Home

The California Consumer Privacy Act (CCPA) provides broader rights to consumers and stricter compliance requirements for businesses than any other state or federal privacy law on the books. Preparing for CCPA requires expert judgment and team effort. Arguably, the most challenging unanswered question is this: What is a sale under CCPA?

Join this panel of highly experienced privacy lawyers to discuss and benchmark the CCPA’s tougher questions and newest developments.

Moderator:

Ivan Rothman (Of Counsel at Squire Patton Boggs): Ivan has significant experience in intellectual property, Internet law and privacy law and has represented numerous US-based and non-US-based companies, including both Fortune 500 companies and start-ups, in a wide range of such matters. Ivan’s privacy law practice focuses on U.S. privacy law matters, in particular in the context of M&A support.

Panelists:

Lydia de la Torre (Of Counsel at Squire Patton Boggs): Lydia provides strategic privacy compliance advice related to US and EU privacy, including data protection and cybersecurity law, General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), other state’s privacy and cyber laws, US financial privacy laws, and marketing and advertising compliance, as well as information security. She is licensed to practice law both in the EU and in California. Lydia teaches comparative privacy at Santa Clara Law School and runs a blog on data laws (https://medium.com/golden-data).

Francis Fryscak (Founder, SecondSight Law): Francis has practiced extensively in privacy and antitrust matters, and advises both domestically and internationally on the CCPA. Before founding his own firm he was a partner at Cooley LLP and worked for nearly a decade in Palo Alto and San Francisco on regulatory matters for cutting edge technology and biotech companies.

Eric Dilulio (Associate at Goodwin Procter LLP): Eric represents clients in a broad array of privacy and cybersecurity matters and frequently counsels technology companies on how to ensure that novel uses of data comply with various privacy frameworks. Lately he has counseled many clients on preparing for the CCPA, including helping clients assess whether they are subject to the law, analyzing whether clients are engaging in “sales” restricted by the law, and updating privacy policies and revising commercial agreements to comply with the law.

Delivering uncompromising data privacy and capitalizing on ground-breaking data analytics are top priorities for organizations worldwide.

At In:Confidence USA, leaders and influencers from the data privacy and analytics communities will convene for an immersive, one-day forum focused on the opportunities and challenges ahead as businesses seek to differentiate themselves through data privacy excellence and the powerful insights data analysis produce.

Held at The Caldwell Theatre in New York on November 14, 2019, In:Confidence USA will feature impactful keynotes, interactive panels, in-depth case studies, and provide a window into the academic research that is powering innovation.  You will also have the opportunity to meet the speakers and network with your peers.

Receive 50% off registration costs with the promotional code ICUSA-FPF.

Certification Training 18-19 November
Workshops 19 November
Conference 20-21 November
Brussels

Join us for FOSI’s Annual Conference entitled “2020 Vision: The Future of Online Safety”. Leaders from industry, government, law enforcement and non-profits will come together to collaborate and innovate new solutions to Internet safety challenges. There will be keynotes, plenary panels, breakout sessions, alongside exhibits and a networking reception.

The 1st Edition of the international conference on FNSSA is organized by the Agro-Food Industries Alliance (funded by Academy of Scientific Research and Technology in Egypt), World Food Program, the Arab Academy for Science, Technology and Maritime Transport (AASTMT, Alexandria), Alexandria University, Egypt, and IEREK – International Experts for Research Enrichment and Knowledge Exchange in collaboration with Springer as a publishing partner.

To take place in Cairo from 1 to 3 December of 2019, the conference will be an opportunity to present and discuss the newest researches related to food, nutrition and sustainable agriculture as well as to shed light on their relationships with the industry. The scientific committee welcomes contributions from academics, researchers and interested participants.

In addition to other benefits, the California Consumer Privacy Act enhances privacy for individuals when data uses cannot be adequately served using consent alone. The CCPA provides incentives for companies to implement safeguards that reduce data privacy risk from even occurring in the first place. Under the CCPA, this can be accomplished by leveraging new technically enforced, risk-based deidentification controls.

