Global Data Protection Boot Camp 2020

Why You Should Attend

Complying with laws governing privacy and cross-border data flows has never been more complicated.  U.S. companies can no longer effectively compete in today’s interconnected marketplace without leveraging data, monetizing it, and freely moving it across country borders.  That is why implementing appropriate programs to comply with data protection laws emerging around the world has never been more important.  Companies with operations in the EU, or those that otherwise deal directly with consumers in the European Union (B2C), or offer services to European companies (B2B), were forced to address the European Union’s General Data Protection Regulation (“GDPR”) requirements. 

Then California enacted a comprehensive privacy law in the United States: the California Consumer Privacy Act of 2018 (“CCPA”).  CCPA was broad in scope, and established a new comprehensive privacy framework for businesses that fall within its jurisdiction by expanding the definition of “personal information,” creating new data privacy rights for California consumers, including rights to know, access, delete, and opt out of the “sale” of their personal information, imposing special rules for the collection and sale of personal information directly from minors; and creating a new statutory damages framework for violators that fail to implement and maintain reasonable security procedures and practices to prevent data security breaches.  Since then, other states have proposed similar legislation (Nevada), Brazil enacted its General Data Protection Law (postponed), and a ballot initiative may result in the California Privacy Rights Act of 2020 (“CPRA”). 

In the midst of this, and to complicate an already complex area of law, the COVID-19 pandemic struck.  And with it, a host of new privacy concerns arose as health screenings, contact tracing, and other return-to-office initiatives took off around the world. 

This half-day boot camp – now in its fifth year – brings together individuals charged with formulating their organization’s global privacy compliance strategy.  It is for those of you who must implement the “nuts and bolts” of GDPR, CCPA, Brazil’s General Data Privacy Law (“GDPL”), and other privacy laws, and evaluate the right approach for your organization.  What are the practical implications of your chosen approach?  What are the risks?  And how do you implement the procedural enhancements now commonly required?  This program is for privacy practitioners within every organization – legal, compliance, IT security, and audit – hoping to gain insights and practical information about the ongoing conversation surrounding GDPR, CCPA, GDPL and other privacy laws.

What You Will Learn

• Gain insights on key substantive and procedural compliance recommendations for GDPR CCPA, GDPL, and other privacy laws
• What are the fundamental requirements for notice, consent, record of processing activities, and onward transfer requirements now mandated by GDPR?
• Discuss practical considerations on how to set your organization’s compliance strategy
• Hear distinguished experts from both government and industry tell you what you should be doing to manage and avoid enforcement risks

Special Feature