IAPP Global Privacy Summit 2015

Wednesday, March 4, 9:00 a.m – 1:00 p.m

Piecing Together the Privacy Engineering Puzzle

Sean Brooks, Privacy Engineer, NIST
Naomi Lefkovitz, Senior Privacy Policy Advisor, NIST
Stuart Shapiro, CIPP/US, CIPP/G, Principal Information Privacy and Security Engineer, MITRE
Julie Snyder, CIPP/US, CIPP/G, CIPM, Lead Information Privacy and Security Engineer, MITRE
Harriet Pearson, CIPP/US, Partner, Hogan Lovells US LLP

Now more than ever, we’re seeing new technologies in the news that challenge our conceptions of privacy, whether it’s concerns about Big Data or unease over the Internet of Things. The logical solution? Include privacy considerations in the systems engineering and development process. But it’s not that straightforward. Join us for a survey of the evolution of “privacy engineering” and how it can be used to achieve Privacy by Design objectives and other privacy goals within your organization’s information system development processes. We’ll examine the challenges and needs privacy engineering is intended to address with a focus on risk management; explore the current efforts underway to define the privacy engineering discipline, including the status of the federal privacy engineering model the National Institute of Standards and Technology (NIST) is developing; and discuss forging the path for addressing privacy risks in information systems through privacy engineering practices. Finally, we’ll tie it all together by road testing emerging tools against use cases. This session is encouraged for those who have or plan to earn their CIPT certification.

What you’ll take away:

  • An overview of current privacy engineering efforts including common themes and distinctions
  • Ways of connecting these methodologies, including the NIST Privacy Engineering effort, with existing system development processes
  • Examples of privacy engineering uses cases and tools

Thursday, March 5, 2:30 – 3:30 p.m.

Commissioner Julie Brill and Christopher Wolf Talk Privacy and Beyond

Julie Brill, Commissioner, Federal Trade Commission
Christopher Wolf, Director, Global Privacy and Information Management Practice, Hogan Lovells US LLP

FTC Commissioner Julie Brill regularly emphasizes the impact of businesses’ information practices not only on consumers’ privacy but also on broader issues such as discrimination, fairness and ethics. In policy initiatives such as Reclaim Your Name and her separate statement in the agency’s data broker report, she has called for enhanced transparency and consumer control over information. In this conversation, Christopher Wolf, a thought leader in privacy and data security, engages with Commissioner Brill on issues such as EU-U.S. data transfers, data security regulation and enforcement, cooperation with other state, federal and global regulators, smart cars and the Internet of Things.

What you’ll take away:

  • Hear about FTC enforcement in the field of data security
  • Learn about the latest developments in EU-U.S. data diplomacy
  • Contemplate cutting-edge topics such as the interface of privacy regulation with fairness, equality and ethical decision making

Friday, March 6, 8:30 a.m. – 9:30 a.m.

Privacynomics: The Proper Role of Economics in Privacy Policymaking

Moderator: Mark W. Brennan, Partner, Hogan Lovells US LLP
James Cooper, Director, Research and Policy, Law and Economics Center; Lecturer in Law, George Mason University School of Law
Joshua D. Wright, Commissioner, Federal Trade Commission

Some surveys purport to show that consumers are “concerned” about privacy, but there is little evidence about what consumers are willing to trade in order to secure more privacy. Having a firm understanding of the cost and benefits of regulatory action is a prerequisite for wise policy. In this session, leading experts will discuss the importance of economic analysis and empirical evidence in developing policy and regulatory actions in the privacy space. They will discuss how policymakers can assess the potential economic outcomes of proposed actions (and avoid doing more harm than good), including by performing thorough cost-benefit analyses and collecting relevant evidence instead of relying on hypotheticals and potential biases. Using contemporary examples, they will also discuss how regulators can seek to quantify the value of industry best practices and consumer preferences, as well as the potential costs of behavior-shaping policy activities.

What you’ll take away:

  • An understanding of the importance of applying rigorous economic analysis to policy and regulatory actions in the privacy space
  • Examples of how policymakers can assess the potential economic outcomes of proposed actions
  • An understanding of how regulators can seek to quantify the value of industry best practices and consumer preferences

Friday, March 6, 11:30 a.m. – 12:30 p.m.

Driving Privacy Forward

Peter Albert, Deputy General Counsel, Privacy Officer, Progressive Insurance Companies
Hilary Cain, Director, Technology and Innovation Policy, Toyota
David Strickland, Partner, Venable LLP
Tim Tobin, Partner, Hogan Lovells US LLP

Automobiles are increasingly coming equipped with innovative technologies and services designed to enhance vehicle safety, improve vehicle performance and augment the driving experience. These technologies and services deliver a wide range of benefits to consumers and society at large. And many of these technologies and services rely upon information collected from vehicle systems. How the information “driving” these technologies and services is used and shared has the potential to raise privacy concerns. The automotive industry in the U.S. has taken the initiative to issue a set of self-regulatory commitments to driver privacy. The industry’s privacy principles (which should be issued by March 2015) offer a unique case study about how industry efforts can balance innovative service offerings and privacy. Hear from three individuals intimately involved in the development of the principles about what they cover, how they operate and what other industries can learn from them.

What you’ll take away:

  • A deeper understanding of the new automotive industry privacy principles
  • Lessons that other industries can take from these principles

Friday, March 6, 11:30 a.m. – 12:30 p.m.

Are You Ready for BCR? A Practical Guide to Find Out if You Have What It Takes

Sponsored by: Hogan Lovells LLP

Jannine Aston, Director, Privacy Compliance and Policy, International, Verizon Enterprise Solutions
Sian Rudgard, CIPP/E, Of Counsel, Hogan Lovells International LLP

All too often organisations are put off by the idea of implementing their own BCRs because they are daunted by their perception of what the approval process may involve. The aim of this session is to de-mystify the application and approval process and to provide practical advice for organisations thinking of developing their own BCRs. The session will guide the audience through the various stages covering the initial decision making process, identifying the key ingredients of a successful BCR application, and highlighting the types of issues that matter to EU regulators

What you’ll take away: 

  • Understanding the key ingredients of a successful BCR application
  • Insight into what matters to EU regulators
  • The BCR submission and approval process—de-mystified

Back To Listing
Loading data