TrustArc at PSR 2019 – Event Recap

TrustArc had the pleasure of sponsoring, speaking and exhibiting at IAPP Privacy.Security.Risk 2019 in Las Vegas last week. With over 2,000 attendees, 225 speakers and 30 exhibitors, the conference was bustling with privacy professionals from all over the world. 

TrustArc co-hosted a welcome reception with RadarFirst on Monday evening to officially kick off the conference. Privacy professionals packed into the speakeasy-inspired Barbershop lounge to network and catch up over swanky cocktails.

On Monday evening, TrustArc SVP of Product Michael Lin stepped on to the Little Big Stage to discuss how businesses use the TrustArc Platform to automate and manage global privacy compliance for regulations such as GDPR, CCPA, LGPD and many others. Michael spoke on the evolution of privacy and the value of using technology to simplify privacy compliance as the privacy ecosystem becomes more complex.

On Tuesday afternoon, TrustArc SVP Privacy Intelligence and General Counsel Hilary Wandall spoke on “Demystifying the Role of Automated Intelligence in Privacy Management.” In her interactive session, Hilary explored how the privacy industry can leverage the benefits of artificial intelligence and machine learning to drive efficiencies in privacy program management.


In the exhibit hall, TrustArc privacy experts were busy discussing privacy compliance challenges with attendees at the dynamic TrustArc booth. Attendees participated in live demos and learned how TrustArc simplifies compliance through privacy-tech solutions

Overall the conference was a great opportunity for privacy-minded professionals to learn, network and share ideas on current and upcoming privacy challenges. We look forward to partnering with the IAPP at upcoming events. Come say hello if you will be attending the IAPP ANZ Summit in Sydney, IAPP CCPA Comprehensive Live in New York or IAPP Europe Data Protection Congress in Brussels. 

Check out what other events TrustArc will be at in 2019! 



September Event Spotlight

TrustArc regularly attends and hosts events around the world and online – please visit us at one or more of the following events.


CCPA & Privacy Summit, presented by Intel®, Microsoft, IntraEdge, Truyo, TrustArc, and DLA Piper
Houston, Dallas, Costa Mesa, and Palo Alto 

An intimate series of forums to discuss the impact of the new privacy regulations and get expert help on how to operationalize your compliance.

> Request a seat by emailing Mary Anne Timothy here


IAPP Data Protection Intensive: Deutschland 2019
September 18 – September 19

Attendees will explore how to manage a privacy program, how global developments and regulations could impact your work, and hear candid discussions with German DPOs, plus federal and Bavarian DPAs. The conference will include a strong roster of expert faculty representing legal, technical, regulatory, compliance, and marketing disciplines, to address the very latest developments in data privacy taking place locally, regionally and around the world. 

TrustArc will be sponsoring and exhibiting at IAPP Data Protection Intensive. Stop by booth #6 to say hello! 

> Learn more here


TrustArc & RADAR Welcome Party during Privacy. Security. Risk. 2019 
September 23 | 6:30pm to 9:30pm
The Cosmopolitan, Las Vegas

Back by popular demand, TrustArc and RADAR are once again hosting a welcome reception at IAPP Privacy.Security.Risk 2019 in Las Vegas!

The reception will take place at the speakeasy-inspired Barbershop located within the Cosmopolitan, minutes away from the conference exhibit hall. Don’t miss this opportunity to network over a swanky cocktail at one of the hottest spots in Vegas.

> Contact your TrustArc Representative


IAPP Privacy. Security. Risk. 2019 
September 23 – September 25
Las Vegas 

The greatest data-driven products and services aren’t great until privacy is part of the equation. Come to IAPP Privacy. Security. Risk. 2019 and see how privacy and technology can work together to make innovation and data protection synonymous.

Join us in Las Vegas for a packed agenda of breakout sessions and workshops on privacy-technology convergence, insightful keynote speakers, outstanding networking opportunities, and training for career advancement. Speakers will tackle topics ranging from artificial intelligence to the Internet of things at a practical, operational level. Learn solid fundamentals such as key indicators for managing risk and conducting effective privacy impact assessments (PIAs). Move on to advanced subjects like privacy by design, artificial design, preventing “dark” data and more.

TrustArc SVP Products Michael Lin will be speaking on “Simplifying Privacy Compliance with the TrustArc Platform” on the Little Big Stage on 9/23 at 6pm. 

TrustArc SVP Privacy Intelligence and General Counsel Hilary Wandall will be speaking on “Demystifying the Role of Automated Intelligence in Privacy Management” on 9/24 at 2:45pm.

