May 6-8, 2020Washington, D.C.
privacysecurityacademy.com
v1.2
Draft
Organizers
Daniel J. SoloveDaniel J. Solove is the John Marshall Harlan Research Professor of Law at the George Washington University Law School. He founded TeachPrivacy, a company providing privacy and data security training. One of the world’s leading experts in privacy law, Solove is the author of 10 books and more than 50 articles.
Paul M. SchwartzPaul Schwartz is a leading international expert on
information privacy law. He is the Jefferson E. Peyser Professor at UC Berkeley School of Law and a Director
of the Berkeley Center for Law and Technology. Schwartz is also a Special Advisor at Paul Hastings, where he works
in the Privacy and Data Security Practice.
The Privacy + Security Forum, Spring Academy brings together seasoned thought leaders in privacy and security. Despite extensive media coverage about privacy and security, there’s far less knowledge about how real businesses are applying the evolving changes they face every day. This event is about the impact of these topics in the real world. We are excited that you can join us!
Our distinguished speakers and audience are from Beijing, Berlin, Brussels, Dubai, Dublin, London, Mexico City, Montreal, Paris, Seoul, Tokyo, Zürich – and, of course, from across the U.S. Connect with privacy professionals, security professionals, chief information officers, attorneys, academics, experts from NGOs & think tanks, technologists, policymakers, and everyone else with strong ties to the privacy and security community.
Building on the success of last year, we have expanded our three-day event in 2020. This year, we have added more workshops on the preconference day for practitioners who want to learn in detail about Biometrics, CCPA, EU law, AI, State Privacy Law, and Vendor Management. We look forward to networking with 600+ leading minds.
Thank you for helping to shape international privacy and security in the real world!
Daniel Solove & Paul Schwartz
Welcome
3
07:30 a.m. – 9:00 p.m. Breakfast Wed, May 6 Grand Ballroom
09:00 a.m. – 4:30 p.m. Cybersecurity+Risk Summit Wed, May 6 Room Chair: Andy Serwin, Partner, DLA Piper Lael Bellamy, Of Counsel, DLA Piper
Speakers: Dan Caprio, Co-Founder and Executive Chairman, The Providence Group KristaCattanach,Counsel, Privacy & Security, CVS Health Katherine Fithen, Director, ISRM Cybersecurity Governance, McKesson Meredith Grauer, Chief Privacy Officer, The Nielsen Company David Hale, Chief Privacy Officer & Deputy General Counsel, TD Ameritrade Laura Hamady, Sr. Privacy Counsel, Visa Ken Jones, Sr. Managing Director, FTI Consulting Joanna Levin, Corporate Counsel, Global Privacy, Pfizer Danielle Manner, Sr. Privacy Counsel, Pfizer Ronald Plesco, Principal, Cyber Security Services, KPMG Doron Rotman, Managing Director & National Privacy Service Co-Leader, Advisory, KPMG Hugo Teufel III, Chief Privacy Counsel, Raytheon Company James Trainor, Sr. VP, Aon Timothy Zevnik, VP Compliance & Corporate Privacy Official, Molina Healthcare 09:00 a.m. – 10:15 a.m. Session A 10:45 a.m. – 12:00 p.m. Session B 01:30 p.m. – 02:45 p.m. Session C 03:15 p.m. – 04:30 p.m. Session D
09:00 a.m. – 12:00 p.m. Workshop: Biometrics Wed, May 6 Room Al Saikali, Partner, Shook Hardy & Bacon ElissaDoroff, VP, Underwriting & Product Manager for Technology & Cyber Liability, AXA XL Serge Jorgensen, Founding Partner & President, Sylint Jad Sheikali, Associate Attorney, McGuire Law
09:00 a.m. – 12:00 p.m. Workshop: California Consumer Wed, May 6
Privacy Act Room Lothar Determann, Partner, Baker & McKenzie Ian Ballon, Shareholder, Greenberg Traurig Rachel Lovejoy, Senior Counsel, Space Exploration Technologies
09:00 a.m. – 12:00 p.m. Workshop: EU Privacy Law Wed, May 6 Room Gail Crawford, Partner, Latham & Watkins (U.K.) Tim Wybitul, Partner, Latham & Watkins (Germany)
