this event combines it all

12 – 13 May 2014, Berlin, Germany | www.edpd-conference.com

THIS YEAR‘S TOP PRIVACY CONFERENCE IN BERLIN

COUNTRY REPORTS

MANY BEST PRACTICE EXAMPLES

NUMEROUSNETWORKINGOPPORTUNITIES

THIS EVENT COMBINES IT ALL ! PRIVACY LAW

DEVELOPMENTS IN EUROPE AND THE WORLD

REPORTS BY DATA

PROTECTION AUT-HORITIES

PRIVACY COMPLIANCE IN

GLOBAL CORPORATIONS

This event combines it all: It deals with data protection issues within global areas most relevant to your

company. Listen to many best practice reports from data protection specialists working outside Europe

and from experts of institutes and consultancies speciali zed in data protection. The conference bridges

many parts of the world, so that after your visit you will feel much more confident in dealing with com-

plex questions on international data protection!

You will also have the opportunity to listen to best practice reports from data protection officials from

different European countries. Also discuss the European Data Protection Reform with a panel of top-

class professionals as from the European Commission and the European Parliament. The parallel sessions

will allow you to choose exactly those topics which are most relevant to you.

Numerous networking opportunities complete the conference:

be it du ring the business speed-networking session or whilst enjoy ing a river cruise on the Spree in the

evening to which we cordially invite you.

Are you searching for an event that deals with more than the specificdata protection challenges within Europe?

Your corporation operates globally and you would like to expand yourknowledge in this field?

Then you should visit the 4TH EUROPEAN DATA PROTECTION DAYS!

2

WHAT’S NEW?

NEW COUNTRY REPORTS e.g. from Turkey, Russia, Brazil, Mexico and the US with California’s new privacy laws!

NEW BEST PRACTICE EXAMPLES

e.g. on big data implementation or global technology integration!

NEW REPORTS BY PRIVACY EXPERTS e.g. about data transfer, cloud, email centralization and archiving or the new EU cybersecurity strategy!

ADDITIONALLY EVENING DISCUSSIONat the end of the second day!

MORE NETWORKING OPPORTUNITIESNow with an Icebreaker Wall

3

Sources: Polizeiliche Kriminalstatistik; Symantec Glocal Internet Security Threat Report 2013; GfK verein, Studie „Daten & Schutz“, Statista

Registered criminal violations of data privacy *

n*o

fficial

term

: "Aus

späh

en, A

bfang

en vo

n Date

n einns

chl. V

orbere

itung

"

4,829 7,727 11,491 15,190 15,726 16,794

2007 2008 2009 2010 2011 2012

Top causes of data breaches in 2012

Insider theft8%

Fraud1%

Unknown6%Accidentallymade public

23%Hacker

40%Theft or loss of

computer or drive

23%

Upload

of all german households without an internet accessdo not have one because of privacy concerns16 percent16 percent

How do Germans try to protect their private data?

Online users in Germany do not use some features because of privacy reasons

* multiple responses allowed

55%online gaming

37%online banking

35%loyalty program

30%games in the www

29%online payment

27%online auctions

Data protection becomes more important CONTACT USPHONE: +49 (0)2 11 / 96 86 – 35 27

PROJECT MANAGEMENT

Bettina Karen Cebulla, Lawyer, Conference Director

REGISTRATION AND ALL CUSTOMER SERVICES ENQUIRIES

Kathrin Burczyk, Senior Conference Coordinator

Email: [email protected]

SPONSORSHIP AND/OR EXHIBITING

Iris Cassens-Wolf, Senior Sales Manager

Phone: +49 (0)2 11 / 96 86 – 36 63

Email: [email protected]

CONFERENCE PARTNERS

Follow us on twitter

www.twitter.com/legal_live

#EDPD14

Join our LinkedIn Group

“European Data Protection Days”.

www.linkedin.com

A high-level, but definitely informative overview on global developments in the area of privacy. Christian Grill, Amway GmbH

4

4th EDPD 2014EUROPEAN DATA PROTECTION DAYS | MONDAY, 12 MAY 2014

8.30 a.m.

Registration and welcome with coffee and tea

NETWORKING: ICEBREAKER WALLBring plenty of business cards and get to

know who is with you right from the start

at our “wall of fame”.

