For many organisations, the GDPR was viewed as a project, with an end date of May 25, 2018. In reality, this is the start date in which organisations must now be able to demonstrate an ongoing capacity to comply. And, with the dust of the entry into application of the GDPR barely settled, the data protection community is shaping up to deal with the next challenge: the California Consumer Privacy Act (CCPA). Before the GDPR, there were already 100s of privacy and data protection laws and regulations and there will be many more in the years to come. Privacy legislation will always be subject to change, no matter where an organisation is located and in how many countries it operates. In this session, we will focus on why an accountability approach is the most pragmatic, scalable, and proven method for supporting compliance with multiple laws. We will discuss how an accountability approach to multi-jurisdictional compliance works in both theory and practice.
Teresa Troester-Falk, Chief Privacy Global Strategist, Nymity
Andy Bloom, Chief Privacy Officer, McGraw-Hill Education
Kimberly Bubnes, Director, Global Data Privacy, General Motors
Jennie Hargrove, Global Data Privacy Manager, HID Global