privacy law and compliance forum 2016
TRANSCRIPT
This year marks 30 years since the inception of The Canadian Institute. It is time to match our brand with the dynamic strides we have made.
See inside for details…
CIThe Canadian InstituteBusiness Information in a Global Context
Gain real-world insights from leading industry experts from:
March 30 – 31, 2016 | Marriott Bloor Yorkville | Toronto
Chaired by:Pamela SnivelyVice President, Chief Data & Trust Officer, TELUS
IBM Corporation
Institute for Clinical Evaluative Services
LexisNexis Canada Inc.
Microsoft Canada
Bank of Montreal
Hear directly from the regulators:Office of the Privacy Commissioner of Canada
Office of the Information and Privacy Commissioner of Ontario
EARN CPDHOURS
Scotiabank
Symcor Inc.
TELUS
SterlingBackcheck
TMX Group Ltd.
Advance your skills by attending the Post-Conference Master Classes. Choose from:
Building a Compliant and Accessible Privacy Policy
Creating and Implementing a Successful Information Security Program
A
B
13TH ANNUAL13TH ANNUAL
a C5 Group CompanyBusiness Information in a Global ContextRegister Now | 1 877 927 7936 | CanadianInstitute.com/Privacy
PRIVACY LAW & COMPLIANCEFORUM
PRIVACY LAW & COMPLIANCEFORUM
Now Featuring Customized Content for Your Data Security Team!Register Together and Save.See Inside for Details.
Sponsorship & Exhibition Opportunities
Maximize your organization’s visibility in front of key decision-makers in your target market. For more information, contact Director of Business Development Daniel Gellman at 416-927-0718 ext. 7389, toll-free 1-877-927-0718 ext. 7389 or by email at [email protected]
Join the Conversation @CI_Legal #PrivacyLaw The Canadian Legal Network
Legal Accreditation: This program can be applied towards 9 of the 12 hours of annual Continuing Professional Development (CPD) required by the Law Society of Upper Canada.This program has been approved by the Law Society of Saskatchewan for 9.5 CPD hours for the conference. Members will also receive an additional 3 CPD credit hours for each workshop attended.The same number of hours may be applied toward your continuing legal educational requirements in British Columbia.The Barreau du Québec recognizes training activities held outside of the province so long as the activities have been approved by another Provincial Law Society.For Alberta lawyers, consider including this course as a CPD learning activity in your mandatory annual Continuing Professional Development Plan as required by the Law Society of Alberta.
• Benefit from a program that is tailored to address both privacy and security concerns, designed to include separate, concurrent streams for privacy compliance and information security professionals
• Hear directly from the federal and provincial levels of government on new privacy priorities in Canada, strategies for avoiding complaints with the Office of the Information and Privacy Commissioner of Ontario, and clarification on the changes to PIPEDA
• Discover practical solutions on safeguarding data and establishing appropriate breach response protocol in your organization
• Understand what it takes to establish breach readiness in today’s climate, including an appropriate breach response protocol in your organization
• Learn about the compliance, enforcement, and evolution of CASL
Join our email list to receive exclusivediscounts and program updates.
canadianinstitute.com/elist
Join leaders from industry, government and the legal community to discuss fast-moving trends, new legislations and winning practices for safeguarding your organization against the devastating consequences of a privacy breach.
Join us for The Canadian Institute’s 13th Annual Privacy Law & Compliance Forum, and you will:• Discuss the challenges and threats posed by big data and
the internet of things, transfers of personal information to third party processors, and cross-border data flow
• Explore the new models of accountability and data governance in the changing world of Big Data
• Keep abreast of class action lawsuits based on the privacy tort of intrusion upon seclusion
• Ensure best practices by building a privacy policy that is compliant and accessible
• Examine privacy in the workplace, including limitations on employee privacy rights and the use of technology in the workplace
Register now and save your seat by calling 1-877-927-7936 or by visiting our website at www.CanadianInstitute.com/Privacy
CIThe Canadian InstituteBusiness Information in a Global Context
This year marks 30 years since the inception of The Canadian Institute.
It is time for a brand, logo and language in keeping with the dynamic strides we have made as a company. It is time for a brand that will take us forward for the next 30 years.