Benefits of Non-Consent Processing (via DeIdentification)

Processing data under the CCPA’s deidentification requirements brings many benefits. They include:

For individuals and society:
+Consumer benefits from data processing that is not well supported via opt-in/consent requirements because of the complexity of processing and difficulty of explanation.
+Societal benefits from having more representative, non-discriminatory data to train accurate and representative artificial intelligence and machine learning models.

For data controllers and processors:
+Greater flexibility in complying with data subject requests to delete data.
+Enhanced ability to lawfully share and combine data with third parties.
+Requirements for Non-Consent Processing (via DeIdentification)

Processing protected personal information via CCPA deidentification exceptions requires that proper technical and organizational safeguards are in place.

Those requirements include:
+CCPA increases deidentification standards to a new “2020 De-ID Standard”
+The 2020 De-ID Standard under the CCPA now requires:
+Technical safeguards to prevent recipients of protected information from inadmissibly re-identifying individuals when used on a distributed, multi-party basis.
+Greater protection than otherwise required under laws that were enacted almost a quarter century ago, like the Health Insurance Portability and Accountability Act.
+Context-aware, risk-based management of re-identification risk.
+Protection against re-identification risk from data in the hands of third parties.

Host:
Dave Cohen, CIPP/E, CIPP/US, Knowledge Manager, IAPP

Panelists:
Deven McGraw, Chief Compliance Officer, Ciitizen (former healthcare privacy official at the Department of Health and Human Services)

Khaled El Emam, Professor, University of Ottawa/CHEO Research Institute

Gary LaFever, CEO, Anonos

Justin Antonipillai, CEO, WireWheel

Processing data under the EU General Data Protection Regulation’s legitimate-interest legal basis can bring many benefits, but to do so properly, the right technical and organizational safeguards must be in place. What are those benefits?

They include:
+Greater flexibility in complying with data subjects’ right to be forgotten requests.
+Flexibility in complying with claims to restrict the processing of personal data.
+Exemption from data subjects’ right of portability.
+The ability to claim that technical and organizational measures are in place in the context of automated decision making.
+All of which bring significant value to the organization. If that’s the case, then what are the technical and organizational safeguards that must be implemented to realize these benefits, and how can your organization put them in place? Join us for this privacy education web conference to learn about this and more.

You’ll hear from experts in the field about:

+How merely claiming to have a legitimate interest in the results of processing is not enough without having accountability controls to support data protection by design and default and transparency obligations.
+What types of technical/organizational safeguards help to satisfy the “Balancing on Interest” test to enable legitimate interest as a legal basis for processing under the GDPR.
+The benefits that greater/lawful data use bring when legitimate interest safeguards are implemented properly.
+The risks that exist when claiming legitimate interest as a legal basis without having the proper safeguards in place.

Host:
Dave Cohen, CIPP/E, CIPP/US, Knowledge Manager, IAPP

Panelist:
Ailidh Callander, Legal Officer, Privacy International
Gary LaFever, CEO, Anonos
Rocco Panetta, CIPP/E, Managing Partner, Panetta & Associati

Privacy Lab is a meetup for privacy minded people to foster communication and collaboration. It was founded in January 2015.

The goal of these events is to bring together people who work in the privacy space from different perspectives – people who may not regularly talk to each other – policy people, techies, activists, and academics at big companies, startups, universities, libraries, NGO’s, foundations, civil society and more – that’s one of the benefits of attending. You’ll have an hour on the topic of the evening followed by an hour to talk to each other.

If you enjoy talking privacy – so much so that it’s related to what you do for a living or how you volunteer your time – this is the event for you.

By attending, you’ll be able to hear about what other people and organizations are working on, share what you’re doing and look for new opportunities to collaborate and get involved.