhance data protection and security.

As an attendee, you'll learn about the latest trends and developments in data protection and security, and gain practical advice on how to implement these measures in your own organisation.

Speakers

06:15
06:30
06:45
07:00

India’s Data Protection Dilemma: Will the PDP Bill Improve Protection of Personal Data?
07:00 AM - 08:00 AM,

India's Personal Data Protection Bill (PDPB) has been redrafted following years of delay and back-and-forth. But much debate remains about the newest version of the bill and the impact it will have on individuals and organisations.

This panel discussion will bring together experts to discuss the PDP Bill and its potential implications for data protection in India. The panelists will explore the key provisions of the bill, and discuss the potential benefits and drawbacks of its implementation. They will also consider the broader context of data protection in India, including the existing legal and regulatory framework, and how the PDP Bill fits into this landscape.

As an attendee, you will have the opportunity to learn about the PDP Bill and its potential impact on data protection in India. You will gain insights into the key provisions of the bill, and understand the challenges and opportunities that it presents for businesses and individuals. You'll also have the chance to ask questions and contribute to the discussion.

Speakers

07:15
07:30
07:45
08:00

Sponsored Session
08:00 AM - 08:30 AM

08:15
08:30

Sponsored Session
08:30 - 09:00

08:45
09:00

International Data Transfers: Technical Solutions, ICO Guidelines and the Future
09:00 AM - 10:00 AM

International data transfers remain among data protection’s hardest problems. And even though a solution to US transfers might be in sight, it might not last long. A broader, longer-term approach is required to ensure that data transfers can continue unimpeded as your organisation grows and changes.

In this session, experts will look at the state of play for data transfers, with an emphasis on the UK’s situation as it gradually diverges from the EU. Panellists will consider the technical approaches that might supplement standard contractual clauses (SCCs), and look at the ICO’s interpretations and guidance.

You’ll learn more about how the international transfers system is developing, and take away actionable advice on how to better ensure compliance in this complicated area.

Speakers

09:15
09:30
09:45
10:00

Data Protection Regulations Worldwide: 2023 Overview of Current Horizon
10:00 AM - 11:00 AM

Data protection regulations are evolving rapidly around the world, with new laws and frameworks being introduced to address the increasing risks of data breaches and security threats. In this panel discussion, experts will provide an overview of the current state of global data protection regulations, highlighting key trends and developments.

The panelists will consider the challenges and opportunities that businesses face in complying with these regulations, and provide insights into the future direction of data protection laws.

As an attendee, you will learn about the latest trends and developments in global data protection regulations, and gain a better understanding of the challenges and opportunities that businesses face in this landscape. You will also have the chance to engage with the panelists and ask questions about the current state of data protection regulations and how they may evolve in the future.

Speakers

10:15
10:30
10:45
11:00

Data Protection in the Middle East and North Africa: Trends, Issues and Regulations
11:00 AM - 12:00 AM

Data protection is becoming an increasingly important issue in the Middle East and North Africa (MENA) region, as the use of digital technology continues to grow and evolve. This panel discussion will provide an overview of the current state of data protection in the MENA region, highlighting key trends, issues, and regulations.

Panelists will discuss the challenges and opportunities that businesses and individuals face when it comes to protecting personal data in the MENA region. They will also consider the existing legal and regulatory frameworks for data protection in the region, and discuss the potential implications of these laws for businesses and individuals.

As an attendee, you'll have the opportunity to learn about the latest trends and developments in data protection in the MENA region. You'll gain a better understanding of the challenges and opportunities that businesses and individuals face in this landscape. And you'll have the chance to engage with the panelists and ask questions about the current state of data protection in the MENA region and how it may evolve in the future.