C5 Group, comprising The Canadian Institute, American Conference Institute and C5 in Europe, will unite under one central brand image, appropriately a globe. See how bringing together the power of people and the power of information can accelerate your growth and success.
Our new brand look and language will be fully revealed soon. Stay tuned for more exciting changes.
30 years expanding
across the globe
30 years building a network of
industry leaders
30 years hosting more than 6,000
conferences
8:00 Registration Opens and Refreshments are Served
9:00 Opening Remarks from Chair
Pamela SnivelyVice President, Chief Data & Trust OfficerTELUS
9:15 Update from the Office of the Information and Privacy Commissioner of Ontario
David GoodisAssistant Commissioner, Policy and Corporate ServicesOffice of the Information and Privacy Commissioner of Ontario• Employee privacy: police background checks• Changes to PIPEDA and PHIPA• Privacy class actions under PHIPA• Cloud computing
10:00 Networking Refreshment Break
10:15 Governance and Best Practices: Accountability Remains a Constant throughout the Evolution of Privacy
Amalia Steiu, CIPM, CIPT, CRISC, CISM, PMPIndependent Privacy ConsultantIAPP Canadian Advisory Board Samara Starkman, JD, LL.M, CIPP/C, CIPMPrincipal ConsultantDrawbridge Consulting Inc.• Accountability framework provided by the
Privacy Commissioner • Leveraging this framework throughout the
organization• Role of the internal auditor• Training and awareness privacy program• How the privacy accountability framework
can be implemented into a cohesive corporate compliance program
9:00
9:15
10:15
11:15 Managing Big Data Privacy Concerns
Moderator:Pamela SnivelyVice President, Chief Data & Trust OfficerTELUSPanel:Adam KardashPartner, Privacy and Data ManagementOsler, Hoskin & Harcourt LLPAnick Fortin-CousensChief Privacy Officer, IBM Canada & Privacy Program DirectorIBM CorporationDella Shea Vice President, Privacy & Data Governance, and Chief Privacy Officer Symcor Inc.• Overview of big data analytics through real-
life applications and use-cases• Understand privacy and other risks
associated with big data- Discuss tensions between privacy law and
big data analytics• Explore new or evolving models of data
governance in the changing world of big data• Understand how data de-identification
works, and how it can help mitigate risks• Transfers of personal information to third-
party processors • Security and privacy concerns surrounding
the Internet of Things (IoT)
12:30 Networking Luncheon for Delegates and Speakers
1:45 Office of the Privacy Commissioner of Canada (OPC) on Changes to PIPEDA and the OPC’s Privacy Priorities
Vance LocktonSenior Regional AnalystOffice of the Privacy Commissioner of Canada• The OPC’s four Privacy Priorities,
with a focus on:- Economics of personal information; and,- Reputation and privacy
• The changes to PIPEDA introduced by the Digital Privacy Act
11:15 INDUSTRY FOCUS
1:30KEYNOTE ADDRESS
Chair: Pamela Snively Vice President, Chief Data & Trust Officer TELUS
Karen Burke Enterprise Chief Privacy Officer Bank of Montreal
Alex Cameron Partner, Privacy & Information Protection Group Fasken Martineau DuMoulin LLP
Blair Campbell Director, Privacy and Business Conduct Scotiabank
Julie Chapman Senior Legal Counsel and Chief Privacy Officer LexisNexis Canada Inc.
Laura Davison Chief Privacy Officer Institute for Clinical Evaluative Services
Anick Fortin-Cousens Chief Privacy Officer, IBM Canada & Privacy Program Director IBM Corporation
David Goodis Assistant Commissioner, Policy and Corporate Services Office of the Information and Privacy Commissioner of Ontario
Andrew Heitelman Senior Counsel Telus
Adam Kardash Partner, Privacy and Data Management Osler, Hoskin & Harcourt LLP
Vance Lockton Senior Regional Analyst Office of the Privacy Commissioner of Canada
Daniel Michaluk Partner, Information Management and Privacy Practice Group Hicks Morley Hamilton Stewart Storie LLP
Emma Phillips Partner, Labour Law Group Goldblatt Partners LLP
Elena V. Reshetnikova Senior Offerings Counsel, Offerings and Services Regulatory Compliance Finance, Accounting and Payments Accenture Inc.
