PrivSec Global Agenda | 29th & 30th November 2023

PrivSec Global

Agenda

A Global Livestream Experience
29th & 30th November 2023

PrivSec Global brings together leading experts from around the globe, for a 2-day livestream experience that ensures attendees have access to the latest information, guidance and advice on data protection, privacy and security.

PrivSec Global returns on 29th & 30th November 2023, and will once again deliver a carefully curated agenda that taps into the expertise of subject matter experts, industry leaders and academics.

All sessions will be recorded and available on-demand.

Agenda - 29th November 2023

Day 1

Day 1: Wednesday 29th November 2023

PrivSec Global Agenda | Timings shown in Greenwich Mean Time (GMT)

Scroll left/right to view

GMT	Wednesday 29th November 2023
09:00	India introduces new Digital Personal Data Protection Bill 09:00 AM - 09:45 AM Highly relevant for India's rich and vibrant community of privacy pros and highly relevant for the global privacy community whose organisations process data “in connection with any activity related to offering or goods or services” in India, the DPDP Bill, 2023, is the fifth iteration of India’s much-awaited data protection law, with previous versions released in 2018, 2019, 2021, and 2022. Speakers Nandita Rao Narla, Head of Technical Privacy & Governance, DoorDash Emma Green, Managing Partner, Cyber Data Law Solicitors Salman Waris, Partner Head of TMT & IP Practice, TechLegis Advocates & Solicitors
09:15
09:30
09:45
10:00	Like the GDPR but not the same: Asia’s Data Protection journey 10:00 AM - 10:45 Privacy laws in Asia are being transformed: in the past 12 months, several key jurisdictions have either introduced their first-ever comprehensive data protection framework or are updating and reforming their existing privacy laws. This includes: - Australia: Which has amended its Privacy Act 1988 and introduced the Telecommunications Regulations 2021 and the Security of Critical Infrastructure Act 2018 - The PRC: Which has enacted the Personal Information Protection Law (“PIPL”) - Indonesia: Which has passed its long awaited Data Protection Law - Japan: Which has updated the Act on Protection of Personal Information - Thailand: Which has introduced the Personal Data Protection Act B.E. 2562 (2019) - Vietnam: Which has very recently passed Decree No. 13/2023/ND-CP Join us for an update on your jurisdiction Data Protection Law, and get a chance to have your questions answered. Speakers Carolyn Bigg, Partner, Global Co-Chair data protection, privacy and security, DLA Piper Hong Kong Ina Weygant, Privacy & Compliance Director, Mambu Willem Balfoort, APAC and EMEA Privacy, Stripe Amigo L. Xie, PhD, Partner, Registered Foreign Lawyer (PRC), K&L Gates
10:15
10:30
10:45
11:00	The ICO and the Regulatory Landscape: Fireside Chat with Emily Keaney, Deputy Commissioner of the ICO and Ana Fernandes, Principal Consultant at PA Consulting 11:00 AM - 11:30 AM This discussion will focus on the role of the ICO in the broader digital regulatory landscape, including changes presented in the upcoming Data Protection and Digital Information Bill. Speakers Emily Keaney, Deputy Commissioner of Regulatory Policy, The ICO Ana Fernandes, Principal Consultant, PA Consulting
11:15