Pre-Conference Day – Wednesday, May 6
www.privacysecurityacademy.com
01:30 p.m. – 04:30 p.m Workshop: Artificial Intelligence Wed, May 6 Room TBD, TBD
01:30 p.m. – 04:30 p.m Workshop: State Privacy Law Wed, May 6 Room Elizabeth Canter, Partner, Covington & Burling Kate Goodloe, Director, Policy, BSA | The Software Alliance MaggieMartin, Sr. Director & Assistant General Counsel, Capital One
01:30 p.m. – 04:30 p.m Workshop: Vendor Management Wed, May 6 Room Ashley Slavik, Chief Privacy Officer & Lead Data Counsel, Veeva Systems Debra Bromson, Assistant General Counsel, AAA Club Alliance K Royal, Associate General Counsel, TrustArc Margaret Gloeckle, VP, Privacy & Compliance Counsel, A+E Networks
Pre-Conference Day – Wednesday, May 6
5www.privacysecurityacademy.com
7www.privacysecurityacademy.com
07:30 a.m. – 8:50 p.m. Breakfast Thur, May 7 Grand Ballroom
08:50 a.m. – 09:50 a.m. Session 1 Thur, May 7 TheRealImpactofRegulationonAdTech Room Jessica Lee, Partner, Loeb & Loeb MartinSchirmbacher, Partner, Haerting (Berlin) Farah Zaman, VP, Chief Privacy Officer, Meredith Corporation Novel Data Use Room David Saunders, Partner, Jenner & Block Heidi Wachs, VP, Stroz Friedberg, an Aon company ScottCowperthwait, VP, Law – Privacy & Cybersecurity, Charter Communications
The Rise of Privacy Tech Room Lourdes Turrecha, Founder and CEO, PIX Andy Roth, Chief Privacy Officer, Intuit Stefan Cohen, Partner, Bain Capital Ventures Rama Veeraragoo, Co-founder & CEO, DocuVision.ai Heather Glenn Wade, Founder & CEO, Preclusio
CCPALitigation:HowtoBePreparedforItandHowtoAvoidIt Room Ian Ballon, Shareholder, Greenberg Traurig Lothar Determann, Partner, Baker & McKenzie
09:50 a.m. – 10:10 a.m. Break Thur, May 7 Grand Ballroom
10:10 a.m. – 11:10 a.m. Session 2 Thur, May 7 Cross-Border Transfers: The Current State of Play Room Lothar Determann, Partner, Baker & McKenzie Paul Schwartz, Jefferson E. Peyser Professor, Univ. of California Berkeley School of Law Lisl Brunner, Director, Global Public Policy, AT&T Services
TheFutureofTargetedAdvertising:CCPA,SimilarStateBills,ThirdPartyCookies,Cookies in Europe, and New Regimes Across Asia Room Reed Freeman, Co-Chair, Privacy and Cybersecurity Group, WilmerHale Colin O’Malley, Founder, Principal, Lucid Privacy Group MarkPartin,Chief Privacy Officer, Associate General Counsel, Oracle
What’s a Board to Do?: Advising Boards of Directors on Privacy and Security Room Seth Berman, Partner, Nutter McClennen & Fish
AI and Healthcare Privacy Laws Room Adam Greene, Partner, Davis Wright Tremaine Joanne Charles, Attorney, Privacy & Regulatory Affairs, Microsoft
Forum Day 1 – Thursday, May 7
11:30 a.m. – 12:30 p.m. Session 3 Thur, May 7
BalancingPrivacywithCompetitiveness Room Graham Dufault, Sr. Director for Public Policy, ACT | The App Association Paula Bruening, Founder & Principal, Casentino Strategies Douglas McDowell, Chief Strategy Officer, SentryOne Eric Goldman, Professor of Law, Santa Clara University School of Law
NewBurdensonMedicalResearchandDe-IdentifiedDatafromCCPAandOtherLooming Legislation–AnyFixesinSight? Room Ann Waldo, Principal, Waldo Law Offices Daniel Barth-Jones, Professor, Mailman School of Public Health, Columbia University Fielding Greaves, Sr. Director, State & Regional Government Affairs, AdvaMed
OneDataMapvs.MultitudeofDataDefinitions Room Heather Federman, VP of Privacy & Policy, BigID Tara Cho, Partner, Womble Bond Dickinson
12:30 p.m. - 01:30 p.m. Lunch Thur, May 7 Grand Ballroom
01:30 p.m. – 2:30 p.m. Plenary Keynote Thur, May 7 PrivacyandLegislation:AnFTCCommissioner’sPerspective Grand Ballroom ChristineWilson,Commissioner, Federal Trade Commission
2:30 p.m. – 03:30 p.m. Session 4 Thur, May 7 DataBreachinLatinAmerica Room Victoria Beckman, Partner, Frost Brown Todd Diego Fernández, Partner, Marval, O’Farrell & Mairal Lucía Fernández González, Attorney, González Calvillo Sergio Oehninger, Counsel, Hunton Andrews Kurth