Della Shea Vice President, Privacy & Data Governance, and Chief Privacy Officer Symcor Inc.
Bobby Singh Chief Information Security Officer TMX Group Limited
Samara Starkman, JD, LL.M, CIPP/C, CIPM Principal Consultant Drawbridge Consulting Inc.
Amalia Steiu, CIPM, CIPT, CRISC, CISM, PMP Independent Privacy Consultant IAPP Canadian Advisory Board
Mark Sward Director of Privacy SterlingBackcheck
John Weigelt National Technology Officer Microsoft Canada
Day 1 Wednesday, March 30, 2016Hear from our Distinguished Speaker Faculty
Good mix of topics, good speakers – Senior Corporate Counsel,
Marsh Canada Ltd. “ ”(Liked) the wealth of shared updated information – Chief Privacy Officer,
The Data Group of Companies“ ”
Interesting topics and strong speakers – Director, Compliance Audit,
Scotiabank“ ”a C5 Group Company
Business Information in a Global ContextRegister Now | 1 877 927 7936 | CanadianInstitute.com/Privacy
TRACK 1: PRIVACY COMPLIANCE
2:30 Practical Privacy Impact Assessments (PIA)
Laura Davison, Chief Privacy Officer, Institute for Clinical Evaluative Services• Benefits of developing PIA tools for your organization• Examples of PIA tools
3:30 Networking Refreshment Break
3:45 Current Trends in Privacy Litigation and Class Actions
Alex Cameron, Partner, Privacy & Information Protection Group, Fasken Martineau DuMoulin LLP
Over the past two years, Canada has witnessed a tremendous increase in privacy-related litigation and class action activity. Plaintiffs have advanced a variety of claims and are achieving success in obtaining damages for privacy breaches, and in certifying privacy class actions. This session will examine:
• Current trends and the state of the law• How plaintiffs have framed privacy claims
• Damages and other remedies awarded • Effective strategies to mitigate legal risk
TRACK 2: INFORMATION SECURITY
2:30 What it Takes to Establish Breach Readiness in Today’s Climate
Pamela Snively, Vice President, Chief Data & Trust Officer, TELUS• Assigning the responsibility of managing a
data breach• Including an appropriate breach response
protocol in your organization• Testing the protocol
3:30 Networking Refreshment Break
3:45 Managing Risks Associated with Service Providers
Elena V. Reshetnikova, Senior Offerings Counsel, Offerings and Services Regulatory Compliance Finance, Accounting and Payments, Accenture Inc.Karen Burke, Enterprise Chief Privacy Officer, Bank of MontrealBobby Singh, Chief Information Security Officer, TMX Group Limited• Monitoring cross-border data flow• Mitigating security concerns and breaches• Performing your due diligence• Ensuring adequate training is provided• Improving your auditing system
• Handling risks associated with outsourcing data abroad
• Safeguarding your organization from privacy litigation when transferring information to third party processors
4:45 Day 1 Closing Remarks from Chair and Conference Adjourns
2:30
3:45
2:30
3:45
4:45
Many professionals in the field of privacy do not have a background in information security and tend to be intimidated by technical processes such as encryption. The importance and significance of the use and understanding of encryption to protect customer data is becoming increasingly apparent. This session will act as a primer on encryption and provide key takeaways that can be leveraged and referenced at your organization.
• The history and development of encryption• Types of encryption and how it works• Practical everyday examples• Organizational implementations and
requirements
Privacy in the Workplace: Developments Since R. v. Cole
Emma PhillipsPartner, Labour Law GroupGoldblatt Partners LLPDaniel Michaluk Partner, Information Management and Privacy Practice GroupHicks Morley Hamilton Stewart Storie LLP• Do employees have a right to privacy in the
workplace? What are the limitations on employee privacy rights?
• How is technology blurring the distinction between work and home? When does the use of technology in the workplace go too far?
• How far can employers go in monitoring their employees, both at work and off-duty?
10:45 Networking Refreshment Break
10:30 CASL Compliance and Implications for a Global/ Multi-National Business
Julie ChapmanSenior Legal Counsel and Chief Privacy OfficerLexisNexis Canada Inc.Andrew HeitelmanSenior CounselTELUS• When a customer unsubscribes, does it apply
to the Canadian subsidiary or the global organization?
