K Royal, Debra Bromson, Maggie Gloeckle, Ashley Slavik

With the changing compliance landscape for companies, whether in a controller or processor role, it is becoming more difficult to understand what contracts need to be in place. The European Union’s General Data Protection Regulation is quite prescriptive, but the new standard contractual clauses and the guidance issued by the European Data Protection Board add a level of simplicity that is quite confusing to many companies. In addition, the United Kingdom now has “adequacy” and is also expected to issue their own SCCs – or copy Europe’s. This is in addition to what California, Virginia, and US federal laws might require, not to mention other countries which have data transfer requirements. Join us as we discuss what needs to be in the four corners of the contract across the four corners of the world.


K Royal, Associate General Counsel, TrustArc

Debra Bromson, Privacy Consultant

Margaret Gloeckle, VP, Privacy & Compliance Counsel, A+E Networks

Ashley Slavik, Chief Privacy Officer & Lead Data Counsel, Veeva Systems

Ashley Slavik
Ashley Slavik

Chief Privacy Officer & Lead Data Counsel
Veeva Systems

Debra Bromson

Data Privacy & Cybersecurity Attorney

K Royal
K Royal

Lead Privacy Counsel

Maggie Gloeckle

Chief Privacy Officer
HP Enterprises