1

19 November 2020
Thursday

16.00 - UK / 17.00 - CET

Spotlight California: The CCPA from compliance to enforcement & the new CPRA

Jennifer Archie, Partner, Latham & Watkins, USA
Michael Rubin, Partner, Latham & Watkins, USA

Chair: Stewart Dresner, Chief Executive, Privacy Laws & Business

More details

Two leading US privacy law experts will share observations and recommendations from the field, on the basis of advising hundreds of US companies across diverse sectors in readiness, compliance, and enforcement in California and beyond. This session will provide practical tips informed by direct experience engaging with the key US enforcement authorities.

• The California Consumer Privacy Act (CCPA) was enacted in June 2018 and entered into force January 2020. The new California Privacy Rights Act (CPRA) was adopted in November 2020 and will enter into in force January 2022.
• Has CCPA evolved to just another compliance requirement or is the law driving real changes in the market around the security and privacy of consumer data?
• What are the indirect impacts of CCPA, CPRA and other privacy laws on class action or other private party disputes filed in court or in arbitration proceedings?
• Proposition 24, also known as the California Privacy Rights and Enforcement Act of 2020 (CPRA), garnered the support of a majority of California voters at the November 3 ballot – what does this portend for readiness and compliance?
• How do these new privacy regulations converge and depart around core individual rights and programmatic requirements, particularly as against GDPR or other non-US standards?

2

23 November 2020
Monday

14.00 - UK / 15.00 - CET

Switzerland’s new data protection law’s changes impacting business

Urs Maurer-Lambrou, Delegate International Affairs, Swiss Federal Data Protection and Information Commissioner

Chair: Valerie Taylor, Consultant, Privacy Laws & Business

3

26 November 2020
Thursday

14.00 - UK / 15.00 - CET

International data transfers after the European Court’s Schrems II judgment

Wojciech Wiewiórowski, European Data Protection Supervisor
Geoffrey Devin, Legal Officer, Policy and Consultation Unit, European Data Protection Supervisor

Chair: Laura Linkomies, Editor, Privacy Laws & Business

4

30 November 2020
Monday

14.00 - UK / 15.00 - CET

Nigeria: Operating under the Current Data Privacy and Data Protection Framework

Rotimi Akapo, TMT Partner, Advocaat Law Practice, Nigeria

Egypt’s data protection law 2020: Start preparing now

Masha Ooijevaar, Associate, Clyde & Co, UAE

Chair: Laura Linkomies, Editor, Privacy Laws & Business

5

3 December 2020
Thursday

14.00 - UK / 15.00 - CET

The increasing Record of Processing Requirements around the globe – A Review & Recommendations

Frank Madden, Principal, Privacy and Data Protection, Promontory, UK

Chair: Helena Wootton, Correspondent and Data Lawyer, Privacy Laws & Business

More details

This comprehensive survey results from Frank Madden’s months of research on the Record of Processing Requirements (RoPA) for Controllers and Processors in every region around the world. He will explain both commonalities and differences. The presentation will show both the Top RoPA requirements and will make recommendations. This session will be of immediate practical value.

6

7 December 2020
Monday

14.00 - UK / 15.00 - CET

How the UK is assessing the adequacy of, and free flow of data with, other countries and vice versa in the post Brexit era

Oliver Marsh, Head of Data Adequacy (EU/EEA), Department for Digital, Culture, Media & Sport (DCMS), UK
Urs Maurer-Lambrou, Delegate International Affairs, Swiss Federal Data Protection and Information Commissioner
Charles Taillefer, Director at the Privacy and Data Protection Policy Directorate, Innovation, Science, and Economic Development, Canada

Chair: Valerie Taylor, Consultant, Privacy Laws & Business

• The DCMS is the UK government department. responsible for data protection law policy

7

10 December 2020
Thursday

14.00 - UK / 15.00 - CET

The only way is Ethics

Rachael Annear, Senior Associate, Freshfields Bruckhaus Deringer, UK
Ellis Parry, Data Ethics Adviser, Technology and Innovation, ICO, UK
Giles Pratt, Partner, Freshfields Bruckhaus Deringer, UK

Chair: Stewart Dresner, Chief Executive, Privacy Laws & Business

More details

This session will include a discussion on accountability, fairness, transparency, and explainability in the context of everyday processing of personal data and Artificial Intelligence.  The session will include a look at how data ethics is assessed by regulators,  such as the The Competition and Markets Authority, the Centre for Data Ethics and Innovation and the European Commission. A case study will provide further insights.

8

14 December 2020
Monday

14.00 - UK / 15.00 - CET

Regulating AI - Elephants in the room

Reuben Binns, Associate Professor of Human Centred Computing, University of Oxford, UK
Simon McDougall, Executive Director - Technology Policy and Innovation, ICO, UK
Peter Church, Counsel, Linklaters, UK
Richard Cumbley, Partner, Linklaters, UK
Georgina Kon, TMT Partner, Linklaters, UK

Chair: Stewart Dresner, Chief Executive, Privacy Laws & Business

More details

This session will provide expert insight into the regulation of artificial intelligence and algorithmic decision making. In the first half, Professor Reuben Binns will talk about his work with the Information Commissioner’s AI team to create an auditing framework for artificial intelligence technologies. In the second half there will be an opportunity to ask questions to Simon McDougall, Deputy Information Commissioner for Regulatory Innovation and Technology, about the development of this framework and his plans for 2021.

9

17 December 2020
Thursday

14.00 - UK / 15.00 - CET

Facial recognition technology in an employment and consumer context

Brent Homan, Deputy Commissioner, Compliance, Office of the Privacy Commissioner of Canada
Cameron Craig, Deputy General Counsel & Group Data Protection Officer, HSBC, UK
Jane Finlayson-Brown, Partner, Allen & Overy, UK
David Smith, Special Advisor, Allen & Overy, UK

Chair: Stewart Dresner, Chief Executive, Privacy Laws & Business

More details

What is Facial Recognition Technology? (FRT) and who is talking about it? Human rights law, data protection law, employment law and consumer law. What can FRT be used for and why is it so interesting for organisations? Audience poll. What is the regulators’ approach to FRT? Where do the concerns lie and what action has been taken? What are the challenges in using FRT in practice? Beyond the law - considering the ethics of FRT.

10

11 January 2021
Monday

14.00 - UK / 15.00 - CET

11

18 January 2021
Monday

14.00 - UK / 15.00 - CET

My business wants to monetize its data – Help!

Fiona Maclean, Partner, Latham & Watkins, UK
Amy Smyth, Knowledge Management Lawyer, Latham & Watkins, UK

Chair: Helena Wootton, Correspondent and Data Lawyer, Privacy Laws & Business

More details

This will be a practical session looking at how to identify and exploit data assets in a compliant way. Issues considered will include an appropriate legal basis, purpose limitation, transparency, data minimization, data sharing and contracts. The session will assist you when preparing a Data Protection Impact Assessment and Using a Legitimate Interests Assessment. How should you put in place adequate processes? Is responsible and ethical use of personal data a trend which your organization can embrace?