Speakers

11:15
11:30
11:45
12:00

Sponsored Session
12:00 - 12:30

12:15
12:30

Sponsored Session
12:30 - 13:00

12:45
13:00

Are Data Localisation Requirements Necessary and Proportionate?
13:00 - 14:00

More and more countries are imposing data localisation requirements, which mandate that certain types of data must be stored and processed within the country's borders. This raises questions about whether these requirements are necessary and proportionate, as well as their potential implications for businesses and individuals.

In this session, experts will discuss the potential benefits and drawbacks of data localisation, and the challenges and opportunities it presents for businesses. The panel will also discuss how businesses can respond to this trend.

You'll have a chance to learn from the experts and ask questions. By the end of the session, you'll have a better understanding of the issues surrounding data localisation and will be able to make more informed decisions about how to approach it.

Speakers

13:15
13:30
13:45
14:00

Privacy Program Management: How Companies Can Best Juggle Their Compliance Requirements
14:00 - 15:00

In today's digital landscape, companies must navigate a complex array of privacy laws and regulations. This panel discussion will explore the challenges and opportunities of managing a privacy program, and provide insights on how companies can best juggle their compliance requirements.

The panelists will discuss the key components of a privacy program, including conducting risk assessments, implementing appropriate policies and procedures, training employees on privacy best practices, and the role of technology in privacy program management.

As an attendee, you will learn about the latest trends and developments in privacy program management, and gain practical advice on how to effectively manage your own company's privacy program. You will also have the opportunity to engage with the panelists and ask questions about privacy program management and compliance.

Speakers

14:15
14:30
14:45
15:00

Insider Threats: If Prevention is Impossible, How Can Companies Avoid and Fortify?
15:00 - 16:00

Insider threats, or the potential for unauthorized access or harm to a company's sensitive information by its own employees, contractors, or partners, are a growing concern for businesses. This panel discussion will explore how companies can avoid and fortify against these risks.

The panelists will discuss the various forms that insider threats can take, and consider the role of technology in detecting and mitigating them. They will also provide tips on implementing policies and procedures to reduce the risk of insider threats.

As an attendee, you'll learn about the latest trends and developments in addressing insider threats. You'll gain practical advice on protecting your company's sensitive information. And you'll have the opportunity to engage with the panelists and ask questions.

Speakers

15:15
15:30
15:45
16:00

Sponsored Session
16:00 - 16:30

16:15
16:30

Sponsored Session
16:30 - 17:00

16:45
17:00

A Europe Fit for the Digital Age: The Path Forward for ePrivacy, Online Marketing and Digital Fairness
17:00 - 18:00

Whatever happened to the ePrivacy Regulation? Nearly five years after the law was supposedly going to take effect—and two decades after its predecessor, the ePrivacy Directive, passed—the ePrivacy Regulation is still nowhere to be found.

In this session, panelists will explore the future of EU privacy law, providing an assessment of the ePrivacy Regulation's likely scope and provisions, and considering when—and in what form—this evasive piece of legislation might emerge.

Attendees will learn up-to-date information on the current status of the ePrivacy Regulation—or any other law that might replace it—and have a chance to ask questions about how to prepare

Speakers

17:15
17:30
17:45
18:00

Privacy in Post-Roe USA: How the Dobbs Decision is Shaping Legislation, Regulation and Enforcement
18:00 - 19:00

The Dobbs ruling is shaping how legislators, regulators and businesses approach privacy in the US. In this session, panellists will explore how the overturning of Roe v Wade is impacting the privacy landscape.

Panelists will explore the direct impact of the ruling on privacy rights and the ways in which it has influenced—and could continue to influence—legislation and enforcement action at the state and federal levels.

Speakers

18:15
18:30
18:45
19:00

EU-US Data Transfers: Time to Relax?
19:00 - 12:00

The dotted line has been signed and the new EU-US data transfer framework is nearly over the line. The stress of transatlantic data transfers is finally over... or is it?

Replacing Privacy Shield has been a long and complicated process, apparently accelerated by the war in Ukraine and several concessions from the negotiators. But with Max Schrems already declaring his intention to challenge the new agreement, will EU and US data controllers ever truly be out of limbo?

