Association of Corporate Counsel

Similar documents
HOT TOPICS IN DATA PRIVACY REGULATION IN RUSSIA

THE PLATFORM EQUINIX VISION

THE PLATFORM EQUINIX VISION

Cloud Computing - Reaping the Benefits and Avoiding the Pitfalls. Stuart James & Delizia Diaz. Intellectual Property & Technology Webinar

GDPR and digital advertising: Strategies and best practices for implementing GDPR compliance

Third-Party Cyber Risk Management Webinar May 23, 2017

Building Interconnection 2017 Steps Taken & 2018 Plans

GDPR Privacy Webinar. Prioritizing Your Path towards GDPR Compliance Annika Sponselee and Nicole Vreeman 28 February 2018

Bring Your Own Device Shakes Up IT Departments

EY Cyber Response Services. Plan. React. Recover.

SPAD 502DL Plus Chlorophyll Meter DATA LOGGER MANUAL

Cloud Computing: Overcoming the Legal and Regulatory Challenges. November

CYBERSECURITY RISK MANAGEMENT

egensburg, February 1st, 2005

LEVEL 3 SM WEBSITE ACCELERATION SERVICES

HOT TOPICS IN DATA PRIVACY REGULATION IN RUSSIA Ksenia Andreeva Anastasia Dergacheva Vasilisa Strizh Brian Zimbler

FDA Releases FSMA Final Rule on Accreditation of Third Party Certification Bodies

Enterprise Case Study

Dealing with Security and Security Breaches

2018 Morgan, Lewis & Bockius LLP

Latham & Watkins Environment, Land & Resources Department

NetIQ User Conferentie NetIQ Update. Travis Greene Chief Service Management Strategist

Why trading firms choose... Connexus Voice. For Traders

MEDIA KIT 2018 CLOUDSCENE.COM

H TAITRA Global Customer Survey

The IBM Platform Computing HPC Cloud Service. Solution Overview

Getting to Data Nirvana Data lakes and GDPR

AT&T Enterprise Hosting Services

EO Ground Segment Evolution Reflections by

IPC Financial Markets Network

MARKETING ALLIANCE MEDIA KIT 2016/17

CYBER THREATS, ACTIVE DEFENSE, AND THE BUSINESS AND LEGAL IMPACTS. October 20, Robert Silvers

Proposed WEEE Directive A Step-by-Step Analysis

One Planet. One Network. Infinite Possibilities.

Titolo della presentazione 1

Certificate. Certificate number: a. Certified by EY CertifyPoint since: May 11, 2012

BUILDING & INFRASTRUCTURE

Global Capital Flows. Petra Blazkova, Senior Director, APAC Analytics PFA ANNUAL CONFERENCE, 1 ST MAY 2018

2018 Data Security Incident Response Report Building Cyber Resilience: Compromise Response Intelligence in Action

GreinTech Software Andrew Schrijver Jesse Suchoff Gregory Maugeri

Hurricane Electric Internet Services

IIB s Risk Management and Regulatory Examination / Compliance Seminar

Capital Markets Group Canada

Cyber Risk Services Going beyond limits

CYBERCRIMES IN THE UAE PHISHING, HACKING AND DATA LEAKS

On the Radar: IBM Resilient applies incident response orchestration to GDPR data breaches

Data Center Cooling An Owner s Perspective. 11 February 2016

163 countries Over 265 posts 80,000 U.S. Government employees from 30 Agencies 3,563 owned buildings 39,000,000 sq. ft. owned 11,664 leased buildings

A Moment to Redef ine the World

Security Breach Notification Reflections on the U.S. Experience

Certificate. Certificate number: b. Certified by EY CertifyPoint since: April 15, 2016

SEC Update. SEC issues new interpretive guidance on cybersecurity disclosures. March 5, Overview

Digital Realty to Launch Service Exchange to Simplify Global Data Center and Cloud Interconnection

Certificate. Certificate number: b. Certified by EY CertifyPoint since: May 11, 2012