11:30	Zero trust: Rethink security, and redefine resilience 11:30 AM - 12:15 PM With the rise of remote and hybrid work, organisations have grappled to secure their digital ecosystems, providing cybercriminals with fresh grounds in unsecured home networks, personal devices, and weak authentication practices.To navigate the hybrid world securely, traditional cybersecurity approaches may no longer suffice in protecting organisations from the increasing sophistication of cyber threats. As cyber threats continue to evolve, Zero Trust is set to play a critical role in safeguarding organisations and ensuring a resilient cybersecurity strategy for the digital age Speakers Jessica Figueras, CEO, Pionen Martin Gomberg, a.k.a The Privacy CIO, Author, CISO Redefined, Consultant and Founding Member, The Privacy Panel Alekh Kaur, Cybersecurity and Data Science Delivery Lead, HSBC Jenni Parry, Associate Director of Cyber Risk, Aon
11:45
12:00
12:15
12:30	Human-Centric Security Culture 12:30 - 13:15 Traditionally, building a security culture is based on strict industry certifications, policies, laws, and regulations. Security professionals are taught that employees in the organization are the most significant risks and to ""manage those risks."" But what does it take to integrate human centricity into your security culture? Speakers Igor Gutierrez, Information Security Officer & DPO, B. GROB do Brasil S.A. Adam Low, CTO, Zivver Federico Iaschi, Head of Cyber Security Resilience and Observability, Virgin Media O2 Miriam Mwonge, Information Management; Data Privacy Operations, East African Breweries Plc Amy Rose, Head of Governance and Compliance, NHS Confederation
12:45
13:00
13:15
13:30	Workplace AI policies: Does your company need them? 13:30 - 14:15 There is no doubt that AI is the new revolution. It is developing rapidly, both technologically and legally, and many organisations are facing the big question: How do you remain compliant, while gaining the commercial benefit of using AI? This interactive session will provide a practical roadmap to avoid AI chaos, how to overcome challenges and pitfalls, and build a responsible AI strategy in the workplace. Speakers Kristen Pennington, Partner, Privacy Law, McMillan LLP Prekshi Gupta, AI Engineer, Fugro Alexander Alaraj, Group Data Protection Officer, IKEA Retail (Ingka Group) Janine McKelvey, General Counsel - Data, Group Data Protection & Ethics Officer, BT Group
13:45
14:00
14:15
14:30	Embedding Privacy by Design to Enforce Responsible Use of Data 14:30 PM - 15:00 PM Privacy is no longer just about compliance, it’s about data. How can you unlock the value of data without compromising privacy or security? Placing data responsibility at the core of your strategy is not merely a risk avoidance exercise, it’s key to data protection, fostering collaboration between privacy and data governance teams, and foundational to trust with customers. The recent ISO 31700 Privacy by Design guidelines provide a framework for embedding privacy by design throughout the business. In this session, we’ll discuss recent Privacy by Design guidelines and what this tangible guidance means for privacy programs looking to evolve to beyond compliance to enforce responsible use of data. Key Takeaways: · Understand ISO 31700 Privacy by Design standards and how to implement. · Understand the link between Privacy and Data Governance and practical steps toward effective partnership. · Learn why purpose is the key to enabling responsible use of data without disrupting the rhythm of business. Speakers Jamie Molnar, Director of Product Marketing, OneTrust
14:45
