Between a Rock and Hard Place: Competing Obligations Under the CLOUD Act

In the recently enacted CLOUD Act, Congress made it clear that the Stored Communications Act would extend outside the U.S. A number of open questions remain, however, about the sometimes conflicting demands of U.S. and non-U.S. law for cloud data stored outside the U.S. In addition, the international trends towards data localization continues. This session…

What is Old is New Again: ePrivacy GDPR, and CCPA–2019 and Beyond

As the Wall Street Journal reported on its front page at the end of February, third party mobile app SDKs collect data in unexpected ways and in ways that may be “personal data” or “personal information” under applicable law. The ePrivacy directive and, more recently, the CCPA, present real challenges to companies engaging in advertising,…

International Breach Response – Above and Beyond the Law: How to Balance Legal Compliance, Cultural Competence and Leverage All Your Cross-Border Resources

Coordinating an international breach response involves a complex matrix – multivariate laws, diverse experts, different languages, cultures, and commercial sensitivities. This panel will explore how to discharge legal obligations across disparate jurisdictions, controlling the message across business units all over the world, all while delivering on commercial standards and meeting cultural expectations. Particular focus will…

Transatlantic Trends in Genetic Privacy

Modern genetics offers the potential to revolutionize medicine. Genetic privacy also raises some of the toughest regulatory challenges of the 21st Century. This session looks at the practical challenges faced by life science businesses when developing necessary privacy programs. It focuses on law, regulations, and ethics as developing in Europe and the U.S. Michael G.…

Chinese Cybersecurity and Privacy Law

China has been quietly creating a materially different approach to cybersecurity and privacy which serves the central purpose of defending the Chinese notion of cyber sovereignty. Much uncertainty remains about the newly-effective laws and regulations, but it is clear that foreign technology and others companies operating in China should rapidly focus on its significant restrictions…

Trends in Global Privacy Enforcement and How to Allocate Scarce Compliance Resources

Over 100 countries now have general personal data protection laws. Compliance budgets are finite. Something has to give. This session will report on trends in actual enforcement of global privacy laws and the focus of regulators around the world, giving guidance on both (1) the regions and countries that are more actively enforcing their laws,…