The events of 2020 and 2021 underlined the necessity for data privacy in a big way. So much so, that Data Privacy Day is now Data Privacy Week in order to give the topic the attention it needs. Now in early 2022, the cybersecurity and data privacy community are intensely focused on protecting individuals and organizations from data breach scandals, fragmented data privacy legislation, and misuse of personal information.
Data Privacy Week 2022, hosted by the National Cybersecurity Alliance and LinkedIn, will convene data privacy experts from industry, government, academia, and non-profit for an afternoon of discussions on hot topics in privacy, including online tracking, adding privacy to awareness trainings, data collection for D&I initiatives, and more!
Audience: Privacy professionals and leaders across industries, government, and academia
12:00pm Welcoming Remarks
- Kalinda Raina, Head of Privacy, LinkedIn
12:05pm Fireside Chat
- FTC Commissioner Noah Joshua Phillips
- Julie Brill, Corporate Vice President, Chief Privacy Officer, and Deputy General Counsel, Microsoft
12:30pm Passwords: Appropriate or Reasonable?
Unlike prescriptive standards such as PCI DSS, privacy regulation takes a different approach to keeping personal data secure. GDPR requires organizations to take appropriate security measures, CCPA wants them to be reasonable.
The password has long been the way of proving to the computer that you really are who you claim to be. However, it is easily attacked by technical and social means. So how long can a password as a single authentication factor be considered appropriate or reasonable when it is protecting personal data? And is that shorter than the time an organization needs to implement stronger authentication methods?
- John Elliott, Pluralsight Author, InfoSec strategy and GRC specialist
12:40pm Designing Privacy into Systems
A major priority in the privacy field is the consideration of privacy issues from the beginning of development of everything: tech products, services, infrastructure, etc.. The privacy by design framework calls for privacy to be at the forefront, rather than an afterthought. In this panel discussion, experts discuss how organizations might implement privacy by design and how the culture of privacy can evolve using this concept.
- Moderator: K Royal, Head of Legal and Privacy, TrustArc
- Margaret Gloeckle Associate General Counsel, Head of Global Privacy, A+E Networks
- Woody Hartzog, Professor of Law and Computer Science, Northeastern University
1:10pm Integrating Data Privacy Awareness into Your Security Awareness Training Program
Find out how to best instill a strong understanding of data privacy awareness in your workforce through effective training initiatives. Learn the importance of: Providing end users with high-quality course and reinforcement content; Using security awareness training to explore key trends in data privacy and information security; Ensuring every employee can apply data privacy best practices to their daily tasks and responsibilities
- Theo Zafirakos, CISO and Professional Services, Terranova Security
1:20pm Rethinking the Privacy/ Convenience Trade-off
The internet was created for convenience; not privacy. In this session, panelists will explore the trade-off that comes with connecting online and innovations that allow the tech industry to provide customers a personalized experience, while still respecting privacy.
- Moderator: Tom Pendergast, Writer and Editor
- Amira Dhalla, Associate Director, Consumer Reports
- Anshu Sharma, CEO and Co-founder, Skyflow
1:45pm I know what you did last summer. Also this summer. Also yesterday.
Online tracking has evolved to one of the most sophisticated ways to identify users and their behavior, in order to provide targeted content, optimized to attract their attention. During this talk, we will discuss the status quo of the tracking ecosystem, according to research and studies performed by Norton Labs. Based on this work we are able to provide quantified answers to some important questions around the effect of online tracking on privacy, expose the complexity of the tracking ecosystem, and highlight the reasons why consumers need help to make informed decisions.
- Petros Efstathopoulos, Global Head of Research, NortonLifeLock
2:10pm Considering Privacy in Diversity and Inclusion Initiatives
Diversity and Inclusion initiatives are an important part of the career landscape, as they allow for organizations to prioritize hiring people with diverse backgrounds. However, these initiatives collect sensitive data and thus, present a privacy concern. Experts dive into the nuances of balancing DE&I initiatives with data privacy concerns.
- Moderator: Lisa Plaggemier, Executive Director, National Cybersecurity Alliance
- Ruby Zefo, Chief Privacy Officer, Uber
- Michele Gilman, Venable Professor of Law, University of Baltimore School of Law
- Mary Madden, Senior Fellow, Joan Ganz Cooney Center at Sesame Workshop
2:50pm Top 5 Global Privacy Priorities
2022 promises to be another exciting year for privacy, with new regulations being introduced, laws coming into effect, and updates to existing laws: including China’s PIPL now being in effect, multiple US state laws coming into effect over the next 18 months including CPRA and Virginia’s CDPA, as well as the potential for India’s privacy law to be passed.
One thing that remains constant is the importance of data protection and the role of the privacy officer.
Join us for this session as we walk through the top 5 global privacy priorities, including upcoming regulations, emerging trends among privacy professionals, changing consumer behavior and the growing focus on trust in organizations.
Key takeaways: Stay ahead with information on upcoming data protection legislation, Gain operational insights to prepare your privacy program for the coming challenges, How to future-proof your privacy program through a global, cross-sectoral approach
- Daniel Dickey, Privacy Consulting Manager, OneTrust
3:05pm Closing Remarks
- Lisa Plaggemier, Executive Director, National Cybersecurity Alliance
Lisa Plaggemier, Interim Executive Director, National Cybersecurity Alliance
Kalinda Raina, Vice President, Chief Privacy Officer, LinkedIn
Noah Joshua Phillips, FTC Commissioner
John Elliott, Pluralsight Author, InfoSec strategy and GRC specialist
Petros Efstathopoulos, Global Head of Research, NortonLifeLock
Theo Zafirakos, CISO and Professional Services, Terranova Security
Daniel Dickey, Privacy Consulting Manager, OneTrust
Michele Gilman, Venable Professor of Law, University of Baltimore School of Law
Ruby Zefo, Chief Privacy Officer, Uber
Margaret Gloeckle, Associate General Counsel, Head of Global Privacy, A+E Networks
Woody Hartzog, Professor of Law and Computer Science, Northeastern University
Mary Madden, Senior Fellow, Joan Ganz Cooney Center at Sesame Workshop
K Royal, Head of Legal and Privacy, TrustArc
Amira Dhalla, Associate Director, Consumer Reports
Julie Brill, Corporate Vice President, Chief Privacy Officer, and Deputy General Counsel, Microsoft
Anshu Sharma, Co-founder & CEO, Skyflow
Tom Pendergast, Writer and Editor
Thank you to our sponsors: