Home

Free IAPP Web Conference:

Brought to You by OneTrust and the IAPP

PIAs and Data Mapping – Operationalizing GDPR and Privacy by Design

Broadcast Date: Wednesday, August 24, 2016
Time: 11 a.m. – 12 p.m. EDT

Given the new and challenging requirements of the GDPR that will be enacted soon, companies and organizations doing business globally need to think hard about how to best implement efficient and effective data handling practices that are replicable and consistent. Beyond that, taking good care of your customers’ data is simply a necessary business practice in a competitive world, and the right thing to do.

As a privacy professional responsible for overseeing these operations, what tools will you use, and how do you determine what privacy impacts your new products and services will have? A privacy impact assessment (PIA) is the perfect tool to document and track these new initiatives, but it can be a complicated and challenging project to launch. Join us in this virtual discussion as we walk you through the process of creating a PIA, and hear us tackle the critical questions including:

•    When and why a PIA is a necessary and useful tool
•    How PIAs evolve over time:
– Face-to-face conversations
– Informal documentation
– Procedural questionnaire
–  Project and team specific questions
•    What templates should you use, or should you use a template at all?
•    What resources are at your disposal?
•    How to continue to benchmark and improve your PIA over time
•    Once you’ve completed a PIA, how do you share its value with upper management and others in the organization?

Time will be allotted for questions from the audience, and a short demonstration of software tools available to help with the PIA process will be demonstrated following the program.

Moderator:
Andrew Clearwater, CIPP/US, Director of Privacy, OneTrust

Panelists:
Caroline Olstedt Carlström, Vice President and Chief Counsel, Global Privacy, Klarna, Sweden

In connection with this sponsored web conference (called the “Innovation Series”), the IAPP provides an attendee list to the sponsor(s) of the Innovation Series for that particular web conference, which includes attendee names, titles, organizations and email addresses.

We have contracted with the sponsors so that they are:

• Only allowed to contact you about the subject of the Innovation Series;
• Not allowed to pass your email to a third party;
• Not allowed to retain your email if they have not established a business relationship with you after six months; and
• Obligated to provide you with a proper opt-out mechanism to prevent subsequent communications.

If you do not wish for your information to be passed along to the Innovation Series sponsor(s), you should not sign up for this free web conference.   Alternatively, you may access the archive of the Innovation Series without providing information to sponsors.  However, access to the archive is not live and provides less functionality.

Eligible CPEs: CIPM, CIPT, CIPP/E, CIPP/US, CIPP/C and CIPP/G
1.0 CPE credit

On August 30th, we’ll get an overview of two really interesting efforts to teach privacy.

Erin Berman and members of her web team will talk about the process of transforming a broad, intimidating topic like online privacy into a learning opportunity that is personal, approachable, actionable, and reusable. The result, their Virtual Privacy Lab tool, was developed with a grant from the Knight Foundation and is available in three languages. They will be joined by members of the Teaching Privacy team from Berkeley’s International Computer Science Institute, their partners on the Virtual Privacy Lab.  The Teaching Privacywebsite provides information about the various threats to online privacy and how Internet users can make better decisions about their privacy. They also provide educators with lesson plans and materials that they can use to bring privacy education to their classrooms.

Here’s more about their collaboration: At San Jose Public LIbrary (SJPL) we know that knowledge is power. With information we have the option of choice and can decide which services we want to use online and how best to utilize them. In January, with funding from theThe John S. and James L. Knight Foundation, we set out to create a privacy literacy tool. Thiswould be a platform which would inform, educate, and also deliver customized toolkits with tips, links, and resources tailored to fit a user’s unique online needs. We worked in partnership with the Teaching Privacy team from Berkeley’s International Computer Science Institute to create engaging, powerful, and relevant content which could be understood by a wide range of audiences.

After many months of hard work we’re pleased to announce the launch of SJPL’s Virtual Privacy Lab! The Lab has seven privacy modules covering a range of topics. At the end of each module participants have the option of building a personalized toolkit. Those wanting to get started right away can view a curated list of apps, browser extensions, websites, and more. There is also information about how SJPL and Libraries in general work to protect privacy. Users who want to learn even more about online privacy can drill down with our in-depth article. Content on the site is available in Spanish and Vietnamese. Visit the Virtual Privacy Lab now to level up your online privacy!

As per our standard format, the first hour will be devoted to speakers and Q&A, followed by a second hour for informal networking and small group discussions to give speakers and attendees a chance to talk to each other.
Privacy Lab is a meeting for people who are interested in digital privacy in the Bay Area. The goal of these events is to bring together privacy professionals and privacy community members at non-profits, for-profits, and NGOs alike to foster communication and collaboration.

For those who can’t attend in person, we hope to livestream and record the event and will share those details through our email distribution list.

