Name: How to Leverage Your GDPR Compliance for CCPA, Privacy Shield & More New Require
Start: 2020-09-24T16:00:00Z
End: 2020-09-24T16:00:58.000Z
Location: BrightTALK
Rating: 0

(70m) TrustArc customers maximize data value by delivering deep privacy intelligence, coupled with a fully-automated platform for end-to-end privacy management. Learn from TrustArc executives how industry and customer needs are driving the product roadmap.

Speakers:
Chris Babel, CEO, TrustArc
Michael Lin, SVP, Product Management and Engineering, TrustArc

Empowering the Privacy Forward Enterprise: Maximizing Data Value (70m)

(30m) Say goodbye to complicated, manual privacy workflows. PrivacyCentral is the first-ever end-to-end privacy management experience. Think of it as an easy-to-use, comprehensive data intelligence center that helps you dramatically reduce inefficiencies and stop the endless cycle of regulation dependency.

Reduce complexity, eliminate redundancy and get a full picture with PrivacyCentral.

In this session you'll learn how the full end to end solution helps:
•	Eliminate redundancies and complexities
•	Provide continuous insights across the privacy lifecycle 
•	Deliver in-depth reporting and key performance indicators to engage the business in a meaningful way

Speaker: 
Trish Danczak, Product Owner, Knowledge and Intelligence Solutions, TrustArc
Hilary Wandall, SVP, Privacy Intelligence and General Counsel, FIP, TrustArc

PrivacyCentral: Transforming Your Privacy Experience (30m)

(30m) Privacy regulations like GDPR, CCPA, and LGPD mandate that organizations must be able to comply with the regulatory requirements around data subject requests. Responding to data subject requests is complicated and time-consuming, and organizations are challenged with accurately responding to requests within the regulatory timeframe. 

TrustArc Individual Rights Manager fully automates data subject request fulfillment. Our solution scales with your business, enabling you to deliver an on-brand privacy experience and respond within the required regulatory timeline, applicable to the jurisdiction.

In this session you'll learn to:
•	Create, customize, and publish request intake forms
•	Dynamically route requests to assignees based on jurisdiction
•	Auto-assign request due dates based on jurisdiction
•	Customize automated workflows to meet any regulatory and business needs
•	Securely deliver accurate responses to data subjects

Speaker:
Ganesh Vasudeva, Sr. Product Manager, TrustArc
Amanda Lee, TrustArc

Individual Rights Manager (30m)

(30m) Due to the increasing quantity of privacy regulations coming to fruition across the globe, it is becoming increasingly burdensome on organisations to keep track of world wide enforcements, regulator guidelines, differing regulation requirements, and authoritative court cases.

See how Nymity Research helps bridge the gap between traditional privacy management and the velocity of regulatory change and development through a single platform for privacy insights.

In this session you’ll learn:
•	How to navigate the Nymity Research platform
•	How to utilize Nymity Research products in order to streamline research efforts

Speaker:
Chrissy Fratschko, Privacy Research Specialist, Privacy Intelligence, HBA MLIS, CIPP/US, TrustArc

Nymity Research (30m)

(50m) COVID-19 continues to have an everchanging impact on businesses and their employees based on location, model, and activities. Some have fully committed to returning to work, while others evaluate a permanent remote workforce. Still others are continuing a hybrid approach whether permanently or for the next foreseeable timeframe. Whatever your scenario, privacy is a critical factor given the amount of information now being collected on employees and their families. Strategic leaders must consider how COVID-19 implications connect to the broader considerations of employee rights, privacy, and data governance. 

In this session, we'll discuss:
•	The employee privacy considerations you may be missing 
•	Legal considerations for remote workforces and those returning to work 
•	Methods for evaluating employee privacy risks and regulatory impacts across regions 

Speaker:
K Royal,Associate General Counsel, Privacy Intelligence, TrustArc
David Thomas, CEO, Evident
Helena Milner-Smith, Special Counsel, Covington & Burling LLP

The New Normal: Managing Employee Privacy (50m)

(50m) Jennifer Couture, Chief Privacy Officer at Alexion, discusses how to take a programmatic approach to privacy management in an ever-changing privacy landscape.

In this session, you will learn: 
•	Benefits of programmatic privacy management
•	Technology solutions and best practices 
•	Why being privacy forward is important

A Programmatic Approach to Privacy Management at Alexion Pharmaceuticals (50m)

(50m) The advanced analytics and greater use of Big Data in today’s world has unlocked information, insights, and new uses that we could never have imagined: good, bad, and unintended altogether. As data analytics, AI, and Machine Learning continue to be leaned on more, organizations must start thinking of a different way forward, and how to navigate uncharted and unanticipated ethical waters. Embedding data ethics into a privacy management framework requires both going beyond the box-checking of compliance, and a deeper understanding of our relationship to data and its purpose. 

