Building an International Incident & Breach Response Plan for Privacy and Security Teams

Security and privacy teams approach incident and breach response from two different outlooks. While security professionals are focused on threat vectors, privacy professionals are concerned with personal data leaks and adherence to global privacy laws. In this session, we’ll share a 72-hour personal data breach action plan and discuss how to build a international incident…

Navigating ePrivacy Requirements: New Ways to Tackle Consent, Cookies and Other Marketing Challenges

Laws like the GDPR and impending ePrivacy Regulation require organizations to rethink their use of cookies, consent and other tracking technologies. In this session, NBC Universal and OneTrust will breakdown the latest on the ePrivacy Regulation, review requirements for consent, cookies and tracking technologies under the GDPR and share new and innovative ways organizations can…

Digital Identity, Privacy and Economic Development

A billion people have no means to prove identity. Many more lack reliable means of identification and authentication. Substantial international resources are being invested in digital ID systems in developing countries. This panel, who work at the forefront of this area, will discuss the options and implications of privacy for foundational and functional ID systems,…

Canadian Privacy Law for Global Companies: What You Need to Know

Privacy law in Canada is highly dynamic. It is also extremely important to American companies due to the major amount of trade between the two countries. The Office of the Privacy Commissioner is in the process of defining the bounds of a Canadian Right to be Forgotten. Multimillion dollar CASL penalties are a reality. Jurisdictional issues…

Knowledge is Power and Portable: An In-Depth Look at the Right to Data Portability

The right to portability is one of the more complex rights provided under the GDPR and is often embedded into other privacy regimes in some form, perhaps even the California Consumer Privacy Act. It seems simple on its face, but once under review, the details of compliance can get complicated. Many companies worry about providing…

Anonymous and Pseudonymous Health Data: European and U.S. Perspectives

Different legal orders have taken varying approaches to regulating the collection, analysis and sharing of personally identifiable health data and to defining requirements for rendering health data anonymous.  This topic is of great importance for hospitals, pharmaceutical companies, and medical device manufacturers.  It is also raised by developments in the “internet of medical things.”  This session will consider…