• How to create an internal consent tracking system
• Training non-Canadian employees on CASL and PIPEDA compliance. How far should you go?
• Who is liable for non-compliance?• Latest information on enforcement actions• Updates on regulatory guidance from the CRTC• Building a compliance program
11:45 Closing Remarks from Co-Chairs and Conference Concludes
9:45
11:00INDUSTRY
FOCUS
12:00
Join the Conversation @CI_Legal #PrivacyLaw The Canadian Legal Network
Day 2 Thursday, March 31, 2016
[CONT’D DAY 1] Wednesday, March 30, 2016
TWO SEPARATE AFTERNOON TRACKS TO RUN CONCURRENTLY
(Registration Opens at 2:00 pm) Choose from one of the following:
8:15 Refreshments are Served
9:00 Opening Remarks from Chair
9:15 Encryption 101: Everything You Always Wanted to Know But Were Afraid to Ask
Blair CampbellDirector, Privacy and Business ConductScotiabank
8:45
9:00 INDUSTRY FOCUS
©The Canadian Institute, 2016
Call 1-877-927-7936 for Group or Special Industry Pricing Options
Complete Payment Details Please add 13% HST to all orders
Please charge my o VISA o MasterCard o AMEX o Discover Card
NUMBER EXP. DATE
CARDHOLDER
oI have enclosed my cheque for $_______________ _including applicable taxes made payable to The Canadian Institute (GST No. 84221 1153 RT0001 )
o WIRE TRANSFER ($CAD)
Please quote the name of the attendee(s) and the program code 353L16 as a reference.
Beneficiary: The Canadian InstituteBank Name: HSBC / Account #: 055319-001
Address: 150 Bloor St, Suite M100, Toronto, ON
Swift Code: HKBCCATT / Transit #: 10362 / Bank #: 016
4
Bringing a Team?
Payment Policy
Payment must be received in full by the program date to ensure admittance. All discounts will be applied to the Program Only fee (excluding add-ons), cannot be combined with any other offer, and must be paid in full at time of order. Group discounts available to 3 or more individuals employed by the same organization, who register at the same time.
Delegate Substitutions and Cancellations
You must notify us by email at least 48 hrs in advance of the conference if you wish to send a substitute participant. If you are unable to find a substitute, please notify us in writing no later than 10 days prior to the conference date. All cancellations received will be subject to a cancellation fee of $350 plus applicable taxes. Delegates opting to receive a credit voucher will receive a credit for the full amount paid, redeemable against any other Canadian Institute conference in the next 12 months.
No credits or refunds will be given for cancellations received within 10 days of the conference start date. Delegates may not “share” a pass between multiple attendees without prior authorization. No liability is assumed by The Canadian Institute for changes in program date, content, speakers or venue. The Canadian Institute reserves the right to cancel any conference it deems necessary and will, in such event, make a full refund of any registration fee, but will not be responsible for airfare, hotel or other costs incurred by registrants.
Terms and Conditions
Fill in your Profile
SALUTATION NAME
JOB TITLE ORGANIZATION
ADDRESS CITY
PROVINCE/STATE POSTAL CODE COUNTRY TEL.
FAX EMAIL
TYPE OF BUSINESS NO. OF EMPLOYEES
APPROVING MANAGER JOB TITLE
3
Select your Level of Engagement SAVE $200 Register & Pay by Feb. 24, 2016 Register & Pay after Feb. 24, 2016
PLEASE ADD 13% HST TO ALL ORDERS
o Program (on site) $1,995.00 $2,195.00
o ELITEPASS*: Program + 1 Master Class: o A or o B $2,590.00 $2,790.00
o Live Webcast (Program Only) $1,595.00
BRING YOUR PRIVACY OR DATA SECURITY COUNTERPART AND SAVE†
Teams of 2-3 (Save 15%) USE CODE: D15-353-TM16
o Program (on site) $1,695.75 $1,865.75
o ELITEPASS*: Program + 1 Master Class: o A or o B $2,290.75 $2,460.75
All program participants will receive an online link to access the conference materials as part of their registration fee.
o I cannot attend and would like to purchase a copy of the electronic conference material for $495 + applicable taxes.
2
*ELITEPASS is recommended for maximum learning and networking value.†This special discount cannot be combined with group rates or any other special offers.