TrustArc will be sponsoring, speaking and exhibiting at Privacy. Security. Risk. 2019. Stop by booth #205 for a demo of the TrustArc Platform or schedule a demo here

> Learn more here


TrustArc Privacy Insight Series Webinar
Leveraging the Power of Automated Intelligence for Privacy Management
September 26 @ 9AM PT / 12PM ET / 4PM GMT
Online Webinar

With the increasing prevalence of privacy technology, how can the privacy industry leverage the benefits of artificial intelligence and machine learning to drive efficiencies in privacy program management? Many papers have been written on managing the potential privacy issues of automated decision-making, but far fewer on how the profession can utilize the benefits of technology to automate and simplify privacy program management.

Privacy tools are starting to leverage technology to incorporate powerful algorithms to automate repetitive, time-consuming tasks. Automation can generate significant cost and time savings, increase quality, and free up the privacy office’s limited resources to focus on more substantive and strategic work. This session will bring together expert panelists who can share examples of leveraging intelligence within a wide variety of privacy management functions.

Key takeaways from this webinar:

  • Understand the difference between artificial Intelligence, machine learning, intelligent systems and algorithms
  • Hear examples of the benefits of using intelligence to manage privacy compliance
  • Understand how to incorporate intelligence into your internal program and/or client programs to improve efficiencies

>  Register here 

June Event Spotlight: European Data Protection Summit, DAA Summit, Infosecurity Europe, Privacy Insight Series Webinars, CCPA Workshop, and GDPR/CCPA Summit

TrustArc regularly attends and hosts events around the world and online – please visit us at one or more of the following events.


European Data Protection Summit
June 3

Data Protection World Forum launched a new event for 2019, The European Data Protection Summit & Dinner took place on 3rd June, 2019 at a newly launched state-of-the-art event suite at 133 Houndsditch, London. This one-day event was designed to tackle the latest issues, challenges and developments that data protection, privacy and security professionals are facing in 2019. In the evening the summit transformed into an evening-dinner where attendees were able to enjoy a drinks reception, three-course meal, networking and entertainment. The European Data Protection Summit & Dinner brought together an international line-up of expert speakers who explored the latest insights and findings in data protection, governance and security.

TrustArc was a major sponsor of this event and Senior Privacy Consultant Ralph O’Brien spoke on the “What Data Are You Collecting, How Is It Stored And Used?” panel.  Ralph also spoke on the “Managing Data Flows with Third Parties” panel.

> Learn more here


DAA Summit 2019
Washington DC
June 4 – June 6

The industry has reached an inflection point. What does compliance mean when government regulation is informed by a successful self-regulatory code of conduct? DAA SUMMIT 19:DC seeks to start a conversation that will focus on answering this question and the inherent challenges for more insight into what’s next at the intersection of data, policy, and innovation. A new, holistic interplay of ideas and solutions shared between government regulation and industry self-regulation could reshape the way we create, work, and engage with our customers for decades to come.

TrustArc is a gold sponsor of the DAA Summit 2019. TrustArc Senior Counsel Darren Abernethy will be speaking on “Brand Relevance and Growth in a Privacy-First Era” on Thursday, June 6th at 11:40.

> Learn more here


Infosecurity Europe
June 4 – June 6

Infosecurity Europe is the sourcing and knowledge hub for Europe’s information and cyber security community. Featuring an interactive exhibition floor with over 400 cutting-edge suppliers, a far-reaching conference programme and a host of networking opportunities, the event brings information and cyber security to life.

Brought to you by Infosecurity Group, with over 23 years of global experience in informing, inspiring and enabling business connections in the information and cyber security industries.

TrustArc will be exhibiting at this event. Stop by stand X60 to say hello!

> Learn more here


TrustArc Privacy Insight Series Webinar
What New US State Privacy Laws Mean for your Business
June 11 @ 9AM PT | 12PM ET | 5PM GMT
Online Webinar

While the focus over the past two years has been around global privacy regulations such as the EU GDPR regulation, individual US states have been proposing — and enacting — a number of privacy-impacting laws that may affect your company in new and challenging ways. From the comprehensive California Consumer Privacy Act (CCPA) to the revisions in data breach laws in Colorado, Oregon and Vermont, it can be difficult to track these changes, and even more difficult to build a compliance program with the flexibility to adapt to the constantly changing environment.

This webinar will provide:

  • An overview of major new US state privacy laws and important pending legislation
  • An update on the discussions and atmospherics around a comprehensive US privacy law
  • Recommendations on incorporating US state privacy law compliance into a global privacy risk management program

> Register here


Wolters Kluwer and Fenwick & West Present: CCPA Workshop and Ask an Expert Special Session
Mountain View
June 13

While there has been a lot of discussion at the California Department of Justice-sponsored workshops on the nuances of the forthcoming California Consumer Privacy Act (CCPA), there are, unfortunately, more questions than answers. If that wasn’t confusing enough, now there is a looming amendment to create a private right of action for any violation of the law without a cure period.