15:00	Transformative changes: 36 out of 54 African countries embrace Data Protection Law 15:00 - 15:45 African countries are continuing to strengthen data protection legal and regulatory frameworks. To date, 36 out of 54 African countries have data protection laws and/or regulations. Sixteen countries have signed the African Union Convention on Cyber Security and Personal Data Protection adopted on 27 June 2014 (“Malabo Convention”) and thirteen countries have ratified it, the latest being Niger. 2022 was also a year of unprecedented enforcement. Speakers Olusegun Oyesanya, Legal Counsel & DPO, Renmoney Microfinance Bank Mercy Wafula, Data Protection and Privacy Professional - Financial Services Sector Reena Shah, Regional Senior Data Privacy Counsel, M-KOPA Mohammed Embaby, Group Data Protection & Privacy Officer, Boubyan Bank
15:15
15:30
15:45
16:00	The UK Government renews its efforts to UK's Data Protection 16:00 - 16:45 The UK is reforming its Data Protection regime with the Data Protection and Digital Information Bill (No. 2). The Bill does not comprise an extensive overhaul of the UK's data protection laws, but rather a set of clarifications and adjustments to provide organisations with greater flexibility over the use of personal data. Host Alexandra Khammud, Senior Information Security Project Manager (Data Protection and Privacy Engineering) Speakers Barry Moult, Owner / Data Protection Consultant, BJM IG Privacy Ltd Simon Pillinger, Head of Governance, Ethics, and PPI (DPO), Akrivia Health Henry Davies, Data Protection Lead, Likewize Angela Potter, Director of Privacy Research, CIPP/E, CIPM
16:15
16:30
16:45
17:00	U.S. Data Privacy laws launch a new era in 2023 17:00 - 17:45 California, followed by Colorado, Connecticut, Utah, and Virginia are enforcing new GDPR-inspired statutes in 2023. With the United States historically allowing businesses and institutions to collect personal information without express consent, this marks a significant shift in data protection history. Speakers Glenn Jackson, CEO, Cassie (Syrenis Ltd) Petruta Pirvan, Founder & Legal Counsel, Data Privacy and Digital Law, EU Digital Partners Yugo Nagashima, Partner, Frost Brown Todd LLP – US member of the PrivacyRules Alliance Odia Kagan, Partner, Chair of GDPR Compliance and International Privacy, Fox Rothschild LLP Sean Vargas-Barlow, Principal Lead & Privacy Counsel, ResMed
17:15
17:30
17:45
18:00	Mastering Employee DSARs 18:00 - 18:45 Responding effectively to data subject access requests (DSARs) can be challenging. Complex requests, especially from current or former employees, often require handling a wide range of data (often sensitive) across the enterprise. Whether it’s wading through the review process of thousands of emails, baring the cost of external counsel, or working with IT to ensure you have all the personal data you need from various (tricky to collect / legacy / remote) data sources, employee DSARs can soon become an extremely challenging exercise to fulfil. Join our expert panel to discuss key considerations when responding to employee DSARs and how technology can help fulfil complex requests. Host Kobi Nissan, CPO and co founder, MineOS Speakers Nandita Rao Narla, Head of Technical Privacy & Governance, DoorDash Matthew Goodbun, Senior Privacy Consultant, BSI Shereen Kenyon, Data Protection Officer - Germany & Senior Privacy Manager, SharkNinja Nicole Mendiboure, Senior Legal Counsel, River Island
18:15
18:30
18:45
19:00
19:15