This session will examine the new data transfer framework's strengths and weaknesses, consider whether the adequacy decision is likely to stand up in court, and explore what action businesses can take to prepare for its failure.

Speakers

19:15
19:30
19:45
20:00

Tell The Board They’re ALL A Key Priority: Compliance, Data Security and Data Protection
20:00 - 21:00

A large part of improving data protection, security and compliance within an organisation is getting the board and senior management to take these things seriously.

In this session, panelists will discuss the best appraoches for instilling a company-wide culture of data proteciton, security and compliance, getting buy-in from the board and securing an appropriate budget.

Speakers

20:15
20:30
20:45
21:00

Third Party Risk Management: Strategies and Strength to Mitigate Cyber Threats and Deal with Risk
20:00 - 21:00

Third party risk management is an essential aspect of cyber security. This panel discussion will explore how companies can develop effective strategies and fortify their defenses against cyber threats.

The panelists will discuss the key components of a third party risk management program, and consider the role of technology in supporting these efforts. They will also provide tips on staying vigilant and prepared to deal with risks and threats.

As an attendee, you'll learn about the latest trends and developments in third party risk management. You'll gain practical advice on managing and mitigating risks associated with working with external partners and vendors. And you'll have the opportunity to engage with the panelists and ask questions.

Speakers

21:15
21:30
21:45
22:00

Timings shown in Greenwich Mean Time (GMT) Thursday 26th January 2023
06:00

Strategic Business Decisions to Implement a Data Protection and Security Culture
06:00 AM - 06:45 AM

In this panel discussion, experts will discuss the strategies and best practices for implementing a culture of data protection and security.

Panelists will discuss risk assessments, employee training, and the use of technology to enhance data protection and security.

As an attendee, you'll learn about the latest trends and developments in data protection and security, and gain practical advice on how to implement these measures in your own organisation.

Host

  • Imran Chowdhury, Global Head of Data Protection & Governance, Al Jazeera Media Network

Speakers

06:15
06:30
06:45
07:00

India’s Data Protection Dilemma: Will the PDP Bill Improve Protection of Personal Data?
07:00 AM - 07:45 AM

India's Personal Data Protection Bill (PDPB) has been redrafted following years of delay and back-and-forth. But much debate remains about the newest version of the bill and the impact it will have on individuals and organisations.

This panel discussion will bring together experts to discuss the PDP Bill and its potential implications for data protection in India. The panelists will explore the key provisions of the bill, and discuss the potential benefits and drawbacks of its implementation. They will also consider the broader context of data protection in India, including the existing legal and regulatory framework, and how the PDP Bill fits into this landscape.

As an attendee, you will have the opportunity to learn about the PDP Bill and its potential impact on data protection in India. You will gain insights into the key provisions of the bill, and understand the challenges and opportunities that it presents for businesses and individuals. You'll also have the chance to ask questions and contribute to the discussion.

Host

Speakers

07:15
07:30
07:45
08:00

Sponsored Session
08:00 AM - 08:30 AM

08:15
08:30

Empowering employees to work securely with maximum effectiveness and minimal disruption
08:30 - 09:00

In a world of remote work, regulatory reforms, and digital transformation, the need for secure communication is higher than ever.

But how can people work securely with minimal disruption to their busy days?

Join Rick Goud, CIO at Zivver, as we investigate how to tackle the greatest security challenges confronting your organization today, including:​
· The biggest barriers to employees focussing on their core roles​
· The safest way to manage sensitive data securely and compliantly​
· Identifying the hidden risks in your digital communication platforms​
· How to empower people to work securely without disrupting productivity​

Speakers

08:45
09:00

International Data Transfers: Technical Solutions, ICO Guidelines and the Future
09:00 AM - 09:45 AM

International data transfers remain among data protection’s hardest problems. And even though a solution to US transfers might be in sight, it might not last long. A broader, longer-term approach is required to ensure that data transfers can continue unimpeded as your organisation grows and changes.