In this session, you will:
•	Be introduced to the emerging concept and philosophy of ‘data ethics’ as it pertains to Big Data and advanced analytics such as AI and Machine Learning
•	Learn about the related social benefits, harms, and risks that arise from Big Data analytics
•	Become familiarized with some best practices and strategies to embed data ethics into a privacy management framework


Speaker:
Nainesh Ramjee, Senior Counsel, CIPP/US,  Privacy Intelligence, TrustArc
Dr. Paul Root Wolpe, Director, Center of Ethics, Emory University
Dennis Hirsch, Professor of Law; Director, Program on Data and Governance, The Ohio State University Moritz College of Law
Barbara Lawler, Chief Privacy and Data Ethics Officer, Looker (Google Cloud)

Unintended Consequences (50m)

(50m) With over 900 laws on the use of personal information around the world, managing your privacy program law by law is becoming nearly impossible. Identifying key commonalities is a common approach, but then your program becomes a tangled web where it is difficult to tell outliers from baseline. The better approach is to define your program on an established framework that accounts for commonalities, is predictable and consistent, and accounts for exceptions. 

In this session, we'll discuss:
•	How to use a framework-based approach in your program management
•	Pros and cons of common frameworks
•	Leveraging a framework across departments

Speaker:
K Royal, Associate General Counsel, Privacy Intelligence, TrustArc
Jim Koenig, Partner & Global Co-Chair, Privacy & Cybersecurity Practice, Fenwick & West
Marty Abrams, Executive Director and Chief Strategist, The Information Accountability Foundation (IAF)

Privacy 2.0 (50m)

Mike Leow, Senior Compliance Manager at Alibaba, will discuss the key areas to be mindful of when implementing cookie banners for websites that are accessible by users from California and the European Union. 

In this session, you will learn: 
•	The preparation and timeline leading up to implementation 
•	Key challenges 
•	Post-implementation results

Implementing Cookies to Meet CCPA and GDPR Compliance at Alibaba (50m)

(70m) With hundreds of privacy laws worldwide, how does a company operating in multiple countries know where to focus their privacy compliance efforts? One way to identify critical areas of concern is to review enforcement activities. Often, the explanations provide rich information on what elements the agencies took into consideration along with any mitigating factors. The enforcement actions may also provide clarity on unsettled parts of law.

In this session, we'll discuss:
•   Trends in enforcement actions worldwide
•   How to interpret enforcement actions to identify key factors
•   Regulator priorities as seen in recent enforcement and where the upcoming priorities may be

Speakers:
Hilary Wandall, SVP, Privacy Intelligence and General Counsel, FIP, TrustArc
Helen Dixon, Data Protection Commissioner for Ireland
Zee Kin, Deputy Commissioner, Persona Data Protection Commission of Singapore
David Stevens, Data Protection Commissioner, Belgium

To Penalties and Beyond (70m)

(30m) Privacy regulations like GDPR, CCPA, and LGPD mandate that organizations must provide website visitors with adequate consent and control mechanisms when collecting personal information through the use of cookies and other tracking technologies. Keeping pace with these evolving requirements can be complicated and time-consuming for businesses.

TrustArc Cookie Consent Manager enables organizations to implement a single solution to meet these global cookie consent regulations.

In this session you'll learn:
•	Recent updates to consent requirements
•	Best practices for deploying a solution on your website
•	How to configure automated consent experiences


Speaker:
Matt Ferrell, Sr. Product Manager, TrustArc

Cookie Consent Manager: Operationalizing Global Cookie Compliance (30m)

(30m) Data inventory can entail hundreds to thousands of processes, systems and vendors, which creates a complex and overwhelming task to manage. 

TrustArc’s Data Inventory Hub simplifies the process of creating and managing a data inventory, data flow maps, and uses that information to operationalize privacy management while supporting processes across the organization to facilitate collaboration and maintain ongoing compliance. 

In this session you’ll learn how to: 
•	Create and manage a centralized and detailed data inventory of IT systems, third parties, vendors, and company affiliates relevant to data flows and potential risks across your organization. 
•	Automatically generate data flow maps that visually identify where employee and customer data resides and how that data moves through the business ecosystem. 
•	Customize privacy compliance KPIs, business process record revalidation, etc. 
•	Create on-demand compliance reports, including GDPR Article 30 records of processing activities and CCPA look back requirement documentation.

Speaker:
Kristen Nosky, Director of Product Management, TrustArc

Data Inventory Hub: The Blueprint for a Great Data Inventory (30m)

(50m) Despite all of the challenges in 2020, globally, there still remained an appetite for data protection legislation. Whether legislatures wanted to obtain recognition, or continue to be recognized, as an adequate jurisdiction for the purpose of international data transfers from the European Union, or provide greater protection for individual rights in the face of technological advances, a slew of legal developments loom on the horizon, and with them the threat of increased litigation. In this session, our expert panel will discuss the trends in global privacy legislation and their impact, including recent developments and predictions for 2021, to help you plan for coming changes as part of your privacy program development. 

In this session you'll learn:
•	An understanding of jurisdictions to watch for coming changes;
•	Current trends in the nature of obligations being included in new legislation; and
•	Insights into the potential for litigation arising from these developments.

