Global Data Protection 2022

Why You Should Attend

Complexity when addressing compliance obligations with laws governing privacy and cross-border data flows has never been greater.  U.S. companies can no longer effectively compete in today’s interconnected marketplace without leveraging data, monetizing it, and freely moving it across country borders.  Yet, the laws and other restrictions on the free flow of that data continue to emerge.  That is why implementing appropriate programs to comply with data protection laws emerging around the world has never been more important. 

In 2018, companies with operations in the EU, or those that otherwise deal directly with consumers in the European Union (B2C), or offer services to European companies (B2B), were forced to address the European Union’s General Data Protection Regulation (“GDPR”) requirements.  In 2020, the California’s Consumer Privacy Act of 2018 (“CCPA”) introduced a new comprehensive privacy framework for businesses that fall within its scope by expanding the definition of “personal information,” creating new data privacy rights for California consumers, and creating new statutory damages for companies that fail to implement and maintain reasonable security procedures to prevent data security breaches. 

Effective January 2023, the California Privacy Rights Act (CPRA) will expand existing obligations under CCPA, and introduce a new California Privacy Protection Agency, the first of its kind in the United States.  Other states have enacted similar legislation (Colorado, Connecticut, and Virginia), and China has enacted its Personal Information Protection Law (PIPL). 

In the midst of this transformational landscape, and to complicate an already complex area of law, companies are dealing with a spike in ransomware and cybersecurity incidents impacting global operations.  Those concerns have been more pronounced during the military operations in Europe, and in an increasingly hostile political environment.

This program – now in its seventh year – brings together individuals charged with formulating their organization’s global privacy compliance strategy.  It is for those of you who must implement the “nuts and bolts” of CCPA, CPRA, VCDPA, PIPL, and other privacy laws, and evaluate the right approach for your organization.  What are the practical implications of your chosen approach?  What are the risks?  And how do you implement the procedural enhancements now commonly required?  This program is for privacy practitioners within every organization – legal, compliance, IT security, and audit – hoping to gain insights and practical information about the ongoing conversation surrounding the global regulatory landscape on privacy.

What You Will Learn

After completing this program, participants will be able to:

• Gain insights on key substantive and procedural compliance recommendations for CCPA, CPRA, VCDPA, PIPL, and other privacy laws
• Reinforce the fundamental requirements for notice, consent, contracting, and other requirements now mandated by CPRA and other similar laws in the US
• Set your organization’s compliance strategy
• Heed advice from distinguished experts from both government and industry on legislative developments on how to manage and avoid enforcement risks

Who Should Attend

This program is intended for general and solo practitioners, transactional attorneys, general and corporate counsels, in-house lawyers and legal professionals supporting any client with information risk issues.

Special Feature

Earn Continuing Privacy Education credit

Program Level: Intermediate 

Prerequisites: An interest in global data protection issues.