Jennifer is a partner in the Washington, D.C. office of Latham & Watkins. She has over a decade of investigations, litigation, and counselling experience advising clients across all market sectors in matters involving computer fraud and cybercrime, privacy/data security compliance and program management, advertising and marketing practices, information governance, consumer fraud, employment and trade secrets. She has particular expertise defending clients in FTC and state consumer protection investigations and preparing for and leading the response to complex and large-scale data breach incidents.
Jennifer regularly advises global enterprises on complex cross-border compliance and data transfer challenges, compliance with US privacy and data security requirements, and leads assessments of internal privacy or security management programs, under FTC, HIPAA, NIST, financial regulatory and governmental or private standards.
Jennifer was named, for the second year in a row in 2019, to Cybersecurity Docket’s “Incident Response 30” list and was also recently named a Cybersecurity & Data Privacy Trailblazer by The National Law Journal for her pioneering work on spam law, privacy and data security.
Dr Oliver Butler is a Fellow of Wadham College, Oxford, and an Associate Research Fellow at the Bonavero Institute of Human Rights at the University of Oxford. His research interests are in information law, particularly privacy, data protection and confidentiality. His current research considers whether there are convincing justifications for regulating public authorities differently from private actors in relation to the regulation of information. He completed his PhD on the history of the public-private divide in UK information law and his teaching interests are in constitutional and administrative law. Oliver previously worked as a research assistant at the Law Commission on the Data Sharing Between Public Bodies Project and completed his BA in law at Emmanuel College, Cambridge, BCL at Lincoln College, Oxford and LLM at Harvard Law School.
Richard is Global Head of Linklaters’ TMT practice and has advised clients on privacy related issues for more than 20 years. He has worked on privacy projects across the globe including major data security incidents, large scale privacy litigation, appearances before regulators, contentious and large scale subject access issues, the privacy implications of new technology, online monitoring techniques (including by governments), cloud computing and “big data”. He has recently led teams advising Thomson Reuters, BlackRock, RBS, Hewlett Packard, News International, Disney, Live Nation, UBS, KPMG, Hyatt Hotels, AstraZeneca, Sainsburys, Deloitte and the administrators of Lehmans on domestic and international data protection and information governance projects. He is a past member of the IAPP editorial board, currently sits on Tech UK’s data advisory group and is a member of the ICC’s digital economy committee. He is listed by Chambers and Partners and Legal 500 as in the first rank of privacy and cybersecurity advisors in the UK.
Dr David Erdos is University Senior Lecturer in Law and the Open Society and Deputy Director of the Centre for Intellectual Property and Information Law in the Faculty of Law at Cambridge. He is also WYNG Fellow in Law at Trinity Hall. David's current research focuses on data protection especially as it interacts with freedom of expression and freedom of the arts and sciences. Drawing on his background in both law and political science, much of his work has engaged in systematic comparative analysis of different legal jurisdictions blending qualitative, quantitative and doctrinal analysis.
Bruno Gencarelli is the Head of the Data protection Unit within the European Commission (DG Justice and Consumers). The unit is responsible for all aspects of Commission's policies and activities in the area of data protection: negotiation, adoption and implementation of the reform of EU data protection legislation, addressing data protection issues at international level (including through the negotiation of international agreements and the adoption of adequacy decisions), monitoring the application by Member States of EU data protection legislation, ensuring the secretariat of the "Article 29 Working Party", etc. He is one of the lead negotiators of the EU-US "Umbrella Agreement" and of the Privacy Shield. He previously served as a Member of the Commission's Legal Service and as an assistant (référendaire) to a judge at the European Court of Justice after having practiced law in the private sector. He holds degrees in law and political science. He is an Associate Professor in EU Competition Law at Sciences Po Paris.
Joining the Office of the Privacy Commissioner of Canada in 2012, Brent Homan is Deputy Commissioner at the OPC, responsible for enforcement oversight of Canada’s federal public and private sector privacy laws.
Mr. Homan’s accomplishments in Privacy include key investigations such as: Facebook/Cambridge Analytica and Aggregate IQ (2019), Statistics Canada (2019), Equifax (2018), the World Anti-Doping Association (2017), Ashley Madison (2016), the Bell Advertising Program (2015), and Google Behavioural Advertising (2014). With a rich background in International enforcement, Mr. Homan has joined forces with global partners, co-leading numerous international investigations including the Global Privacy Award winning Ashley Madison joint-investigation with Australia and the US FTC and the first ever international joint-investigation in the field of Privacy (against Whatsapp) with the Dutch. Mr. Homan also created and spearheaded the Global Privacy Enforcement Network (GPEN) Privacy Sweep, now in its seventh year and involving 28 Privacy Authorities from around the world.
A leader in digital economy innovation, Mr. Homan has been examining the growing intersection of privacy, consumer-protection and anti-trust issues, with a focus on advancing collaboration across these regulatory spheres.
Prior to his appointment at the OPC, Mr. Homan was Assistant Deputy Commissioner at the Competition Bureau of Canada where he led numerous high profile misleading advertising investigations in the areas of price representations, E-Commerce and Health Fraud. In the area of health, Mr. Homan led Canada’s Tobacco Inquiry into the use of Light and Mild descriptors, culminating in the removal of Light and Mild labelling from cigarette packaging across Canada.
Richard is a disputes and investigations partner in Slaughter and May’s Data Privacy Hub, advising across all aspects of data protection and privacy, including in response to data and cyber incidents, on data related litigation and in the context of global investigation and disputes. Richard acts for major corporates, trustees and financial institutions as well as governmental bodies and international organisations.