Agenda - 30th November 2023

Day 2

Day 2: Thursday 30th November 2023

PrivSec Global Agenda | Timings shown in Greenwich Mean Time (GMT)

Scroll left/right to view

GMT	Thursday 30th November 2023
09:00	How safe is your financial data? 09:00 AM - 09:45 AM Due to the sensitive and personal nature of financial data, privacy plays a significant role in the industry. Identity theft is one of the major privacy issues, data getting into the wrong hands can result in a series of undesirable outcomes. How can you be confident that your data is in safe hands, and what are the red flags to avoid when falling victim to a scam? Speakers Ernestas Bartkevičius, Head of Identity and Access Management, SEB Philip Aiwekhoe, Chief Information Security Officer & Data Protection Officer, NPF MICROFINANCE BANK PLC Caro Robson, Digital Legal, Risk and Compliance Expert Shane Gohil, DPO, The DPO Centre
09:15
09:30
09:45
10:00	Technology: The problem with facial recognition regulation 10:00 AM - 10:45 Facial recognition technology is now commonly used on most personal devices and to help criminal investigations, and it’s one of the most advanced technologies of recent years. However, after The European Parliament recently passed its version of the Artificial Intelligence Act, the use of facial recognition remains one of artificial intelligence's riskiest uses. As facial-recognition tools are full of biases, lawmakers are ready to fight to avoid any risk of mass surveillance. Maybe the solution lies not in banning facial recognition or any one type of biometric, but in regulating how we consent to the sharing and tracking of identifying data. Host Marta Dunphy-Moriel, Founder, Dunphy-Moriel Legal Services LTD Speakers Emma Martins, Data Protection Commissioner, Office of the Data Protection Authority Fiorella Arevalo, Senior Global Privacy Officer, Media.Monks
10:15
10:30
10:45
11:00	Navigating the Data Retention Frontier: Advancements, Challenges and Future Strategies 11:00 AM - 11:30 AM Join us in this session as we navigate the ever-evolving landscape of data retention. Our distinguished panelists will unravel the latest advancements, tackle pressing challenges and unveil cutting-edge strategies that are reshaping the future of data management. Gain valuable insights that promise to redefine your approach to safeguarding sensitive information in this era of dynamic data governance. Speakers Ellie Dowsett, DPO, Best Companies Ivana Butorac, Data Protection Manager - Team lead EU Regulatory & Compliance, Sopra Steria
11:15
11:30	ChatGPT: the data privacy nightmare? 11:30 AM - 12:15 PM ChatGPT has taken the world by storm. Within two months of its release, it reached 100 million active users, making it the fastest-growing consumer application ever launched. The problem is it’s fuelled by our personal data, and rises key privacy issues, especially against the UK GDPR. Is it time to regain control? Speakers Elisabeth Mackay, PA Consulting Erin Francis Nicholson, Global Head of Data Protection & Privacy, Thoughtworks Victoria van Roosmalen, CISO & DPO, Coosto Fiorella Arevalo, Senior Global Privacy Officer, Media.Monks Elizabeth Smith, DPOrganizer
11:45
12:00
12:15
12:30	Ethical AI in principle: Innovation overtaking human rights? 12:30 - 13:15 The intersection of artificial intelligence and privacy continues to attract attention, with a focus on ensuring that AI systems respect individual privacy rights and avoid discriminatory practices. As technology races forward and regulatory efforts strive to catch up, the question emerges: Are we shaping a sustainable ethical future amid rapid advancement? Speakers Jessica Figueras, CEO, Pionen Nicolette Nowak, Vice President Legal, AGC & DPO, Beamery Gal Ringel, MineOS CEO and co-founder, MineOS Emmi Bane, Senior Privacy Program Manager, HP
12:45
13:00
13:15
13:30	Healthy data 13:30 - 14:15 Managing health data, especially in the context of digital health services, wearables, and health apps, remains a critical topic, particularly in light of the ongoing global health concerns. Health app users are largely unprotected from having their data passed along to tech giants and marketing companies that might target them with ads. What are lawmakers and the healthcare industry doing, or should be doing, to regulate the industry and protect all types of patient privacy? Host Marta Dunphy-Moriel, Founder, Dunphy-Moriel Legal Services LTD Speakers Diogo Duarte, Data Protection Officer, The European Society for Immunodeficiencies (ESID) Matt Collinge, Principal Consultant - Data Privacy Security & Ethics, Slalom Gene Price, Attorney at Law, Frost Brown Todd LLP \| US member of the PrivacyRules Alliance
13:45
14:00
14:15