9.00 a.m.

Opening remarks from EUROFORUM and the conference chairman

Prof Dr Ian Walden,

Professor of Information and Communications Law,

Centre for Communication Law Studies,

Queen Mary, University of London, United Kingdom

BEST PRACTICE REPORTS BY GLOBAL PRIVACY OFFICERS

9.05 a.m.

BEST PRACTICE Organization models for an impactful global privacy programme Privacy programme organizational structure

Functions of a global privacy team

Global compliance model

– Approaches to privacy principles for a global organisation

– Roles and responsibilities across the organization

Ben Gerber,

Global Privacy Officer,

Group Legal & Compliance - Data Technology & Operation,

Standard Chartered Bank, Singapore

9.25 a.m.

BEST PRACTICE Privacy challenges for global technology integration Rising technology trends: mobile, social, cloud, pervasive

instrumentation and analytics

Use cases for data-derived value and challenges to privacy

Solutions based on privacy by design

Approaches to enabling trusted cross-border data flows

Christina Peters,

Chief Privacy Officer,

IBM Corporation, United States of America

9.45 a.m.

BEST PRACTICEBreaking the mould – a new approach to consent Why the current paradigm is broken

The regulatory trajectory – why consent will be a critical

element in any future regulatory framework

What consumers want

Transforming relationships with consumers through

permissions management

Vodafone’s journey towards consumer empowerment

Stephen Deadman,

Group Privacy Officer and Head of Legal - Privacy,

Security & Content Standards, Vodafone, United Kingdom

10.05 a.m.

Get involved and contribute to the debate:

Visit the speakers above at the

“QUESTIONS-AND-ANSWER-ROUND-TABLE” and ask your questions in a smaller group!

10.50 a.m. Break with coffee and tea

GLOBAL PRIVACY LAW DEVELOPMENTS

11.20 a.m.

International privacy review 100 countries and counting

The impact of Snowden

Standards and compliance

Regional snap shots

Prof Dr Ian Walden

11.50 a.m. Questions and answers

12.10 p.m. Business-Networking-Break

BUSINESS-NETWORKING-BREAK Don‘t miss this excellent networking opportunity!

1.00 p.m. Lunch Break

5

PARALLEL PANEL

GLOBAL PRIVACY LAW DEVELOPMENTS

2.00 p.m.

New California legislation – practical compliance tips for companies Structure and impacts of the new legislation

General US data privacy law developments

– FTC enforcement and class action litigation

– US Safe Harbor update

Prof Dr Lothar Determann,

Partner,

Baker & McKenzie LLP, USA (California)

2.20 p.m. Questions and answers

2.35 p.m.

The Podesta “Big Data and Privacy” Report in Context: The Past, Present and Future of U.S. Policymaking in Privacy

Lara Ballard,

Special Advisor for Privacy and Technology,

U.S. Department of State, United States of America


3.10 p.m.

Data Protection in Turkey Current situation in data protection legislation in Turkey

Legislative developments

– Amendments in the current legislation

– Draft legislation

Important issues that the companies which collect and

process data should pay attention to under the current

and future legislation

Basak Güzel,

Senior Associate Lawyer,

Gür Law Firm, Turkey


3.45 p.m. Break with coffee and tea

PARALLEL PANEL

CASE STUDIES AND BEST PRACTICE REPORTS

2.00 p.m.

BEST PRACTICEBig data implementation

Suzana Falavigna,

Director, Legal Affairs,

T-Systems, Brasil


2.40 p.m.

BEST PRACTICEEnsuring employee privacy: a practical insight Collection of employee personal data: how to ensure

compliant collection

Data processing and storage: how to ensure that all organi-

zational and technical measures of protection are in place

Requests of state authorities for data disclosures:

how to deal with such requests and when to say no

Sergey Kladov,

Legal Counsel,

Caspian Pipeline Consortium, Russia


3.20 p.m.

Social media marketing Data protection challenges for social media advertising,

blogging, and tweeting

How to do social sharing

Data protection and social media analytics and research

Monitoring social media use by employees

Karin Retzer,

Partner,

Morrison & Foerster LLP, Belgium


4.10 p.m. Break with coffee and tea

Choose your individual subject!