Georgie regularly advises household names in a wide range of sectors on all aspects of information governance and privacy.
Lore Leitner is Of Counsel in the London office of Wilson Sonsini Goodrich & Rosati. For nearly a decade, Lore has advised clients on data protection and privacy, as well as cybersecurity and intellectual property-related issues. She assists clients with the design and implementation of data protection compliance programs, including those driven by the General Data Protection Regulation (GDPR), and has advised companies on data privacy in developing proactive business strategies that involve large-scale data use, regulatory investigations, and damage mitigation tactics related to cyber intrusions or data breaches. Lore also has substantial expertise in M&A and capital markets transactions, assisting deal teams by advising on privacy, data protection, and other deal-related requirements.
Delegate international affairs, Swiss Data Protection and Information Commissioner, Bern, Switzerland
Swiss representative for the plenary sessions of the European Data Protection Board (EDPB)
Partner, Maurer Law Offices, Baar/Zug, Switzerland
Board Member, Deutsche Gesellschaft für Informationsfreiheit, Berlin, Germany
Lecturer of seminars on data protection and data security since 2000.
Co-editor and co-author of the Basle Commentary on the Swiss Data Protection and Free-dom of Information Law (from 1st edition to the current 3rd edition, 4th edition planned in connection with the revised Swiss data protection law)
More than 19 years of experience as a Board Member and Chairman of listed and non-listed companies in Switzerland, Liechtenstein and Austria, in various fields from banking, finance, real estate, investment & private equity corporations to information technology and media corporations.
Examination by the Austrian Financial Market Authority (Fit & Proper Test as Chairman of an Austrian Bank) (2013)
Member, Swiss Association for Quality Assurance of Financial Services (2000-2015)
Admittance to the New York State Bar (1992)
Master of Laws (LL.M.) from Duke University School of Law; Durham, North Carolina, USA
Admittance to the bar in Bern to practice in Switzerland (1989).
Christopher Millard is Professor of Privacy and Information Law and head of the Cloud Legal Project in the Centre for Commercial Law Studies, Queen Mary University of London. He is also co-director of the Microsoft Cloud Computing Research Centre and is Senior Counsel to the law firm Bristows. He has over 35 years of experience in the technology law field, in both academia and legal practice. He is Editor and Co-Author of Cloud Computing Law (Oxford University Press) and is a founding editor of the International Journal of Law and IT and of International Data Privacy Law. Christopher is a Fellow and former Chairman of the Society for Computers & Law, a past-President of the International Federation of Computer Law Associations, and a past-Chair of the Technology Law Committee of the International Bar Association. A selection of his papers is available for free download from SSRN.
Karolina Mojzesowicz is the Deputy Head of Unit of the unit responsible for data protection at the European Commission (DG Justice and Consumers). She was one of the Commission's representatives in the interinstitutional negotiations with Parliament and Council on the General data Protection Regulation (GDPR). She is now responsible for its implementation in the EU. Mrs Mojzesowicz previously served as a member of the European Commission's Legal Service, focusing on EU Competition law and International Trade law. In that capacity, she represented the Commission in numerous cases before the European Courts and before the WTO panels and Appellate Body. Mrs Mojzesowicz studied law in Poland, the Netherlands and Germany where she obtained her PhD in 2001.
Michael is a partner in the San Francisco office of Latham & Watkins. Michael is a leading US practitioner with a unique combination of major privacy litigation and regulatory experience, sought out time and again by companies to help solve their most challenging problems.
For two decades, Michael has represented leading technology companies in their most high-stakes litigation and regulatory matters. From precedent-setting multi-district litigation to major roles in each of the record-setting FTC actions against Internet companies, Mr. Rubin has served as trusted outside counsel to Facebook, Google, LifeLock, LG Electronics, Lyft, Spotify, Symantec, Wix, and hundreds of other companies on their most sensitive and urgent matters. Michael’s cross-disciplinary practice regularly has him before regulators throughout the United States and around the world, in court, and in the boardroom.
Mr. Rubin has received awards throughout his career, most recently (in 2019) being honored as a “Top Cyber Lawyer in California” by California’s Daily Journal, and a “Client Service All Star” by BTI Consulting.
David retired from his role as Deputy Data Protection Commissioner in November 2015 and joined A&O as special adviser on data protection on 1 January 2016. David was instrumental in shaping the UK position on the General Data Protection Regulation. He was widely quoted giving the ICO view on regulatory developments – e.g. Safe harbour and the Google decision on the right to be forgotten. He also represented the ICO in the Article 29 Working Party of European Supervisory Authorities set up under the Data Protection Directive. The Article 29 Working Party is a highly influential group of national regulators across Europe who issue opinions on compliance. David was also involved at the highest level of the ICO’s enforcement regime. His wealth of experience and knowledge of data protection policy and enforcement bolsters Allen & Overy’s existing data protection team in London at a time of significant regulatory change and growing client demand for advice and support in this fast moving area. During his time as Deputy Commissioner, David saw first-hand how this area of law has evolved and the impact it can have on businesses and ordinary citizens.
Elisabeth Stafford is Head of EU Data Flows at the Department for Digital, Culture, Media, and Sport (DCMS). She has led the negotiating team for the UK in the reform of the ePrivacy Directive and the recast of Regulation 45/2001, setting data protection rules for the EU institutions. Previously, she was one of the negotiators on the GDPR and the Law Enforcement Directive for both the UK, and for the European Commission. She has also worked in private office in the Ministry of Justice, leading on human rights and EU dossiers for the Minister of State. She holds a degree in Philosophy, Politics, and Economics from the University of Oxford, and a masters in International Relations from the University of Aberdeen.