PrivacyBattlesinM&ATransactions Room Venora Hung, Sr. Privacy Counsel, Exact Sciences Edward Hu, Privacy Counsel, TrustArc Monika Tanedo, Privacy Program Manager, Exact Sciences
TheExpandingUniverseofBiometricData:Embrace,Curtail,orRegulate? Room Debra Bromson, Assistant General Counsel, AAA Club Alliance K Royal, Associate General Counsel, TrustArc Michael Shapiro, Sr. Counsel and Director of Data Privacy, Clarip
03:30 p.m. - 04:00 p.m. Ice Cream Break Thur, May 7 Sponsored by Grand Ballroom
Forum Day 1 – Thursday, May 7
www.privacysecurityacademy.com
04:00 p.m. – 05:00 p.m. Session 5 Thur, May 7 IoT Privacy in the Age of CCPA and GDPR Room GabrielaZanfir-Fortuna,Sr. Policy Counsel, Future of Privacy Forum Norman Sadeh, Professor, Carnegie Mellon University Achim Klabunde, Adviser to the Supervisors on Data Protection & Technology, European Data Protection Supervisor
AdaptingPrivacyLawtoToday’sHealthCareSystem Room Kirk Nahra, Partner, WilmerHale Deven McGraw, Chief Regulatory Officer, Ciitizen
CertifyingUndertheAPECCrossBorderPrivacyRules&HowTheyComparetoBCRs Room Pamela Garay, Assistant VP and International Privacy Officer, Assurant AmandaWitt,Partner, Kilpatrick Townsend & Stockton
05:00 p.m. - 6:00 p.m. Reception Thur, May 7 Sponsored by Grand Ballroom
Forum Day 1 – Thursday, May 7
9www.privacysecurityacademy.com
11
07:30 a.m. – 8:50 p.m. Breakfast Fri, May 8 Grand Ballroom
08:50 a.m. – 09:50 a.m. Session 6 Fri, May 8 NewDevelopmentsinLatinAmericanPrivacyLaw Room Eduardo Bertoni, Director, National Access to Public Information Agency, Argentina José Ziebarth, Director of the Ministry of Economy, Brazilian Federal Government
5 Months Into the CCPA: What’s Changed and What you Need to Know Room Andrew Clearwater, Chief Privacy Officer, OneTrust Tim Tobin, Partner, Hogan Lovells Drew Liebart, Chief of Staff, Senate Majority Leader Bob Hertzberg, California State Senate
Compliance with the GDPR, CCPA, and the new Swiss Law: Squaring the Circle? Room Nicole Beranek Zanon, Partner, de la cruz beranek Attorneys-at-Law Ltd. Heather Egan Sussman, Partner, Orrick ChristianSchröder, Partner, IP/IT & Data Privacy Practice Group, Orrick (Germany)
Designing GDPR & CCPA Privacy Requirements into New Products Room Jennifer Lorentz, Sr. Counsel, Privacy & Data Protection, Mastercard Britanie Hall, Sr. Associate, Privacy & Cybersecurity, Hogan Lovells Lauren Kitces, Associate at Squire Patton Boggs Erica Walker, Privacy Counsel, ViacomCBS
09:50 a.m. – 10:10 a.m. Break Fri, May 8 Grand Ballroom
10:10 a.m. – 11:10 a.m. Session 7 Fri, May 8 Is Federal Privacy Illusory or Are Stars Aligning? Room Maureen Ohlhausen, Partner, Baker Botts Michelle Richardson, Director, Privacy & Data Project, Ctr. for Democracy & Technology Mark Smith, Manager, Analysis – Privacy & Data Security, Bloomberg Law Pollyanna Sanderson, Policy Counsel, Future of Privacy Forum
Consumer Requests Under the CCPA: What is the Landscape So Far and What Lies Ahead? Room Nancy Perkins, Counsel, Arnold & Porter
ISO 27701 vs. NIST Privacy Framework: Choosing the Right One for You Room ScottGiordano,V.P. and Sr. Counsel, Privacy and Compliance, Spirion Jason Cronk, Privacy & Trust Consultant, Enterprivacy Consulting Group
DevelopmentsinIndianDataProtection Room Kurt Wimmer, Partner, Covington Suhaan Mukerji, Partner, PLR Chambers Melinda Claybaugh, Privacy Policy Director – Legislation, Facebook
www.privacysecurityacademy.com
Forum Day 2 – Friday, May 8
11:10 a.m. – 11:30 a.m. Break Fri, May 8 Grand Ballroom
11:30 a.m. – 12:30 p.m. Session 8 Fri, May 8 FutureofAltData:ImpactofCCPAandIncreasingRegulatoryScrutiny Room Stacey Brandenburg, Shareholder, ZwillGen MatthewSenatore,COO & General Counsel, Earnest Research Andrea Arias, Attorney, Div. of Privacy and Identity Protection, Federal Trade Commission