5 Accept the Terms and Conditions to Register I confirm I have read and understood the terms and conditions of registering for this event
353L16-TORConference Code
1PHONE:1-877-927-7936 or 416-927-7936
EMAIL:[email protected]
MAIL:The Canadian Institute 1329 Bay Street Toronto, Ontario M5R 2C4
ONLINE:www.CanadianInstitute.com/Privacy
FAX: 1-877-927-1563 or 416-927-1563
Choose your Registration Method
Fee Includes
The program, all program materials, refreshment breaks and lunches.
Venue Information at a Glance
Venue: Marriott Bloor Yorkville
Address: 90 Bloor St East, Toronto, ON M4W 1A7
TEL.: (416) 961-8000
Book your AccommodationFor information on hotel room availability and reservations, please go to www.canadianinstitute.com/MarriottYorkville2016 and enter your preferred dates. For additional assistance, please contact the Marriott Bloor Yorkville at (416) 961-8000 and request the ‘Canadian Institute’s Preferred Corporate Rate’. Corporate/Promotional Code is “KN8”. To avoid penalties, cancellation notice must be received by 11:59 pm on the day prior to arrival.
Post-Conference Master Classes Thursday, March 31, 2016 1:15 – 4:15 pm (Registration Opens at 12:45 pm) Choose from one of the following:
Building a Compliant and Accessible Privacy Policy
Ensure best practices by building a privacy policy that is both compliant and accessible. This workshop will provide you with the necessary tools to redesign, or build, your organization’s privacy policy.
Mark SwardDirector of PrivacySterlingBackcheck
ACreating and Implementing a Successful Information Security Program
Address the changing face of security as a result of evolving technology and today’s business environment. Learn effective strategies to develop and implement a successful information security program in your organization.
John WeigeltNational Technology OfficerMicrosoft Canada
B
A light lunch will be served to those attending the Forum and Master Class A or B.
1175580
Attention MailroomIf undeliverable to addressee, please forward to: Chief Privacy Officer, Chief Information Officer, Compliance Officer, Legal Counsel, Partner, General Counsel, IT Security Manager, Privacy Lawyer
Incorrect Mailing InformationIf you would like us to change any of your details, please email [email protected] or fax the label on this brochure to 1-877-927-1563.
The Canadian Institute1329 Bay Street Toronto, Ontario M5R 2C4
353L16.S
REGISTRATION CODE
This year marks 30 years since the inception of The Canadian Institute. It is time to match our brand with the dynamic strides we have made.
See inside for details…
CIThe Canadian InstituteBusiness Information in a Global Context
March 30 – 31, 2016 | Marriott Bloor Yorkville | Toronto
March 30 – 31, 2016 | Marriott Bloor Yorkville | Toronto
13TH ANNUAL
PRIVACY LAW & COMPLIANCE FORUMTOP REASONS TO ATTEND Benefit from a program that is tailored to address both privacy and
security concerns, designed to be customized for privacy compliance or information security professionals
Hear about what it takes to establish breach readiness in today’s climate, including an appropriate breach response protocol in your organization
Learn about the compliance, enforcement, and evolution of CASL
Keep abreast of class action lawsuits based on the privacy tort of intrusion upon seclusion
13TH ANNUAL13TH ANNUAL PRIVACY LAW & COMPLIANCE FORUM
13TH ANNUAL
WHO YOU WILL MEETPrivacy Compliance Titles:• General Counsel• Chief Privacy Officers• Compliance and Risk Managers• Privacy Officers• Privacy Ombudsman• Managers, Directors, VPs of
Compliance/Enforcement• Policy Advisors
• Privacy Lawyers• Labour Lawyers
Information/Data Security Titles:• Chief Information Officers• Chief Information Security Officers• Chief Technology Officers• IT Security Managers • Security Analysts
Exclusive Room Rates!American Conference Institute is pleased to offer our delegates a limited number of hotel rooms at a preferential rate. Please contact the hotel directly and mention the “CONFERENCE NAME HERE” conference to receive this rate.
PRIVACY LAW & COMPLIANCE FORUM
PRIVACY LAW & COMPLIANCE FORUM
Now Featuring Customized Content for Your Data Security Team!Register Together and Save.See Inside for Details.