In this session, experts will look at the state of play for data transfers, with an emphasis on the UK’s situation as it gradually diverges from the EU. Panellists will consider the technical approaches that might supplement standard contractual clauses (SCCs), and look at the ICO’s interpretations and guidance.

You’ll learn more about how the international transfers system is developing, and take away actionable advice on how to better ensure compliance in this complicated area.

Host

Speakers

09:15
09:30
09:45
10:00

Data Protection Regulations Worldwide: 2023 Overview of Current Horizon
10:00 AM - 10:45 AM

Data protection regulations are evolving rapidly around the world, with new laws and frameworks being introduced to address the increasing risks of data breaches and security threats. In this panel discussion, experts will provide an overview of the current state of global data protection regulations, highlighting key trends and developments.

The panelists will consider the challenges and opportunities that businesses face in complying with these regulations, and provide insights into the future direction of data protection laws.

As an attendee, you will learn about the latest trends and developments in global data protection regulations, and gain a better understanding of the challenges and opportunities that businesses face in this landscape. You will also have the chance to engage with the panelists and ask questions about the current state of data protection regulations and how they may evolve in the future.

Host

  • Luiza Sato, Partner, TozziniFreire Advogados – Brazilian member of the PrivacyRules Alliance

Speakers

10:15
10:30
10:45
11:00

Data Protection in the Middle East and North Africa: Trends, Issues and Regulations
11:00 AM - 11:45 AM

Data protection is becoming an increasingly important issue in the Middle East and North Africa (MENA) region, as the use of digital technology continues to grow and evolve. This panel discussion will provide an overview of the current state of data protection in the MENA region, highlighting key trends, issues, and regulations.

Panelists will discuss the challenges and opportunities that businesses and individuals face when it comes to protecting personal data in the MENA region. They will also consider the existing legal and regulatory frameworks for data protection in the region, and discuss the potential implications of these laws for businesses and individuals.

As an attendee, you'll have the opportunity to learn about the latest trends and developments in data protection in the MENA region. You'll gain a better understanding of the challenges and opportunities that businesses and individuals face in this landscape. And you'll have the chance to engage with the panelists and ask questions about the current state of data protection in the MENA region and how it may evolve in the future.

Host

  • Lori Baker, Vice President - Legal & Director of Data Protection, DIFC

Speakers

11:15
11:30
11:45
12:00

DSARS: Utilising Privacy Automation to Build a Measurable ROI Program
12:00 - 12:30

Businesses today not only deal with more data than ever before, they’re also dealing with more requests around the personal data of consumers and employees than ever before.

Where workflow automation and accountability-focused tools may have worked for privacy programs of the past, intelligence and automation is the focus for privacy programs of the future. In this session, we’ll be going over three facets of this problem.

Key Takeaways:​
· How to discover, classify and automate your data processes to streamline records of processing activities​
· How to deal with DSARs and automate the process to reduce manual labour, time taken, and frustration​
· How to adapt consumer rights processes to employees​

Speakers

12:15
12:30

The DPO's Balancing Act: Navigating the Roadblocks to a Successful Privacy Management Program
12:30 - 13:00

The Data Protection Officer (DPO) is the backbone of an organisation's data protection programme. Empowered with independence and reporting to the highest level of management, the DPO must monitor their company's compliance with the GDPR and act as the go-to for complex privacy issues.

As such, DPOs face many hurdles, including educating busy colleagues on the importance of data protection, persuading other departments of the value of compliance, and delivering "hard truths" to a management team that may not want to hear them. The success of a DPO depends not only on their knowledge and experience—but also on their ability to identify and overcome these organisational challenges.

This session will explore how DPOs can get the support, resources and information they need to build a successful privacy management programme.

