Apr 212016

Sidley’s 2nd Annual Privacy and Cybersecurity Roundtable Provides Cross-Industry Insights from Senior Government Officials

Data Matters Contributors
, , , , , , ,

Senior legal, economic and privacy leadership from U.S. and European government joined Sidley partners and senior counsel as panel participants at the 2nd Annual Privacy and Cybersecurity Roundtable.  An audience of more than 70 privacy professionals across financial, healthcare and technology industries heard from three panels that focused on the latest developments and prospective issues in cybersecurity, big data and EU privacy.

Panelists previewed several specific privacy and cybersecurity issues that companies and their counsel will likely face in the near future. The first cybersecurity panel focused on the need for further guidance to provide companies more assurance when monitoring and sharing under the Cybersecurity Information Sharing Act . Panelists also discussed the government’s efforts to become close cyber defense allies with industry while addressing the private sector’s concerns about liability for sharing and other cyber defense activity.  A Big Data panel  then discussed U.S. and international considerations, focusing on the balance between regulation and innovation in the U.S. and EU.  The proposed U.S.-EU Privacy Shield and the coming EU General Data Protection Regulation (GDPR) were the dominant focus of the third panel, including robust discussion about the likelihood that the Privacy Shield will receive sufficient support, practical challenges companies presently face on data transfer solutions, and how EU policy debates may complicate implementation of both the Privacy Shield and the GDPR.

Members of the first panel on Cybersecurity included top-level government officials:

  • Stevan Bunnell, General Counsel to the U.S. Department of Homeland Security;
  • Kelly Welsh, General Counsel of the U.S. Department of Commerce; and
  • Michael Daniel, Special Assistant to the President and Cybersecurity Coordinator

Alongside former Deputy Attorney General of the United States and Sidley partner, Jim Cole, another Sidley partner from our DC office, Colleen Theresa Brown, and moderator, Ed McNicholas, one of the global leaders of Sidley’s privacy practice from the DC office.

Alan Raul, co-leader of Sidley’s Privacy, Data Security and Information Law practice, and former Vice Chairman of the White House Privacy and Civil Liberties Oversight Board, moderated the second panel which provided a global perspective on the legal restrictions, regulatory guidance, ethical standards and enforcement issues surrounding Big Data. Panelists were:

  • Giovanni Buttarelli, European Data Protection Supervisor;
  • David Edelman, Special Assistant to the President for Economic & Technology Policy at the White House’s National Economic Council (NEC); and
  • Maureen Ohlhausen, Commissioner of the Federal Trade Commission

The panelist were joined by Sidley’s Cam Kerry, former General Counsel and Acting Secretary of the United States Department of Commerce, and Sidley’s Ed McNicholas, to discuss the benefits and challenges of Big Data in business, government, research and healthcare.

The final panel covered the latest developments and privacy challenges out of the European Union and offered a prognosis for the approval, implementation and compliance of the EU General Data Protection Regulation.  Sidley’s Cam Kerry moderated the panel which included Giovanni Buttarelli, Kelly Welsh and Sidley partners, William Long from Sidley’s London office, and Colleen Brown from the DC office.

The panels were held in Sidley’s Washington, D.C. office on Monday, April  4, 2016.

Data Matters Contributors

sidleyprivacyblog@sidley.com

You might also like
UK Sets Out It’s “Pro-Innovation” Approach To AI Regulation

On 29 March 2023, the UK’s Department for Science Innovation and Technology (“DSIT”) published its long awaited White Paper on its “pro-innovation approach to AI regulation” (the “White Paper”), along with a corresponding impact assessment. The White Paper builds on the “proportionate, light touch and forward-looking” approach to AI regulation set out in the policy paper published in July 2022. Importantly, the UK has decided to take a different approach to regulating AI compared to the EU, opting for a decentralised sector-specific approach, with no new legislation expected at this time. Instead, the UK will regulate AI primarily through sector-specific, principles based guidance and existing laws, with an emphasis on an agile and innovation-friendly approach. This is in significant contrast to the EU’s proposed AI Act which is a standalone piece of horizontal legislation regulating all AI systems, irrespective of industry.

How the China Personal Information Protection Law Applies to Foreign Asset Managers

Since China’s Personal Information Protection Law (PIPL) came into effect in November 2021, there has been widespread uncertainty amongst offshore fund managers and investors with entities outside Mainland China as to how and whether the regime applies to them. Given the potential for foreign asset managers to overlook or misinterpret PIPL, this brief update outlines some guidance as to how PIPL can apply, and to whom, in a practical context.

EU Moving Closer to an AI Act – Key Areas of Impact for Life Sciences/MedTech Companies

The European Union is moving closer to adopting the first major legislation to horizontally regulate artificial intelligence. Today, the European Parliament (Parliament) reached a provisional agreement on its internal position on the draft Artificial Intelligence Regulation (AI Act). The text will be adopted by Parliament committees in the coming weeks and by the Parliament plenary in June. The plenary adoption will trigger the next legislative step of trilogue negotiations with the European Council to agree on a final text. Once adopted, according to the text, the AI Act will become applicable 24 months after its entry into force (or 36 months according to the Council’s position), which is currently expected in the second half of 2025, at the earliest.