Developing Issues in Global Privacy and Risk Management Update

(111 Ratings)

Produced on: November 22, 2016

Course Format On Demand Audio

Taught by

Categories:

Course Description

Time 90 minutes
Difficulty Intermediate

Nearly all companies face privacy and information governance issues as a result of the intersection of legacy, decentralized, and hosted databases. As technology continues to evolve, so too must every business, by considering and planning against privacy and cybersecurity risks. Information is its own currency, and an organization’s ability to protect and leverage its information assets is crucial to protecting its brand and reputation. The way to most effectively marshal information assets is to develop a holistic privacy and risk management structure.  

Parallel to the rapid evolution of technology, the data privacy legal and regulatory landscape also continues to evolve – both in the U.S. and internationally.  Companies that collect personal information for employees or customers should be aware of how the most recent changes may impact their collection, use, and transfer of data.

This session updates the overview of the current state of global privacy and risk management that Ms. Callahan and Ms. Wachs of Jenner & Block provided last year.  The presenters discuss the current risk profile for privacy incidents, and ways to mitigate risk through information governance. During the presentation they also provide an overview of the EU-U.S. Privacy Shield and the impending EU Global Data Protection Regulation. In addition, Ms. Callahan and Ms. Wachs detail the components of a comprehensive privacy program, including information technology tools and technical controls, and how each of these contributes to mitigating enterprise-wise privacy risk. 



Learning Objectives: 
  1. Obtain an overview of the current state of global privacy and risk management
  2. Evaluate your company’s current privacy risk profile
  3. Understand the role of management and the board in assessing your company’s privacy risk profile
  4. Navigate the current US and global legal privacy framework
  5. Identify the components of a comprehensive privacy program
  6. Determine which privacy program components, technology tools, and technical controls can help mitigate your company’s privacy risk

Faculty

Heidi L. Wachs

Jenner & Block

Heidi L. Wachs is a member of the firm's Privacy and Information Governance Practice.  A nationally recognized leader in privacy, breach response and data security compliance, her wealth of experience includes serving as a privacy researcher and as chief privacy officer of a major university.  Clients seek her counsel in data breach handling and recovery, information classification, information security and identity governance and administration. Ms. Wachs is a certified information privacy professional.

 

Ms. Wachs joined Jenner & Block after serving as an analyst for the identity and privacy strategies team with Gartner for Technical Professionals from 2012 to 2014.  At Gartner, she researched, published and presented on issues of privacy and technology.  Prior to her work as an analyst, Ms. Wachs founded and developed Georgetown University’s privacy program, serving as the university’s first chief privacy officer and director of IT policy from 2007-2012, and is recognized as a national leader on education privacy issues.  Before serving at Georgetown, she was a government relations officer with EDUCAUSE, a nonprofit association whose mission is to promote the intelligent use of information technology in higher education.

Mary Ellen Callahan, Chair of Jenner & Block’s Privacy and Information Governance Practice, has unique and broad experience advising clients at the interface of privacy protection with cybersecurity and national security issues.  A nationally recognized privacy attorney with a decade and a half of outside counsel experience, she served as Chief Privacy Officer of the U.S. Department of Homeland Security from 2009 until August 2012.  She is a prolific writer and speaker on cutting-edge commercial privacy issues. She provides advice and counsel to an array of clients in industries that include media, public health and health care, manufacturing, online retail, government contracts, energy and other critical infrastructure sectors.

Since returning to private practice, Ms. Callahan has assisted over two dozen clients on privacy- and cybersecurity-related matters. Her work includes providing up-front guidance on establishing compliance programs that reflect privacy policy and industry best practices. She has counseled companies on data governance issues, including use of customer and advertising data. She has advised industry associations on future privacy issues and measures to address cybersecurity vulnerabilities. In the rapidly growing area of mobile privacy, she has advised and written on privacy best practices and evolving standards and approaches. She counsels frequently on the Children's Online Privacy Protection Act, the Video Privacy Protection Act, compliance with the European Union Data Protection Directive and the implications for businesses of the emerging White House Framework on Critical Infrastructure Cybersecurity. Ms. Callahan regularly advises clients on requirements and protocols associated with data breaches.

In 2015, Ms. Callahan was recognized by The National Law Journal as a “Trailblazer” in the regulatory and compliance area.  In 2013, she accepted the highest award in the privacy industry, the Privacy Vanguard Award, given by the International Association of Privacy Professionals. The award honors the privacy professional who has demonstrated outstanding leadership, knowledge and creativity in privacy and data protection. In 2011, she received the select Federal 100 Award, which recognizes individuals in government and industry who have played pivotal roles in the federal government information systems community. Ms. Callahan’s work on integrating cybersecurity, transparency and privacy at the Department of Homeland Security was cited as the reason for her Federal 100 recognition.  She is a prolific writer and speaker on privacy issues, including having testified before Congressional Committees numerous times in her capacity as Department of Homeland Security Chief Privacy/Chief FOIA Officer. Ms. Callahan has served as Vice-Chair of the American Bar Association's Privacy and Information Security Committee of the Antitrust Division; Co-chair of the Privacy Committee of the CIO Council, the principal interagency forum for improving agency practices related to the design, acquisition, development, modernization, use, sharing, and performance of Federal information resources; and Co-chair of the Privacy and Civil Liberties Subcommittee of the Information Sharing and Access Interagency Policy Committee. She is a Certified Information Privacy Professional/United States (CIPP/US).

Prior to joining the Department of Homeland Security in 2009, as a partner in the DC office of an international law firm, Ms. Callahan focused on privacy, security, data protection, consumer protection, and e-commerce issues across a wide variety of industries including retail, technology, entertainment, financial services, health care, telecommunications and government contracts. She advised businesses, including multinational companies, on a variety of privacy and information governance issues, including privacy and security policies; performed audits of clients’ privacy and security policies as related to relevant state and federal legislation and created and implemented requisite compliance strategies and programs; and drafted website privacy policies and terms of use. Ms. Callahan is also experienced as a litigator and has represented clients before federal administrative agencies, in federal and state courts in the District of Columbia and in federal courts in Virginia and New York.

She serves the firm as a member of the Diversity & Inclusion Committee and is a co-chair of the firm's Women's Forum Steering Committee.  Her pro bono legal work has included assisting in the development of privacy policies, terms of use and communications strategies for non-profit entities.

Reviews

NG
Natalie G.

This course contains a lot of good information that can be used for various types of organizations. The topics were presented in a manner that made them easy to understand.

MO
Mary Ann O.

Excellent material, great presentation

AK
Ahmed K.

Wow! Excellent; very thorough

MM
Maura M.

This was terrific, speakers were very knowledgeable and information was presented in a very organized useful manner with dynamic delivery.

AN
Adam N.

Great content

RC
Ruth C.

Great program both substantively and in the presentation

KM
Kerry M.

MaryEllen and Heidi are excellent! Very knowledgeable. Helpful program.

AA
Allison A.

Excellent speakers and program

JP
Jonathan P.

Absolutely fantastic presentation. The risk management aspects of this will really help me with my clients (particularly the talk about the upcoming GDPR).

DC
David N. C.

The materials include slides that can provide the basis for compliance documents.

JB
Julie A. B.

Outstanding.

Load More

$89

$ 89 Privacy & Cybersecurity In Stock

Accreditation

Get Unlimited Access to Lawline Courses

Unlimited CLE Subscription gives you access to take almost any course from our catalog and earn as much CLE credit as you need.