More information about this event and future events can be found at:https://wiki.mozilla.org/Privacy/Privacy_Lab

To hear about future events, please join our mailing list, which will send out approximately one mailing and a couple reminders a month publicizing that month’s event:https://mail.mozilla.org/listinfo/privacy-events. Note that RSVPs will be added to this mailing list as well.

Privacy Lab events are dedicated to providing a harassment-free conference experience for everyone, regardless of gender, gender identity and expression, sexual orientation, disability, physical appearance, body size, race, age or religion. We do not tolerate harassment of event participants in any form. Event participants violating these rules may be sanctioned or expelled from the event at the discretion of the conference organizers. Our anti-harassment policy can be found at: https://wiki.mozilla.org/Privacy/Privacy_Lab#Code_of_Conduct

The European Privacy Association (EPA) General Data Protection Regulation (GDPR) webinars will be held throughout the year and are aimed at all professionals interested in the regulation of data protection. Each webinar will be chaired by Dr. Paolo Balboni, President and Noriswadi Ismail, Scientific Director and members of our Scientific Committee and will last for 60 minutes, ending with a Q&A session.The webinars will focus on compliance, governance, business controls and operational aspects in relation to the forthcoming GDPR relevant for all companies doing business in Europe. The GDPR debate and discussion have dominated the European marketplace for the past 4 years. Organisations and stakeholders have 2 years to operationalise their GDPR readiness programme to avoid non-compliance enforcement actions from national Data Protection Authorities.NB: If you weren’t able to sign up before the first webinar it is still possible to sign up for the series. In compensation you will receive a detailed summary of the April 20th presentation.

The price of attendance for the remaining webinars is €670.00 (excluding VAT)
Fellows receive a special discount of 50% for a total of €350.00 (excluding VAT) for all remaining webinars

To become Fellow of EPA it is necessary to send your CV to info [@]europeanprivacyassociation.eu and subject to a positive EPA Board evaluation of your profile, you will need to contribute to EPA.  Fellow annual supportership is €100.00 (excluding VAT).
If you would like to know more about the benefits of becoming a Fellow please contact us.

– All webinars will be recorded in case you cannot attend and have paid for the package –

Feel free to contact us for further information.

Please RSVP to webinar [@] europeanprivacyassociation.eu

With alarming frequency, ransomware hackers are sneaking into consumer and business computers, encrypting files containing photos, documents and other important data, and then demanding a ransom in exchange for the key needed to decrypt the files. At times, these hackers pose as the FBI or other law enforcement officials and claim that the ransom is a “fine” for viewing illegal material and that failure to pay the “fine” will result in criminal prosecution. Consumers, businesses, and government agencies are falling prey to these schemes, including hospitals whose servers may contain sensitive patient data. New forms of ransomware encrypt files of website operators, threatening not only their files containing stored data, but the very files needed to operate their websites. Other variants of ransomware are now targeting files on mobile devices. The Ransomware workshop will address questions such as:

How do ransomware extortionists gain access to consumer and business computers?

What role can consumer and business education play in preventing ransomware infections?

Are there steps consumers and businesses should be taking to reduce the risk of ransomware or to decrease its impact?

Are there technological measures that computer operating system and web browser designers can take to prevent ransomware?

Are there browser plug-ins or other tools that consumers and businesses can employ that will warn if their data is about to be encrypted?

What can be learned from criminal law enforcement’s efforts to combat ransomware?

If you fall prey to ransomware, should you pay the ransom?

If you pay the ransom, how likely are you to receive the decryption key and be able to view your files?

What happens if you don’t pay the ransom? Are your files lost forever?

Date and time: September 8, 2016, 9 AM – 3 PM

Location: Department of Transportation (DOT), 1200 New Jersey Avenue, SE, Washington, DC

NIST and the Department of Transportation (DOT) will co-host a public workshop to gather input on the privacy controls in Appendix J of NIST Special Publication 800-53, Revision 4. The workshop will explore the effectiveness and challenges of applying the current privacy controls in 800-53 and whether changes should be made in the publication’s fifth revision. Panelists and attendees will participate in facilitated discussions on topics including potential amendments to the privacy control families, broader guidance on the relationship between the privacy and security controls, and the need for additional NIST guidance on the implementation of controls into better support privacy engineering practices in federal agencies.

Who Should Attend: System design and privacy engineers, privacy officers, senior agency officials for privacy (SAOPs) and privacy subject matter experts should attend this interactive workshop. Public and private sector attendees and academics welcome.

Registration: Click here to register!

Questions? Contact [email protected]

This event features the screenings of two short films, “The Adaptable Mind” and “ParenTechnology”, followed by a Q&A panel discussion with the filmmaker, Tiffany Shlain. Based on the films, we will explore the impact that technology is having on kids, parenting and the human mind.