HKTDC The World's Full-Service Trade Promotion Organisation

WHAT SECTION 215A OF THE FEDERAL POWER ACT MEANS FOR ELECTRIC UTILITIES. Stephen M. Spina J. Daniel Skees Arjun P. Ramadevanahalli December 17, 2015

Managed Hosting Services

Getting Your Privacy House in Order

Technical Guide for Offshore Institutions to access China Foreign Exchange Trade System

Big Data, Big Issues: Global Challenges and Effective Solutions

Disaster Recovery: Types of Hosting and How they Differ. April 9, 2014

INSTRUCTIONS FOR EXAMINATION CANDIDATES

SOC 3 for Security and Availability

Building YOUR Privacy Program: One Size Does Not Fit All. IBM Security Services

Data Product Offerings worldwide connectivity you can count on throughout the trade lifecycle

Best Practices in Deploying Skype for Business Voice and Video for Office 365

BUILT FOR THE STORM. AND THE NORM.

2014 Luxury & Fashion Industry Conference for Multinationals

Cybersecurity. The Board s Role

Congrès National Smart City 2018

Developments in Global Data Protection & Transfer: How They Impact Third-Party Contracts

The Stakes Are Going Up: Hacking and the New Paradigm of Data Breaches

DNS Infrastructure Distribution. Steve Gibbard Packet Clearing House

Five Ways that Privacy Shield is Different from Safe Harbor and Five Simple Steps Companies Can Take to Prepare for Certification

Cloud Load Balancer CDNetworks Inc. All rights reserved.

Outsourcing: The Perspective of a Data Processor

Certificate. Certificate number: a. Certified by EY CertifyPoint since: April 15, 2016

SUB-DELEGATI DI BNP PARIBAS * branch della casa madre BNP PARIBAS Country Agent Name Location Affiliation* Fitch Moody s S&P

CRE investment weakens in Q as investors struggle to find product in prime markets

ADDRESSING CLIMATE FROM THE GROUND UP

INSIGHT OCTOBER 2017 RECOVERY AND RESOLUTION REGIME ONE STEP FORWARD FOR FINANCIAL INSTITUTIONS TO SAFEGUARD THEMSELVES AGAINST FINANCIAL INSTABILITY

LinkedIn Economic Graph Project

Cross sector ICT Infrastructure for Asia. Working Group meeting on the Development of Seamless Connectivity December 2014, Bangkok

Mid-Market Data Center Purchasing Drivers, Priorities and Barriers

Your Cloud Strategy Demands a Strong Network Strategy

Agility, Talent and Technology

ABOUT CYXTERA A NEW KIND OF SECURITY COMPANY. A NEW KIND OF DATA CENTER COMPANY.

NetApp Private Storage for Cloud: Solving the issues of cloud data privacy and data sovereignty

Greater Toronto Area

PRODUCT OVERVIEW. Storage and Backup. Flexible Scalable Storage Solutions for. Product Overview. Storage and Backup

Security and networks

How icims Supports. Your Readiness for the European Union General Data Protection Regulation

Economic Trends in Internet Exchanges. Version 1.1 January 2005 Bill Woodcock Packet Clearing House

2017 Data Security Incident Response Report. Be Compromise Ready: Go Back to the Basics

EU DATA PRIVACY COMPLIANCE FOR US DRIVEN PROJECTS

Hurricane Electric. Do we need consistent IPv6 addressing at peering points? Do we need a cleaner IPv6 routing tables?

Grow Your Business & Expand Your Service Offerings

Canada Highlights. Cybersecurity: Do you know which protective measures will make your company cyber resilient?