6

4.40 p.m.

The EU cybersecurity strategy – overview and business impact Proposed Directive on network and information security

National cybersecurity strategies

Security requirements and incident notification

Managing data protection risks

Dr Jörg Hladjk,

Counsel, Global Privacy & Cybersecurity Practice,

Hunton & Williams LLP, Belgium


5.20 p.m.

BEST PRACTICEAddressing Global Data Protection challenges Data governance or company governance?

Accountability, state of the art and future trends

How can it be applied in a large multinational company?

How is it translated in proposed regulation texts

and ways to improve?

Demonstration of accountability and trust creation

Global interoperability and mechanisms to global

demonstration

Daniel Pradelles,

Privacy Officer EMEA,

Hewlett-Packard CCF, France


6.00 p.m.

End of day one

6.45 p.m.

Departure evening event

7.00 p.m.

Start of the evening event

4.15 p.m.

Data privacy developments in Brazil for companies Overview

Data privacy and consumer relationship

Civil rights framework for internet in Brazil

(Marco Civil Regulatório)

Responsibility on data privacy violations

Current developments after espionage

Data privacy in Brazil for national and international

companies – transparency and reputation

Suzana Falavigna


4.50 p.m.

Transferring Personal Data from Russia Where to transfer (major requirements and obstacles)?

Data transfer agreement (major provisions)

Technical requirements

Liability risks

Vyacheslav Khayryuzov,

Lawyer,

Noerr, Russia


5.25 p.m.

The Personal Data Protection Act and its impact on Malaysia The salient provisions and data protection principles

under the Act

Practical issues faced by data users pursuant to the

implementation of the Act

Data User Registration and Classes of Data Users who

have been identified

Enforcement of the Act

Jillian Chia,

Partner,

SKRINE, Malaysia


We cordially invite you to a River Cruise

“Trip on the Spree River”: See lots of Berlin’s famous sights from the waterside!

Quelle

: Die S

tern

un

d K

reissch

iffahrt G

mbH

7

8.30 a.m.

Registration and welcome with coffee and tea

9.00 a.m.

Opening remarks from EUROFORUM and the conference chairman

Dr Ulrich Wuermeling LL.M.,

Partner,

Latham & Watkins LLP, Germany

EUROPEAN DATA PROTECTION LAW REFORM PROCESS

9.05 a.m.

European Data Protection Reform: recent developmentsDr Horst Heberlein,

Data Protection Unit, DG Justice,

European Commission, Belgium


9.40 a.m.

DISCUSSION Challenges and chances for Europe

CHAIR: Dr Ulrich Wuermeling LL.M.

– Dr Horst Heberlein

– Peter Hustinx, Supervisor,

European Data Protection Supervisor, Belgium

EUROPEAN DATA PROTECTION AUTHORITYS’ REPORTS

10.20 a.m.

Data protection in Europe and beyondJakob Kohnstamm,

President,

Dutch Data Protection Authority College Den Haag, The Netherlands


11.00 a.m. Break with coffee and tea

11.30 a.m.

Risk-based regulation is GREAT – how to comply with the UK’s data protection law

Christopher Graham,

Information Commissioner,

Information Commissioner's Office, United Kingdom

4th EDPD 2014EUROPEAN DATA PROTECTION DAYS | TUESDAY, 13 MAY 2014


12.05 p.m.

Regulated in Ireland – how to comply with Irish data protection law Common EU framework

Emphasis on assisting companies to be compliant

Firm enforcement for repeated non-compliance

Billy Hawkes,

Data Protection Commissioner,

Office of the Data Protection Commissioner, Ireland


12.40 p.m.

DISCUSSIONThe new role of the European Data Protection Board


– Christopher Graham

– Billy Hawkes

– Jakob Kohnstamm

1.10 p.m. Lunch break

2.00 p.m.

LUNCH-DISCUSSIONThe changing role of data protection officers in cross border environments

– CHAIR: Dr Jörg Hladjk, Counsel, Global Privacy & Cybersecurity Practice,

Hunton & Williams LLP, Belgium

– Bojana Bellamy, President,

Centre for Information Policy Leadership, United Kingdom

– Gabriela Krader, Corporate Data Protection Officer,

Deutsche Post DHL, Germany

– Christina Peters, Chief Privacy Officer, IBM, United States of America

2.35 p.m.

