Partners Brian Hengesbaugh and Harry Valetk hosted Practising Law Institute’s Global Data Protection Boot Camp 2020. The program – now in its fifth year – brings together individuals charged with formulating their organization’s global privacy compliance strategy. Harry Valetk chaired the 4-hour* program, which has been designed to help privacy practitioners within every organization – legal, compliance, IT security, and audit –obtain practical information and gain insights into key substantive and procedural compliance recommendations in relation to a range of data protection laws across jurisdictions. In addition to discussions on the EU General Data Protection Regulation (GDPR), California Consumer Protection Act (CCPA) and Brazil’s General Data Privacy Law (GDPL), the program tackled the new privacy concerns brought about by the COVID-19 global pandemic. Throughout the sessions, distinguished experts from both government and industry shared valuable insights on what organizations should be doing to manage and avoid enforcement risks, and offered a wide range of practical considerations on how to map out an organization’s compliance strategy.
The Data Protection Boot Camp is comprised of four modules:
- Legislative Developments in Data Protection Laws – In this module, the panel covered what organizations can expect following GDPR’s implementation in Europe and elsewhere, and explored various approaches undertaken by supervisory authorities in overseeing compliance. It also provided an overview of the privacy laws in California and updates on other legislative developments.
- Nuts and Bolts of Building a CCPA Compliance Program – In addition to an overview of the CCPA, participants received helpful tips on implementing the CCPA Regulations and in overcoming the challenges in B2B and B2C implementation.
- COVID-19, Pandemic Planning, and Global Data Privacy Strategies – This panel covered the fundamental requirements for notice, consent, and data processing activities in the context of a pandemic; the contact tracing app considerations; the key considerations for employee health screenings; and the privacy and security issues with teleworking.
- Nuts and Bolts of Building a Global Data Protection Program – This session covered the key elements of a global data protection program, which should take into consideration the appropriate governance and accountability frameworks. The panel also covered whether a global data breach notification can really be done and how to stay ahead of forthcoming legislative developments.
Faculty members included:
Ivelisse Clausell
Global Head of Privacy & Information Security, Esperion Therapeutics, Inc.
Jordan Crenshaw
Executive Director & Policy Counsel, US Chamber of Commerce
John Crisan
Chief Privacy Officer, Johnson & Johnson
Jo Ann Davaris
Head of Global Privacy, Booking Holdings
Benjamin Hayes
SVP, Privacy & Chief Privacy Officer, Zeta Global
Anna Leipsic
Vice President, Data Privacy, Americas, Barclays
Bruno Gencarelli
Head, International Data Flows and Data Protection Unit, European Commission
Gabriela Paiva-Morette
Trench Rossi, Sao Paolo, Brazil
Stefan Niederer
Senior Data Protection Officer
German Federal Commissioner for Data Protection and Freedom of Information
Michelle Perez
Chief Privacy Officer, Dow Jones
Amy Purcell
Chief Privacy Officer, Vanguard
Stacey D. Schesser
Supervising Deputy Attorney General
Consumer Law Section – Privacy Unit
Office of the Attorney General
California Department of Justice
Timothy Smith
Vice President & Chief Privacy Officer, Unum Group
Farah Y. Zaman
Vice President, Chief Privacy Officer, Meredith Corporation
For more information about the program, please click here. *Eligible for CLE credit