SCCE ECEI 2014 EU DATA PRIVACY COMPLIANCE FOR US DRIVEN PROJECTS. Monica Salgado JANINE REGAN CIPP/E

A Checklist for Compliance in the Cloud 1. A Checklist for Compliance in the Cloud

Transcription:

Type in document reference # if needed Privacy protection in a Globalized World Association of Corporate Counsel New York, 24 March 2015 1

The plan Bringing out the main cross-border privacy issues for in-house counsel Describing that reality from the point of view of regulators Exploring strategies for resolution Sharing experiences 25 March 2015 2

A Global View Vancouver Edmonton Calgary Montreal Ottawa Chicago San Francisco Boston Toronto Kansas City New York Silicon Valley Short Hills St. Louis Washington, DC Los Angeles Phoenix Dallas Atlanta Houston New Orleans Miami Milton Keynes London Praia Paris Barcelona Madrid Algiers Casablanca Nouakchott Bissau Brussels Berlin Warsaw Prague Frankfurt Bratislava Budapest Zürich Bucharest Tripoli Istanbul Cairo Beirut St. Petersburg Minsk Kyiv Moscow Astana Rostov on Don Almaty Krasnodar Tashkent Tbilisi Ashgabat Amman Riyadh Baku Doha Abu Dhabi Dubai Muscat Beijing Shanghai Hong Kong Key Lagos Accra São Tomé Luanda Kampala Kigali Nairobi Singapore Offices, associate offices x and facilities* Associate firms and special alliances* Lusaka Port Louis Johannesburg Maputo Cape Town 25 March 2015 3

From the point of view of in-house counsel Photo 25 March 2015 4

In-House A Global Privacy Analysis Global patchwork of privacy laws + globalized business = challenge How does this come up? Most projects are multijurisdictional MasterPass Product Development and Expansion Simplify Commerce Product Development and Expansion MasterCard Datacash Acquired UK payment processing business 25 March 2015 5

In-House A Global Privacy Analysis Goal is always to understand the rights and obligations that attach to data at point of collection and throughout lifecycle First, what is the business matter at hand? What are we doing (and where)? What is our role in the ecosystem? Who are we working with? Then, how does data layer in? Country of collection / data subject Entity/mechanism of collection Notice & consent mechanics Cross-border transfers Type of data elements collected and processed Nature of processing (primary and secondary uses) Sharing with third parties / participants in an ecosystem 25 March 2015 6

In-House A Global Privacy Analysis Result of that analysis drives Product design Contract terms Security protocol Risk allocation and determination Analysis applies to all situations Acquisitions and investments Product development and expansion Contracting with customers and vendors Incident response 25 March 2015 7

The point of view of regulators Photo 25 March 2015 8

Main issues Asserting jurisdiction over foreign respondents Holding a common front across diverse legislative frameworks Coordinating compliance 25 March 2015 9

The point of view of outside counsel 25 March 2015 10

Outside Counsel A Global Privacy Analysis Consistent policies and processes are essential to managing privacy and data protection risk. Why? High process integrity greatly minimizes operational risk. Speaking with a consistent voice to customers and partners builds trust and creates accountability with business partners. Managing different policies within different businesses and markets can create unmanageable compliance obligations and expectations. 25 March 2015 11

Outside Counsel A Global Privacy Analysis Companies have trouble driving consistent privacy policies and practices across businesses and geographies. Why? Business Units are in silos with different leadership and strategy. Lack of an integrated, enterprise-wide risk management framework. Misperception that adopting consistent standards will lead to missed business opportunities. 25 March 2015 12

Outside Counsel A Global Privacy Analysis Regulatory schemes in North America and Europe will continue to harmonize while maintaining substantial differences. Why? The EU will adopt breach notification rules and requirements. The US may adopt EU-style rights, such as right to be forgotten/obscurity. International data protection schemes like Canada and in Asia-Pacific will continue to move closer to the EU approach. 25 March 2015 13

Outside Counsel A Global Privacy Analysis What should In-House Counsel do to stay on top of the global complexity? Be knowledgeable about privacy laws in other jurisdictions. Attempt to rationalize requirements at a high level and drill down at a local level. Ensure that you have both a short term and longer term compliance strategy. 25 March 2015 14

Your point of view What are the main issues for cross border privacy law? What are the main strategic issues for cross border privacy compliance? 25 March 2015 15

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback