2022 Conference Programme & Speakers



 Conference Programme

Sunday 3 July
Monday 4 July
Tuesday 5 July
Wednesday 6 July
Social Programme



Conference Speakers

Data Protection Authorities and Policy Makers

  • Stephen Almond, Director of Technology and Innovation, ICO, UK
  • Claudia Berg, General Counsel, ICO, UK
  • Antoine Bon, Legal Advisor, Data Protection Authority, Belgium
  • Stephen Bonner, Executive Director, Regulatory Futures and Innovation, ICO, UK
  • Emilie Brunet, Legal Advisor, International Service, CNIL, France
  • Julian Deckers, Legal Adviser, Data Protection Authority, Belgium
  • Junichi Ishii, Director for International Affairs, Personal Information Protection Commission, Japan
  • Ti-Ting Lee, Assistant Commissioner, Personal Data Protection Commission, Singapore
  • Gwendal Le Grand, Head of activity for enforcement support and coordination, European Data Protection Board
  • Michael McEvoy, Information and Privacy Commissioner for British Columbia, Canada
  • Mairead O’Reilly, Senior Data Privacy Lawyer, ICO, UK
  • Anne Schilmoller, Policy Officer, International Data Flows and Protection, Directorate-General for Justice & Consumers, European Commission
  • Elisabeth Stafford, Data Protection Reform Team, Department for Digital, Culture, Media and Sport (DCMS), UK
  • Chris Taylor, Head of Assurance (Supervision), ICO, UK
  • Wojciech Wiewiorwski, European Data Protection Supervisor, European Data Protection Supervisor


Law Firms

Academics and Interest Groups

  • Iain Corby, Executive Director, The Age Verification Providers’ Association (AVPA) & Project Manager, euCONSENT, UK
  • Christopher Millard, Professor of Privacy and Information Law, Centre for Commercial Law Studies Queen Mary University of London, UK
  • Finn Myrstad, Head of Digital Services Section, Norwegian Consumer Council, Norway

Privacy Laws & Business

Back to top

Conference Themes

This conference will identify the forces at play and help you to take them into account in your risk assessment of how your organisation should act.

How will the regulators redress the balance against companies with investigations and sanctions?

How will the European Union continue to exercise its global ambition as the “gold standard” in privacy and digital services? To what extent are the European Economic Area (EEA) Member States’ Data Protection Authorities working in a well coordinated way?

Will the United Kingdom government’s drive to take its own path enable it to keep its valuable EU “adequacy” status? Will the UK’s legislative innovations become one of the Winds of Change in the EEA?

To what extent will collective action play a part in constraining organisations’ behaviour?

How does an organisation get direction from top management to balance commercial gains against winning its users’ trust and keeping it? How can an organisation most effectively gain and secure its reputation for fairness?

How should companies use data protection law as one of its criteria for choosing its cloud services? How should companies ethically harness Artificial Intelligence and machine learning? How can individuals exercise free will if companies use manipulative design techniques?

Several countries in the Americas and in Europe have relaxed their laws on the sale and consumption of recreational cannabis – a transition from a criminal to a health issue. What is the impact on the collection and processing of such sensitive personal data?

The adoption of data protection laws in some countries in Asia and the Middle East means that these laws are changing from a rights to a transactional basis. This is a shift to a data protection law as an economic enabler, a safe venue for the processing of personal data. Some countries may be weak on principles but strong on regulatory enforcement.

Back to top