09:15 AM – 09:19 AM (GMT)

Opening Remarks

09:19 AM – 09:40 AM (GMT)

Keynote Address 1

A Post-Brexit Perspective: Managing Personal Data Breaches 

Brexit will have a profound effect on how UK businesses address their privacy programmes. Faced with new challenges for maintaining data transfers across Europe, organisations need a proactive plan in place to manage personal data breaches. Because of this, organisations are asking questions like when can you rely on the one-stop shop mechanism? What is the overlap between ICO requirements and UK-relevant sectoral law breach obligations such as the PECR, NIS and eIDAS? What will be the impact of Brexit on breach management and notification obligations with respect to the “UK GDPR” and EU GDPR requirements? In this session, we’ll address these questions, share the latest updates on Brexit, highlight specifics of the ICO’s requirements, and provide practical advice for ongoing incident and breach management in the post-Brexit era.​

Key takeaways:​

​

• Learn the overlaps between ICO requirements and UK-relevant sectoral law breach obligations​

• Understand the impact of Brexit on “UK GDPR” and EU GDPR breach management and notification obligations​

• Gain actionable insights and practical advice for ongoing incident and breach management in the post-Brexit era

Joseph Byrne,

CIPP/E, CIPM

Privacy Solutions Engineer, OneTrust, UK

Sponsored By 

09:40 AM – 09:50 AM (GMT)

Virtual Q&A Session

09:53 AM – 10:04 AM (GMT)

Keynote Address 2

Privacy Shield: International Data Transfers and the Schrems II Ruling

​​

• What next for international data transfers?

• What does it mean for international transfers under standard contractual clauses?

• Privacy shield is gone: now what?

Helen Woollett

Group Privacy Counsel & Data Protection Officer,
Natura &Co, UK

10:06 AM – 10:27 AM (GMT)

Exclusive Presentation

(Service Provider makes Exclusive Presentation)

​

The UK GDPR – A New Era: Discover the future according to UK Data Protection Officers

Sponsored By 

Rob Masson

Founder & CEO,

The DPO Centre Ltd,

UK

10:30 AM – 11:22 AM (GMT)

Joint Case Study Presentation

(General Counsel/Law firm Partner/Service Provider: Everyone speaks for about 10 mins.)

​

Is the GDPR a Bar to an Effective Anti-Bribery Compliance Programme?

​​

• Key issues

• Beyond due diligence

• increased cost and burden of compliance

• Other GDPR obligations requiring changes to due diligence processes

• Pandemic and Privacy Regulations: Trends for Corporates

Lisa Glover-Gardin

ISenior Director, Global Head of Privacy Legal, PayPal,

USA

Abhishek Bharti

Senior Counsel, Legal Affairs and Government Relations, GE, India

Julie Varcoe-Cocks

Head of Ethics Regulatory and Compliance / Data Protection Officer, Serco, UK

11:25 AM – 11:40 AM (GMT)

Virtual Q&A Session

11:42 AM – 01:38 PM (GMT)

Joint Case Study Presentation

(General Counsel/Law firm Partner/Service Provider: Everyone speaks for about 10 mins.)

​

Cybersecurity Incident and Breach: Shifting from Reactive to Proactive

​​

• Best practice to build an operational and compliant incident response program

• How to ensure consistency and efficiency across multiple jurisdictions as the privacy regulatory landscape becomes more stringent and complex

• Review of real-life scenarios from common and not-so-common privacy incidents, including mitigation and remediation

Paula Barrett

Global Co-lead Privacy, Cybersecurity and Information Law,  Partner,  Eversheds Sutherland , UK

Scott A. Warren

Partner,

Squire Patton Boggs,

Japan

Zameer Nathani

Senior Vice President and General Counsel,

UFO Moviez Limited. India

Dr. Akhil Prasad

Director, Country Counsel India and Company Secretary, Boeing, India

Linda Briceno

Senior Data Privacy and

Ethics Manager,
Lloyds Banking Group, UK

01:40 PM – 02:20 PM (GMT)

Joint Case Study Presentation

(General Counsel/Law firm Partner/Service Provider: Everyone speaks for about 10 mins.)

​

Data Privacy and Data Security: How to Comply with Regulations?

There is no privacy without security. But security alone is not enough to protect your customer’s

sensitive data. Strong privacy protection enables you to unlock data for new purposes and makes the job of the security team a lot easier.

​

Join this session to learn:

• How to make sure your business complies with regulations?

• Why both data privacy and data security should matter to you?

• How robust security controls are not enough to adequately protect your data?

• How the focus is expanding from the perimeter to implementing privacy controls on the data itself?

• ​How privacy technologies and access controls work hand-in-hand to ensure your data is protected?

Antonius Alexander Tigor

Legal Director, Womble Bond Dickinson LLP,

UK

Paul Lanois

Global Cybersecurity,
 Data Privacy and Corporate Counsel | Lawyer,
 Fieldfisher, USA

Claire Robson

​Head of Governance Legal and Compliance/ Data Protection Officer and Company Secretary, Great Ormond Street Hospital Children's Charity, UK

02:22 PM – 02:37 PM (GMT)

Virtual Q&A Session

02:40 PM – 03:37 PM (GMT)

Joint Case Study Presentation

(General Counsel/Law firm Partner/Service Provider: Everyone speaks for about 10 mins.)

​

Consent Management: The Key to Data Compliance

​​

• Key legal and regulatory developments on consent management requirements since May 25th 2018

• Collecting consent while preserving the ability to drive business, focus on the lessons learned from the media industry

• Consent management as a pillar of customer relationship: best practices for integrating GDPR consent collection within the customer journey

• Making customer consent and preferences effective across a complex tech stack: do’s and don’ts

Natalie Salunke

Experienced General Counsel & Head of Legal,
 RVU, UK

Gordon Wade

Data Protection Officer & Group Legal Counsel, Hostelworld Group, Ireland

Khurram Chaiwalla

Data Privacy Manager – ASEAN, Bayer,

Singapore

03:40 PM – 03:55 PM (GMT)

Joint Case Study Presentation

(General Counsel/Law firm Partner/Service Provider: Everyone speaks for about 10 mins.)

​

Schrems II - What Now for Data Transfers

​​

• What did the CJEU say?

• How to assess risk?

• What supplementary measures are required now?

• Challenges with the EDPB guidance

Nick Graham

Global Co-Chair - Privacy

and Cyber Security Group,
 Partner, Dentons, UK

03:57 PM – 04:25 PM (GMT)

Joint Case Study Presentation

(General Counsel/Law firm Partner/Service Provider: Everyone speaks for about 10 mins.)

​

CEOs’ Concerns on Cyber Security & Data Privacy: Implications and Actions for General Counsel & Law Firms

​

• The emerging data privacy regulatory space

• Manage cybersecurity and data privacy during pandemic

• The importance of a proactive approach

• Cyber and physical security: safeguarding customer data

• What do the next four years hold for cyber security & data privacy in the UK/Europe region?

Igor Poroger

Senior Legal Counsel, Global Data Privacy Lead,

SITA, UK