Host

Speakers

12:45
13:00

Are Data Localisation Requirements Necessary and Proportionate?
13:00 - 13:45

More and more countries are imposing data localisation requirements, which mandate that certain types of data must be stored and processed within the country's borders. This raises questions about whether these requirements are necessary and proportionate, as well as their potential implications for businesses and individuals.

In this session, experts will discuss the potential benefits and drawbacks of data localisation, and the challenges and opportunities it presents for businesses. The panel will also discuss how businesses can respond to this trend.

You'll have a chance to learn from the experts and ask questions. By the end of the session, you'll have a better understanding of the issues surrounding data localisation and will be able to make more informed decisions about how to approach it.

Host

Speakers

  • John Wunderlich, President, John Wunderlich and Associates
  • Adam Au, General Counsel and Data Protection Officer, UMP Healthcare Holdings Limited
  • Amigo L. Xie, PhD, Partner, Registered Foreign Lawyer (PRC), K&L Gates
13:15
13:30
13:45
14:00

Privacy Program Management: How Companies Can Best Juggle Their Compliance Requirements
14:00 - 14:45

In today's digital landscape, companies must navigate a complex array of privacy laws and regulations. This panel discussion will explore the challenges and opportunities of managing a privacy program, and provide insights on how companies can best juggle their compliance requirements.

The panelists will discuss the key components of a privacy program, including conducting risk assessments, implementing appropriate policies and procedures, training employees on privacy best practices, and the role of technology in privacy program management.

As an attendee, you will learn about the latest trends and developments in privacy program management, and gain practical advice on how to effectively manage your own company's privacy program. You will also have the opportunity to engage with the panelists and ask questions about privacy program management and compliance.

Host

Speakers

14:15
14:30
14:45
15:00

Insider Threats: If Prevention is Impossible, How Can Companies Avoid and Fortify?
15:00 - 15:45

Insider threats, or the potential for unauthorized access or harm to a company's sensitive information by its own employees, contractors, or partners, are a growing concern for businesses. This panel discussion will explore how companies can avoid and fortify against these risks.

The panelists will discuss the various forms that insider threats can take, and consider the role of technology in detecting and mitigating them. They will also provide tips on implementing policies and procedures to reduce the risk of insider threats.

As an attendee, you'll learn about the latest trends and developments in addressing insider threats. You'll gain practical advice on protecting your company's sensitive information. And you'll have the opportunity to engage with the panelists and ask questions.

Host

Speakers

  • Igor Gutierrez, Information Security Officer & DPO - Data Protection Officer B. GROB do Brasil S.A.
  • Jack Chapman, VP of Threat Intelligence, Egress
15:15
15:30
15:45
16:00

Keeping up with the California Privacy Rights Act: More Rights, Duties, Obligations, Regulations, and Action Items
16:00 - 16:30

Keeping up with the evolving privacy landscape is essential for the success of any organization. The most recent law impacting businesses is the California Privacy Rights Act (CPRA) which went into effect on January 1, 2023. The CPRA expands and amends the CCPA, resulting in companies facing stricter requirements related to managing risk and honoring consumer rights, similar to that of GDPR.

To strive for for compliance, companies musttake their privacy programs to the next level and ensure they understand all the new aspects that come with CPRA, including:​
· New and amended definitions​
· New consent practices, including avoiding dark patterns​
· New opt-out duties and obligations​
· New counterparty contract practices and assessments​
· New enforcement agency​
· New regulations​
· New employee rights​

Join us in this solo session to deep dive into allthings CPRA and explore how privacy software can save you time resources on the road to achieving CPRA compliance.

Host

16:15
16:30

Closing the Data Divide: The future of Data Privacy is People-Centric – Sponsored by Mine
16:30 - 17:00

Join experienced data privacy pros from Mine PrivacyOps to discuss how modern data privacy management platforms must be people-centric—both from the perspective of its users and from a company’s brand trust. By focusing on developing true data privacy innovation that puts users first, Mine is powering companies to build stronger connections with consumers thanks to a relationship built on trust and respect.

