Time Session Panelists
  Monday, 27 June 2022 (all times EDT)  
7:00 — 8:00 Sign-In and Breakfast  
8:00 — 8:15 Welcome and overview Schröder, Weinlein, White
8:15 — 9:30 Cross-border data transfers and data protection laws in the Asia Pacific (APAC) region: Emerging frameworks and hot topics HoWhite*
  Innovation in data transfers mechanisms and regulation of data protection has been a feature of the APAC region of late, with the Cross-Border Privacy Rules (CBPR) and interoperability initiatives such as Data Free Flow With Trust (DFFT) serving as notable examples. Building upon the dialogue from our 2019 Programme in Hong Kong, a distinguished panel of thought leaders from across APAC will update attendees on the latest developments in the region.  
9:30 — 9:45 Break  
9:45 — 10:45 Cross-border data transfers and data protection in the Middle East and Africa: New laws and regulatory approaches Akuetteh, BakerBowan, TorachWilkinson*
  Few regions have seen as much explosive growth in new data protection laws and regulatory offices as the Middle East and Africa. The panel will lead a dialogue on the commonalities between recent rules and regulatory guidance in these regions and whether there is an emerging consensus on cross-border data transfers and compliance requirements.  
10:45 — 11:00 Break  
11:00 — 12:15 Key challenges and practical solutions for privacy litigation with cross-border implications Kestenbaum, Massey, Räther, Schröder*
  Regulators are not the only parties becoming increasingly active in strongly enforcing privacy violations with significant fines. The private enforcement of rights, including damage claims, is also on the rise. This panel will lead a dialogue on how companies can mitigate the risk of privacy-related litigation from regulators, individuals and/or organizations claiming individual rights, and how to best defend against such claims should litigation become unavoidable.  
12:15 — 13:15 Lunch  
13:15 — 14:15 The rapid proliferation of global cyber threats: how do multinationals and their counsel reconcile the competing demands? Brown, Jorgensen, Louveaux*, Massey, Sussman, Vieyra, Zengin 
  Companies are increasingly facing global cyber threats from private organizations and state actors alike. These threats require robust IT security and organizational measures to prevent incidents, but also pose serious legal and compliance challenges for multinationals, including managing various counsel, the diverging notification laws across the world, and the risk of impending privacy litigation. The panel will lead a dialogue on practical solutions for multinationals facing the unique challenges of global cyber threats, both in terms of preparation and response.  
17:00 — 19:00 Reception (at offsite location TBA)  
  Tuesday, 28 June 2022 (all times EDT)  
7:00 — 8:00 Sign-In and Breakfast  
8:00 — 9:30 Data protection authority (DPA) roundtable Karadjov, Raynal, ScorzaWhite*, Will 
  Global DPAs will lead a dialogue on their respective challenges and priorities in both their enforcement and advisory roles under global data protection regimes. The dialogue will also address technological developments and data transfer mechanisms (e.g., SCCs; Trans-Atlantic Data Privacy Framework).  
9:30 — 9:45 Break  
9:45 — 10:45 Insights from former DPAs Bermúdez, Denham, Liboro, Schaar, Schröder*, Stoddart, Wong
  Examining issues of cross-border data transfers and data protection can look very different for a regulator than a business or other organization. How does being a DPA shape one’s view of the issues? This panel brings together former DPAs from across the globe who have experience on both sides of the regulatory divide to dialogue on what they see as the most important trends in the data protection field, how working in a regulatory capacity has changed how they speak with organizations about data protection, and what they see as the critical foci for DPAs.  
10:45 — 11:00 Break  
11:00 — 12:00 Cross-border data transfers case law update: Will judges be the new DPAs? Propp, Rodin, J., Withers*
  Each year, the International Programme features a detailed discussion of recent court decisions on privacy, data security, and cross-border data transfer issues. This year’s panel of privacy and data security legal scholars will lead a dialogue on the most instructive cases from the past year, with a particular focus on cases which suggest judges are taking on a regulatory role - so to speak - with regard to data protection. The panel will compare regulatory and judicial interpretations of law and discuss the implications these interpretations have for organizations.  
12:00 — 13:00 Lunch  
13:00 — 14:15 What's the harm? Understanding and proving privacy and data protection harms BrownLouveaux, Fennessy*, Zanfir-Fortuna
  Many data protection laws or cross-border frameworks discuss the prevention of harms to individuals, and legal actions must often prove a specific harm to succeed. However, the idea of harms can be a difficult one to put into concrete terms. In this panel, scholars examine how to define and evaluate the idea of a privacy harm in different jurisdictions and whether these harms are universal or specific.


*Panel Moderator

Monday, June 27, 2022 - 7:00am to Tuesday, June 28, 2022 - 2:15pm