Home

Use our global calendar of privacy events to locate an event near you.

 

FILTER BY

Jan
16
Thu
IAPP: What to Do When Consent Doesn’t Work under CCPA
Jan 16 @ 11:00 am – 12:00 pm

In addition to other benefits, the California Consumer Privacy Act enhances privacy for individuals when data uses cannot be adequately served using consent alone. The CCPA provides incentives for companies to implement safeguards that reduce data privacy risk from even occurring in the first place. Under the CCPA, this can be accomplished by leveraging new technically enforced, risk-based deidentification controls.

Benefits of Non-Consent Processing (via DeIdentification)

Processing data under the CCPA’s deidentification requirements brings many benefits. They include:

For individuals and society:
+Consumer benefits from data processing that is not well supported via opt-in/consent requirements because of the complexity of processing and difficulty of explanation.
+Societal benefits from having more representative, non-discriminatory data to train accurate and representative artificial intelligence and machine learning models.

For data controllers and processors:
+Greater flexibility in complying with data subject requests to delete data.
+Enhanced ability to lawfully share and combine data with third parties.
+Requirements for Non-Consent Processing (via DeIdentification)

Processing protected personal information via CCPA deidentification exceptions requires that proper technical and organizational safeguards are in place.

Those requirements include:
+CCPA increases deidentification standards to a new “2020 De-ID Standard”
+The 2020 De-ID Standard under the CCPA now requires:
+Technical safeguards to prevent recipients of protected information from inadmissibly re-identifying individuals when used on a distributed, multi-party basis.
+Greater protection than otherwise required under laws that were enacted almost a quarter century ago, like the Health Insurance Portability and Accountability Act.
+Context-aware, risk-based management of re-identification risk.
+Protection against re-identification risk from data in the hands of third parties.

Host:
Dave Cohen, CIPP/E, CIPP/US, Knowledge Manager, IAPP

Panelists:
Deven McGraw, Chief Compliance Officer, Ciitizen (former healthcare privacy official at the Department of Health and Human Services)

Khaled El Emam, Professor, University of Ottawa/CHEO Research Institute

Gary LaFever, CEO, Anonos

Justin Antonipillai, CEO, WireWheel

Jan
23
Thu
Legitimate-Interest Processing under the GDPR (With Privacy International)
Jan 23 @ 11:00 am – 12:00 pm

Processing data under the EU General Data Protection Regulation’s legitimate-interest legal basis can bring many benefits, but to do so properly, the right technical and organizational safeguards must be in place. What are those benefits?

They include:
+Greater flexibility in complying with data subjects’ right to be forgotten requests.
+Flexibility in complying with claims to restrict the processing of personal data.
+Exemption from data subjects’ right of portability.
+The ability to claim that technical and organizational measures are in place in the context of automated decision making.
+All of which bring significant value to the organization. If that’s the case, then what are the technical and organizational safeguards that must be implemented to realize these benefits, and how can your organization put them in place? Join us for this privacy education web conference to learn about this and more.

You’ll hear from experts in the field about:

+How merely claiming to have a legitimate interest in the results of processing is not enough without having accountability controls to support data protection by design and default and transparency obligations.
+What types of technical/organizational safeguards help to satisfy the “Balancing on Interest” test to enable legitimate interest as a legal basis for processing under the GDPR.
+The benefits that greater/lawful data use bring when legitimate interest safeguards are implemented properly.
+The risks that exist when claiming legitimate interest as a legal basis without having the proper safeguards in place.

Host:
Dave Cohen, CIPP/E, CIPP/US, Knowledge Manager, IAPP

Panelist:
Ailidh Callander, Legal Officer, Privacy International
Gary LaFever, CEO, Anonos
Rocco Panetta, CIPP/E, Managing Partner, Panetta & Associati

Feb
13
Thu
Can Pseudonymization Save AdTech?
Feb 13 @ 11:00 am – 11:00 am
Can Pseudonymization Save AdTech?

Hear from the IAPP, ICO, IAF, Anonos and Acxiom on the following:

For those at the crossroads of trying to balance data value and privacy, this web conference teaches the fundamentals of EU General Data Protection Regulation-recommended pseudonymization and how it helps organizations to maximize data utility while increasing accountability, ethics and transparency.

Data drives commerce. It opens up opportunities for businesses to build on a global scale. But those opportunities have brought challenges in data innovation and utility, risk and the privacy of individuals. To date, commerce has experimented with consent to manage these risk and privacy challenges. But consent alone no longer works in many situations; we need to go above and beyond consent by itself. This webinar will look at a complement to consent, a technological application that is a “belt and braces” approach to balancing privacy and data value when consent does not work. Panelists will discuss how to fully maximize data value while maintaining privacy, through the use of GDPR-recommended pseudonymization safeguards, to achieve ethical data use, while maximizing data utility.

Join us for this data privacy education web conference to learn about this and more. You’ll hear from experts in the field about:

+What is the 5th Cookie working group (www.5thCookie.com), and what does it hope to achieve?
+How does the 5th Cookie approach leverage GDPR-recommended pseudonymization?
+How does it enable ethical advertising technology/real-time bidding?
+How to apply GDPR-recommended pseudonymization to other data uses (non-adtech/RTB)?
+What are the benefits of leveraging pseudonymization to enforce risk-based data governance policies?
+What do you gain when you can resolve conflicts between maximizing data value and protecting privacy?

Panelists:

+Paul Comerford, Principal Technology Policy Advisor, ICO UK Data Protection Authority

+Martin Abrams, Executive Director and Chief Strategist, International Accountability Foundation

+Gary LaFever, CEO, Anonos

+Dr. Sachiko Scheuing, CIPP/E, European Privacy Officer and Data Protection Officer, Acxiom

Mar
19
Thu
Webinar: Pseudonymisation-Enabled Legitimate Interest Processing
Mar 19 @ 9:00 am – 10:00 am
Webinar: Pseudonymisation-Enabled Legitimate Interest Processing

For those at the crossroads of trying to balance data value and privacy, this webinar teaches the fundamentals of GDPR-recommended Pseudonymisation, and how it helps organizations to maximise data utility while increasing accountability, ethics and transparency

Data drives commerce. It opens up opportunities for businesses to build on a global scale. But those opportunities have brought challenges in data innovation and utility, risk, and the privacy of individuals. To date, commerce has experimented with consent to manage these risk and privacy challenges. But consent alone no longer works in many situations: we need to go above and beyond consent by itself. This webinar will look at a complement to consent; a technological application that is a “belt and braces” approach to balancing privacy and data value when consent does not work. Panelists will discuss how to fully maximise data value whilst maintaining privacy, through the use of GDPR-recommended Pseudonymisation safeguards, to achieve ethical data use, whilst maximising data utility.

Join us for this data privacy education web conference to learn about this and more. You’ll hear from experts in the field about:
+ What are the benefits of Legitimate Interest Processing under the GDPR?
+ How does Pseudonymisation enable Legitimate Interest processing?
+ What are the benefits of leveraging Pseudonymisation to enforce risk-based data governance policies?

Format: 45 minute presentation, 15 minute live audience Q&A

Speakers

  • Dr. Sachiko Scheuing, European Privacy Officer, Acxiom
  • Gary LaFever, CEO & General Counsel, Anonos

Subscribe to receive updates from FPF