European Data Protection Reform: how to a put a risk based approach in practice? What is a “risk based approach” versus a “compliance approach”?

Making Privacy Impact Assessments and Privacy by Design practical

Getting it adopted by management, marketeers and engineers

Closing the loop: adding it to the management cycle

Simon Hania,

Corporate Privacy Officer, TomTom, The Netherlands

8

PARALLEL PANEL

PRACTICAL DATA PROTECTION ISSUES


4.45 p.m.

Email centralization and archiving The principles and general legal framework applicable

Specific protections concerning electronic communications

Actors and compliance duty

Specific challenges concerning electronic communications

Paul van den Bulck,

Partner,

McGuireWoods LLP, Belgium-France


5.20 p.m.

International data transfers: The coming EU legal regime for the next five years Likely results of the EU reform process

Coping with legal uncertainty

Transitioning between different data transfer mechanisms

Dr Ulrich Wuermeling LL.M.

5.40 p.m. Final discussion, questions and answers

6.00 p.m.

End of the 4th European Data Protection Days

Chooindsu


3.20 p.m.

Update: EU data protection in the cloud – what next? What works (and doesn't work) in applying EU laws to

cloud data

Impact on cloud providers and users of evolving EU data

protection rules

The hot issues in cloud deals and what can you do about them

Assessing the risks of moving email, human resources and

customer relationship management data to the cloud

Prof Dr Christopher Millard,

Professor for Privacy and Information Law, Centre for Commercial

Law Studies, University of London, United Kingdom


4.00 – 4.45 p.m. Networking-Break with coffee and tea

and PRIVACY-QUIZ

4.15 p.m.

SOLUTION FORUMAPEC cross border privacy rules vs EU binding corporate rules

Saira Nayak,

Director of Policy,

TRUSTe

Very informative, gives a goodpicture of current developments,good mix of legal and practical.Eva Prinz, Paypal Deutschland GmbH

Win a free Ticket for the

5th European Data Protection Days

2015!

99

PARALLEL PANEL

GERMAN PRIVACY LAW

CHAIR: Dr Axel Freiherr von dem Bussche LL.M.,

Partner, Sepecialist Solicitor für Information Technology Law,

Taylor Wessing, Germany

4.45 p.m.

Implementation of EU Directive into German law and what the regulation will mean to it If I know the EU Directive – why is there a need to look at

German Data Protection Law in detail?

The Data Protection Officer – a successful self-regulation

approach

Contractual audit rights and obligations – your partners

under close control?

What we expect of the coming regulation

Markus Stamm,

Senior Counsel,

Alcatel-Lucent Deutschland AG, Germany


5.20 p.m.

GERMAN GOVERNANCEData protection authorities in Germany Data protection authorities in Germany and

their competences

Düsseldorfer Kreis / Datenschutz-Konferenz

Task and powers of authorities

Examinations by the BayLDA

Fines and penalties

Miriam Meder,

Referent, Internet and Telemedia,

Bavarian Data Protection Authority for the Private Sector, Germany

5.40 p.m. Final discussion, questions and answers

6.00 p.m.

End of the 4th European Data Protection Days

ose your dividual ubject!

19.00

EVENING DISCUSSION

CAN PRIVACY LAW PROTECT FROM ESPIONAGE?

NSAWITH A KEYNOTE SPEECH OF

William Binney,

Former Technical Director,

National Security Agency United States of America

After more than 30 years working with the National

Security Agency (NSA) William Binney continues to

speak of the NSA‘s data collection policies. Listen to

the insider and how he calculates the current position.

MODERATOR: Dr. Ulrich Wuermeling LL.M.