ALI Data Privacy: Toward a Comprehensive Privacy Law Room Paul Schwartz, Jefferson E. Peyser Professor, Univ. of California Berkeley School of Law Daniel Solove, John Marshall Harlan Research Professor, GW Univ. Law School Christopher Wolf, Sr. Counsel, Hogan Lovells and Founder, Future of Privacy Forum Brenda Leong, Sr. Counsel & Director of Strategy, Future of Privacy Forum
Data Ethics and Privacy Law Room Mark Surber, Sr. Manager of Data Citizenship & Digital Ethics, Mailchimp The ePrivacy Mess: Compliance Strategies for an Uncertain Future Room Raphaël Dana, Partner, Frieh Associates (France) Jon Frankel, Shareholder, ZwillGen
12:30 p.m. – 01:30 p.m. Lunch Fri, May 8 Grand Ballroom
01:30 p.m. – 2:30 p.m. Plenary Keynote Fri, May 8 Title Room Grand Ballroom Name, Title, Organization
2:30 p.m. – 03:30 p.m. Session 9 Fri, May 8
EU Data Security Room Benjamin Docquir, Partner, Osborne Clarke (Belgium) Ari Schwartz, Managing Director of Cybersecurity Services, Venable
03:30 p.m. - 04:00 p.m. Ice Cream Break Tue, May 8 Sponsored by Grand Ballroom
13www.privacysecurityacademy.com
Forum Day 2 – Friday, May 8
Forum Day 2 – Friday, May 8
www.privacysecurityacademy.com
www.privacysecurityacademy.com 15
Forum Day 2 – Friday, May 8
16
Board of Advisors
Elisabeth CanterPartnerCovington & Burling(US)
Jan DhontPartnerWilson Sonsini Goodrich & Rosati(Belgium)
Wills CatlingPrincipalPromontory Financial Group (Ireland)
KarenEltisProfessor of LawUniversity of Ottawa(Canada)
Rob CorbetPartnerArthur Cox(Ireland)
Gail CrawfordPartnerLatham & Watkins(UK)
Margaret GloeckleVP, Privacy & Compliance CounselA+E Networks(US)
NikoHärtingPartnerHärting Rechtsanwälte(Germany)
Sherrese SmithPartnerPaul Hastings(US)
Christopher MillardSr. Counsel, Bristows & Professor Queen MaryUniversity of London(UK)
Katherine TassiDeputy General CounselSnap(US)
Anwesa PaulGlobal Chief Privacy CounselAmerican Express(US)
Pedro PavónCorporate CounselOracle(US)
Kai WesterwellePartner Bird & Bird(US)
www.privacysecurityacademy.com
17
18 www.privacysecurityacademy.com
SponsorsThank you to our supporters for helping to make the event a great success.
19www.privacysecurityacademy.com
1. Pick up CLE forms at registration desk2. Return forms to registration desk3. Forms are returned to you by email4. For CLE questions please contact: [email protected]
Pre-Conference Day: Cybersecurity+Risk Summit5.0 General Credits in MCLE states reporting on a 60-minute hour6.0 General Credits in MCLE states reporting on a 50-minute hour
Pre-Conference Day: Workshops (AM or PM)2.5 General Credits in MCLE states reporting on a 60-minute hour3.0 General Credits in MCLE states reporting on a 50-minute hour
Conference Day 1: Privacy+Security Forum6.0 General Credits in MCLE states reporting on a 60-minute hour7.0 General Credits in MCLE states reporting on a 50-minute hour
Conference Day 2: Privacy+Security Forum5.0 General Credits in MCLE states reporting on a 60-minute hour6.0 General Credits in MCLE states reporting on a 50-minute hour
Continous Legal Education (CLE)
WiFi sponsored by:
1. Select GWconnect from your available SSID network list.2. If prompted for cppm.it.gwu.edu, accept or trust the certificate. Note: The certificate will display as “Not Trusted”
because it’s a GWU-generated local certificate, only valid for GW resources.3. Open browser to be directed to the GWConnect Splash Page.4. If not redirected, navigate to my.gwu.edu to trigger re-direction.5. On the Splash Page, click the link in the sentence, “If you are a guest of the university click here to request or
reset credentials.”6. Fill in the form and accept the GW wireless terms of use.7. Click Register.8. You will receive your username and password per email and/or text message.9. Click Login.10. Enter username and password provided to you.11. You will have network access for 72 hours.
How Do I Connect?
www.privacysecurityacademy.com
21