Speakers:
Meaghan McCluskey, Associate General Counsel, Research, TrustArc
Dr. Gabriela Zanfir-Fortuna, Senior Counsel for Global Privacy, Future of Privacy Forum
Ian Ballon, I.P and Internet Litigator, Greenberg Traurig
Constantine Karbaliotis, Lawyer, nNovation LLP

Privacy Law Trends: The Bold, the Old and the Folded (50m)

(50m) Following Brexit and the Schrems-II case, privacy leaders continue to ask themselves, “What’s the best alternative to my current approach to data transfers?” Globally, companies have delayed getting started and are unsure of how long it will take to implement a new way to manage cross-border data transfers. Implementing an alternative mechanism is possible, and it begins with this discussion on practical how to’s. 

In this session, we'll discuss:
•	How to determine which alternative transfer mechanism best aligns with your business?
•	The situation between the UK and the EU?
•	What remains unclear, and how to mitigate that potential risk?
•	What is the deal with new draft SCCs from the European Commission?

Speakers:
Ralph O'Brien, Principal Consultant, Europe, TrustArc
Ashley Winton, Partner, McDermott Will & Emery
Miriam H. Wugmeister, Partner, Morrison & Foerster LLP

Cross Border Data Transfers (50m)

(50m) Shankar Chebrolu, Director of Security Architecture at Red Hat, will demonstrate how his company uses TrustArc Assessment Manager to perform various assessments, including security, third-party vendor risk, privacy impact assessments (PIA) and service impact analyses (SIA). 

In this session, you'll learn about: 
•	Real-life use cases for addressing vendor risk
•	Solutions and best practices
•	Why being privacy forward is important for companies

Managing Risk Assessments at Red Hat (50m)

*Please note this session is 50 minutes long, but is listed as 30 minutes due to a technical error.

Following the Schrems-II decision, a lot of uncertainty exists surrounding the transfer of personal data from the European Union to third countries. During this panel, we will explore the concepts of international data transfers, data transfer risk assessments and look ahead at possible solutions for the EU-U.S. data flows in particular. 

In this session, we will discuss questions such as:
•	Are all international data flows originating in the EU also data transfers? 
•	How do you conduct a data transfer risk assessment? What do you need to take into account?
•	What are possible risk mitigating factors? 
•	What’s next for EU-U.S. data flows in particular? Can we expect a new transatlantic data protection agreement?

Speakers:
Paul Breitbarth, Director, EU Policy & Strategy, TrustArc
Ignacio Gomez Navarro, Legal Officer, European Data Protection Board (EDPB)
Travis Leblanc, Board Member, Privacy and Civil Liberties Oversight Board (PCLOB)
Peter Blenkinsop, Partner, Faegre Drinker

International Data Flows Post Schrems-II: What to Expect & What to Forget (50m)

(50m) The passing of California Proposition 24 last November brought forth the approval of the California Privacy Rights Act (CPRA) which amended and expanded the California Consumer Privacy Act (CCPA). Companies that have already invested a significant amount of resources into preparing and/or meeting CCPA compliance requirements are now faced with new consumer rights and additional requirements to understand, prepare for, and comply with. 

In this session, we will discuss:
•	The business impact of the new CPRA rights, requirements, and changes
•	Guidance on CPRA planning: Building on your CCPA program
•	The top 5 proactive planning measures to take today

Speakers:
Wendi Lozada-Smith, Senior Privacy Consultant, TrustArc
Kelly P. Meyers, CIPT, Senior Data & Privacy Program Specialist, Macerich
Clarissa Benavides, Juris Solutions Consultant / Managing Counsel - Privacy, Large Automotive Financial Services Corporation
Darren Abernethy, of counsel, Greenberg Traurig

CPRA Guidance (50m)

(50m) Mike Wasnok, Director, Process Excellence & Information Privacy at Yamaha Corporation of America, demonstrates how his company uses TrustArc Cookie Consent Manager to meet global compliance requirements, deliver consent experience, and demonstrate compliance.

In this session, you'll learn about: 
•	Real-life use cases for addressing cookie compliance
•	Solutions and best practices
•	Why being privacy forward is important for companies

Managing Cookie Consent at Yamaha (50m)

The GDPR forced companies to spend a substantial amount of time, resources and money on becoming compliant. For many companies, it took years to understand, build and manage a compliance program to meet the variety of requirements included in the GDPR.

With new and updated privacy laws and regulations popping up, such as CCPA and Privacy Shield invalidation, companies are now being tasked with assessing the impact to their current privacy program and learning how to weave them into existing practices.

This webinar to leverage the substantial amount of work that was done for the GDPR to simplify additional privacy compliance.

Key takeaways: 
-Key similarities and differences between GDPR and CCP
-The main compliance areas that can be leveraged for multiple requirements (including individual rights and consent
-Recent legislative developments with similarities to GDPR and CCPA
-How a framework based approach helps achieve ongoing compliance for future legislation

How to Leverage Your GDPR Compliance for CCPA, Privacy Shield & More New Require

GDPR

CCPA

Privacy Framework

Privacy Compliance

Privacy

Compliance

Privacy and Data Protection

GDPR Compliance

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to Leverage Your GDPR Compliance for CCPA, Privacy Shield & More New Require

Presented by

About this talk

More from this channel