– William Binney

– Billy Hawkes, Data Protection Commissioner,

Offi ce of the Data Protection Commissioner, Ireland

– Prof Dr Michael Ronellenfi tsch,

Hessian Data Protection Commissioner, Germany

– Peter Schaar, President, EAID, Former Federal Commissioner

for Data Protection and Freedom of Information, Germany

An excellent overview of data protection laws around the globe with good substantive slides. Barbara Bennett, Hogan Lovells US LLP

10

EXHIBITORS | EDPDWith robust compliance, governance, infrastructure management and productivity solutions, AvePoint today helps more than 13,000 organizations enable enterprise collaboration with confidence. AvePoint

is a corporate member of the International Association of Privacy Professionals, educating and consul-

ting at the EU privacy congress, and participates in International Standards bodies including the W3C

and United Nations Internet Governance Forum. AvePoint provides privacy guidance and expertise

across all industry sectors and company sizes.

AvePoint Deutschland GmbH | Nymphenburger Str. 3, 80335 Munich, Germany | www.avepoint.eu

The Hunton & Williams Global Privacy and Cybersecurity Practice is known throughout the world

for its deep experience, breadth of knowledge and outstanding client service. Chambers and

Partners, The Legal 500 and Computerworld magazine, all have named Hunton & Williams as a top

firm for data protection and privacy. In addition to our legal practice, we distinguish ourselves

through our Centre for Information Policy Leadership, which boasts the active participation of 40

leading multinational corporations.

Hunton & Williams | Park Atrium, Rue des Colonies 11, 1000 Brussels, Belgium | www.hunton.com

TRUSTe is the leading global Data Privacy Management (DPM) company and powers trust in the

data economy by enabling businesses to safely collect and use customer data across web, mobile,

cloud and advertising channels. Our cloud-based Data Privacy Management Platform delivers inno-

vative technology products, including website monitoring and advertising compliance controls –

along with privacy assessments and certifications. More than 5,000 companies worldwide, inclu-

ding Apple, Disney, eBay, Forbes, LinkedIn and Oracle rely on our DPM platform and globally

recognized Certified Privacy Seal to protect/enhance their brand, drive user engagement and mini-

mize compliance risk.

TRUSTe | 48 Charlotte Street, London, W1T 2NS, United Kingdom | www.truste.com

LOGO PRESENCE | EDPD

Hogan Lovells has specialised in data protection for over 25 years. Today, with over 2500 lawyers

worldwide, and 60 lawyers in our privacy and information group , we have one of the largest and most

experienced data protection practices in the world, spanning the United States, Europe, and Asia. We

have worked on international privacy projects for many Fortune 500 companies, and have dealt with

privacy issues in most of the world‘s jurisdictions. With our global reach, we are able to provide a 24-

hour global hotline to respond to data emergencies.

Hogan Lovells International LLP | Karl-Scharnagl-Ring 5, 80539 München, Germany | www.hoganlovells.com

For over 175 years, McGuireWoods has built its reputation on providing clients with the highest

quality legal service and sound strategic guidance. Members of our data privacy and security team

include more than 30 interdisciplinary lawyers. We help clients secure their data globally, and navi-

gate through U.S., European, Middle Eastern and Asian data security and privacy laws. Team lawy-

ers collectively speak 13 languages and respond to matters relating to international cloud compu-

ting, data transfer and international e-discovery matters.

McGuireWoods LLP | One James Center, 901 East Cary Street, Richmond, VA 23219, United States |

www.mcguirewoods.com

Morrison & Foerster has a world-class privacy and data security practice that is cross-disciplinary

and spans our global offices. With more than 60 lawyers actively counseling, litigating, and repre-

senting clients before regulators around the world on privacy and security of information issues, we

have been recognized by Chambers and Legal 500 as having one of the best domestic and global

practices in this area. For more information, please visit: http://www.mofo.com/privacy- -data-secu-

rity-services/ and „like“ us on Facebook at http://www.facebook.com/MoFoPrivacy

Morrison & Foerster LLP | Boulevard Louis Schmidt 29, 1040 Brussels, Belgium | www.mofo.com

Taylor Wessing is a leading European full service law firm. With over 950 professionals across 23

offices in Europe, the Middle East and Asia, we comprehensively advise companies on all questions

of national and international business law. Through many years of experience in the fields of infor-

mation technology/data protection and media we are well-equipped to deal with the demands and

challenges faced by technology companies today. This has been recognised by a number of JUVE

Awards in these categories.