14:30	Navigating International Data Transfers: Ensuring Privacy Compliance in a Global Data Ecosystem 14:30 PM - 15:00 PM As data flows seamlessly across borders, ensuring privacy compliance in international data transfers has become a critical challenge. This session will provide insights into the legal, regulatory, and technical aspects of transferring data across borders while maintaining data protection standards. Explore the latest frameworks and mechanisms for legally and securely transferring data, including the implications of the GDPR, Schrems II, and other global privacy regulations. Host Geoffrey Ceunen, Head of Sales, RESPONSUM Orrie Dinstein, Global Chief Privacy Officer at Marsh & McLennan Companies, Inc. Erin Francis Nicholson, Global Head of Data Protection & Privacy, Thoughtworks
14:45
15:00	Ransomware as a service (RaaS) 15:00 - 15:45 Gone are the days when every attacker had to write their own ransomware code and run a unique set of activities. RaaS is pay-for-use malware enabling attackers to use a platform that provides the necessary hacking code and infrastructure to launch a ransomware campaign. Take a deep-dive into these evolving tactics, their impacts on businesses, and countermeasures against this digital extortion ecosystem. Speakers Joshua Copeland, Security Director (Cyber) at AT&T Onur Korucu, Author, Harvard Business Review, Global Vice President Consulting Services James Bowling, Senior Lawyer, Security and Investigatory Powers, BT Group
15:15
15:30
15:45
16:00	Social Media Scams: A New Social Engineering Battleground 16:00 - 16:45 The expanding realm of social media trade and platforms has led individuals to place greater reliance on trust indicators. These indicators encompass factors like an account's follower count, connections, verification status, and duration of activity. Unfortunately, this growing dependence on such indicators has rendered people more vulnerable to falling victim to cyber fraud and deceptive schemes. Delve into real-world cases, learn to recognize red flags, and gain insights into protecting yourself and your organization from scams and cyberattacks. Speakers Michael Fortune, Senior Manager Data Behaviours & Culture, Data Legal, Compliance & Assurance, BT Group Steve Wright, Partner, Privacy Culture Lily Li, Founder/President of Metaverse Law Corporation
16:15
16:30
16:45
17:00	Sponsor Session 17:00 PM - 17:30 PM Speakers Speaker lineup to be announced, more info coming soon!
17:15
17:30	Cyber risks to critical infrastructure are on the rise 17:30 - 18:15 Critical infrastructure has always been a major target for cybercriminals and State-Sponsored hackers. Given the Russia-Ukraine war, cyber-attacks and threats have grown exponentially, and the level of sophistication of these attacks is permanently evolving. Companies now need to be extra prepared, with devices such as cameras, smart speakers, or locks and commercial appliances being potential entry points for attackers. Join us to find out how to survive this chronic state of cyber fear. Speakers Annick O’Brien, COO, Cybsafe Helen Proctor, Legal Director Security, Business and Investigatory Powers, BT Group Will Jackson, CEO, C2 Risk Gene Price, Attorney at Law, Frost Brown Todd LLP \| US member of the PrivacyRules Alliance
17:45
18:00
18:15
18:30	Your Right to Know: Striking a balance on student privacy 18:30 - 19:15 In recent years, public schools, especially in the US, have come under intense transparency scrutiny. One one hand, schools have a duty to understand what’s happening in their schools and behind closed doors, and be transparent. On the other hand, students have special rights to privacy enshrined in both state and federal law. How do schools balance the transparency they owe the public with the confidentiality they owe their students? Speakers Joseph Gridley, Chief Data Privacy Officer, University of Maryland Yugo Nagashima, Partner, Frost Brown Todd LLP – US member of the PrivacyRules Alliance Lauren Webb, Principal Lawyer, Data – Group and Digital, BT Group Prateek Jain, Mandatly
18:45
19:00
19:15

PrivSec Global

Agenda

Register & Login To The Event App

Speakers

Sponsors

On-Demand Content

Agenda

A Global Livestream Experience29th & 30th November 2023

PrivSec Global brings together leading experts from around the globe, for a 2-day livestream experience that ensures attendees have access to the latest information, guidance and advice on data protection, privacy and security.

All sessions will be recorded and available on-demand.

Agenda - 29th November 2023

Day 1

Day 1: Wednesday 29th November 2023

Scroll left/right to view

Speakers

Speakers

Speakers

Speakers

Speakers

Speakers

Speakers

Speakers

Host

Speakers

Speakers

Host

Speakers

Agenda - 30th November 2023

Day 2

Day 2: Thursday 30th November 2023

Scroll left/right to view

Speakers

Host

Speakers

Speakers

Speakers

Speakers

Host

Speakers

Host

Speakers

Speakers

Speakers

Speakers

Speakers

A Global Livestream Experience
29th & 30th November 2023