Speakers

16:45
17:00

A Europe Fit for the Digital Age: The Path Forward for ePrivacy, Online Marketing and Digital Fairness
17:00 - 17:45

Whatever happened to the ePrivacy Regulation? Nearly five years after the law was supposedly going to take effect—and two decades after its predecessor, the ePrivacy Directive, passed—the ePrivacy Regulation is still nowhere to be found.

In this session, panelists will explore the future of EU privacy law, providing an assessment of the ePrivacy Regulation's likely scope and provisions, and considering when—and in what form—this evasive piece of legislation might emerge.

Attendees will learn up-to-date information on the current status of the ePrivacy Regulation—or any other law that might replace it—and have a chance to ask questions about how to prepare

Host

Speakers

17:15
17:30
17:45
18:00

Privacy in Post-Roe USA: How the Dobbs Decision is Shaping Legislation, Regulation and Enforcement
18:00 - 18:45

The Dobbs ruling is shaping how legislators, regulators and businesses approach privacy in the US. In this session, panellists will explore how the overturning of Roe v Wade is impacting the privacy landscape.

Panelists will explore the direct impact of the ruling on privacy rights and the ways in which it has influenced—and could continue to influence—legislation and enforcement action at the state and federal levels.

Host

Speakers

18:15
18:30
18:45
19:00

EU-US Data Transfers: Time to Relax?
19:00 - 19:45

The dotted line has been signed and the new EU-US data transfer framework is nearly over the line. The stress of transatlantic data transfers is finally over... or is it?

Replacing Privacy Shield has been a long and complicated process, apparently accelerated by the war in Ukraine and several concessions from the negotiators. But with Max Schrems already declaring his intention to challenge the new agreement, will EU and US data controllers ever truly be out of limbo?

This session will examine the new data transfer framework's strengths and weaknesses, consider whether the adequacy decision is likely to stand up in court, and explore what action businesses can take to prepare for its failure.

Host

  • Paul Lanois, Executive Committee Member, Privacy Law Section, California Lawyers Association

Speakers

19:15
19:30
19:45
20:00

Tell The Board They’re ALL A Key Priority: Compliance, Data Security and Data Protection
20:00 - 20:45

A large part of improving data protection, security and compliance within an organisation is getting the board and senior management to take these things seriously.

In this session, panelists will discuss the best appraoches for instilling a company-wide culture of data proteciton, security and compliance, getting buy-in from the board and securing an appropriate budget.

Host

Speakers

  • Martin Gomberg, Author, CISO Redefined and Privacy Consultant Cyberite LLC
  • Caro Robson, Director of Regulatory Strategy, Jersey Office of the Information Commissioner
  • Paul Iagnocco, Customer Enablement Lead and Senior Privacy Consultant, TrustArc
20:15
20:30
20:45
21:00

Third Party Risk Management: Strategies and Strength to Mitigate Cyber Threats and Deal with Risk
21:00 - 21:45

Third party risk management is an essential aspect of cyber security. This panel discussion will explore how companies can develop effective strategies and fortify their defenses against cyber threats.

The panelists will discuss the key components of a third party risk management program, and consider the role of technology in supporting these efforts. They will also provide tips on staying vigilant and prepared to deal with risks and threats.

As an attendee, you'll learn about the latest trends and developments in third party risk management. You'll gain practical advice on managing and mitigating risks associated with working with external partners and vendors. And you'll have the opportunity to engage with the panelists and ask questions.

Host

Speakers

  • Susanne Bitter, Digital Security GRC Analyst - Business Partner Security, BP
  • Noel Isama, Privacy, Data Governance and Cybersecurity Professional
  • Silvestra Cumming, Global Data Protection Manager at Hempel A/S
21:15
21:30
21:45
22:00