Taylor Wessing | Am Sandtorkai 41, 20457 Hamburg, Germany | www.taylorwessing.com

1

Your personalregistration code

VENUE

Hotel Pullman Berlin SchweizerhofBudapester Straße 25, 10787 Berlin, Germany

Telefone: +49 (0) 30/2 69 60

11

Please also check out ourdiscounts for group bookings!

Visit our events with one or more colleagues! This is what you get:

The 2nd delegate from your company will receive a 10% discount, the 3rd delegate will get 15%.

Date, signature

Company

Contact person

Line of business

Address

Name

Department

Address

Please fill in if invoice address is different from customer’s address:

Year f birthEMail

Name

Position/Department

Phone Fax

EUROFORUM Deutschland SE may contact me about various products and services offered by companies of the group and

co-operation partners: Email: yes no Fax: yes no

Year of birthEMail

Name

Position/Department

Phone Fax

EUROFORUM Deutschland SE may contact me about various products and services offered by companies of the group and

co-operation partners: Email: yes no Fax: yes no

REGISTRATION AND INFORMATION

or f ill in and fax it to: +49(0) 0211/9686–4040

Register now

online! www.euroforum.de/register/p1106113

CONDITIONS OF PARTICIPATION. The attendance fee per person, which includes con-

ference documentation, lunches, tea/coffee and evening dinner, is payable on receipt of

the invoice. Once your registration has been received you will be sent a confirmation slip.

Registrations can be cancelled (in writing please) free of charge up to 14 days before

the event. When a cancellation is made within 14 days of the conference date, half the

participation fee will be reimbursed. In the event of cancellation on the day of the con-

ference, or failure to attend, the full fee will be payable. The registered delegate may of

course send a substitute at no additional cost. The organisers reserve the right to amend

the programme of events if necessary.

DATA PROTECTION. EUROFORUM Deutschland SE uses the data collected in connec-

tion with your order and use of our services and products within the applicable legal

limits for the purpose of performing our services, and to provide you with information

by post and e-mail about further offers by us, companies of our Group or co-operation

partners, which are similar to the services of which you availed yourself previously. If,

during the use of the data, it is transmitted to countries lacking an adequate level of

data protection, we will create sufficient guarantees to protect the data. Furthermore,

we will use your data if you have given us your consent to do so. You may object to the

use of your data for advertising purposes or to being contacted by email or fax at any

time by contacting EUROFORUM Deutschland SE, Postfach 11 12 34, 40512 Düsseldorf,

Germany. Our customer services (Phone: +49 (0)2 11.96 86 – 33 33) shall be pleased to

accept requests for changes.

YOUR ROOM RESERVATION. In the conference hotel, there is a limi ted allocation of

rooms available at a reduced price. Please arrange the room reservation directly with

the hotel quoting the reference “Euroforum event” or make your room reservation at the

following website: https://resweb.passkey.com/go/EDPD2014

At the end of the first day, the hotel Pullman Berlin Schweizerhof invites you to a get together.

By f a x : +49 (0)2 11/96 86–40 40

By phone : +49 (0)2 11/96 86–35 27 [Kathrin Burczyk]

Swi t chboar d : +49 (0)2 11/96 86–30 00

By mai l : EUROFORUM Deutschland SE P.O. Box 11 12 34, 40512 Duesseldorf, Germany

By emai l : [email protected] [email protected]

Inte rnet : www.edpd-conference.com

Yes, I wish to attend the 4th European Data Protection Days in Berlin on 12 and 13 May 2014 at the price of € 1,999,– plus VAT per Person [P1106113M012] [The fee covers full conference documentation. A substitute may attend in your place at no additional cost.]

If you want to book days separately please contact us at +49 (0) 2 11/96 86 – 35 27

Yes, I wish to also take part in the river cruise on 12 May 2014 (no additional costs) [P1106113M110]

I cannot take part in this event but I am interested in the documentations. Please send me the documentations at a price of € 399,–. [All prices exclude VAT and transportation costs.] [P1106113M700]

Please inform me about sponsoring and exhibition possibilities.

Please amend my address as shown. [Should you wish to change your address by telephone, please dial +49 (0)2 11/96 86–33 33.]

BERLIN SCHWEIZERHOF

this event combines it all

Documents