While parts of the CCPA require you to start tracking the collection and sharing of your personal data this year (the “one-year look-back”), now is the time for action. In this unique CCPA in-person session, hear from and ask industry leaders how they are solving the 10 hardest parts of CCPA.

TrustArc SVP Privacy Intelligence and General Counsel Hilary Wandall will be a speaker at this event.

> Learn more here


TrustArc Privacy Insight Series Webinar
GDPR Compliance: Convince Customers, Partners, and The Board You Are Compliant!
June 19 @ 9AM PT | 12PM ET | 5PM GMT
Online Webinar

Many companies have invested significant time and resources trying to design and implement GDPR compliance programs. Internally, they may have generated hundreds or thousands of pages of project plans, policies, processes and reports – including records of processing, DPIA reports and much more. But how can you demonstrate to internal stakeholders, clients and partners that you have a comprehensive program and that your processes and products are GDPR-compliant?

This webinar will provide these key takeaways:

  • The current state of an official GDPR certification and codes of conduct
  • Case studies of how companies are demonstrating compliance
  • The benefits of an external third party GDPR validation

> Register here


TAG Data Governance Society presents GDPR / CCPA Summit
Roswell, GA
June 19

This premier event will provide expert guidance on the impactful GDPR/CCPA Compliance Requirements. The evening format will be a collaborative panel discussion focused on sharing knowledge/experiences/approaches, with the goal of providing the audience with tangible takeaways.

Areas of focus include GDPR and CCPA compliance knowledge sharing, insights, targeted conversations and networking opportunities with like-minded Atlanta executives.

TrustArc is a gold sponsor of this event.

> Learn more here


TrustArc Participates in IAPP Canada Privacy Symposium 2019

TrustArc was pleased to once again take part in the IAPP Canada Privacy Symposium held on May 23rd and 24th in picturesque Toronto–participating in four conference sessions, side events and, of course, countless conversations. The annual confab of industry thought-leaders, regulators and privacy professionals from Canada and abroad came at a particularly fascinating moment for privacy and data protection in the world’s second largest country.

Recent events that have cast Canada in the privacy spotlight include the Office of the Privacy Commissioner (OPC)’s release of findings against the Canadian arm of a global credit reporting agency headquartered in the U.S.; the OPC’s simultaneous launching of a Consultation on a policy change to require consent for transborder data flows under the country’s Personal Information Protection and Electronic Documents Act (PIPEDA); and the government’s announcement of a new Canadian Digital Charter with ten principles intended to, if adapted to law and supported by codes of conduct and certifications, further establish Canada as a digital trade and innovation leader, while providing for adequate enforcement measures to maintain trust. At the IAPP Canada opening session, the Privacy Commissioner of Canada even announced a suspension of the Consultation, in light of privacy law changes that may arise from the Digital Charter reforms.

With this as a backdrop, the conference was ripe for rich discussions of the past, present and future of Canadian privacy. TrustArc did its part to facilitate these discussions by engaging with panelists and audience members during multiple conference sessions.

Hilary Wandall, SVP, Privacy Intelligence and General Counsel, presented on two panels in one day. The first, “International Developments Impacting Canada,” was a wide-ranging discussion of the emerging regulatory approaches around the world that are impacting the Canadian landscape, from Europe to Brazil, India to Japan, and the U.S. to Singapore. The panel likewise addressed the need to continue to infuse ongoing accountability and risk considerations into an organization’s business activities in order to realize the full value of the personal data it holds and the insights derivable from it. It further looked at digital trade considerations, recent adequacy decision negotiations and questions around the establishment of a Canadian Accountability Agent for APEC CBPR purposes.

Hilary’s second panel, “NIST Roundtable: Privacy Framework Discussion Draft” looked at the voluntary, risk- and outcome-based enterprise risk management tool being developed to help organizations answer the fundamental question of “How are we considering the privacy impacts to individuals as we develop our systems, products and services?”  This Framework, still in its discussion draft phase as of April 2019, but with its preliminary draft anticipated in July/August 2019, is likely to be consequential, given the success enjoyed by the National Institute of Standards and Technology’s highly respected Cybersecurity Framework. Audience questions raised during the session earnestly discussed the need to focus on not only the risks or potential adverse impacts of a possible data processing, but also its benefits, to which Hilary shared thoughts on legitimate interest balancing tests and the benefits of quantifying risk. Hilary spoke alongside NIST’s Deputy Manager for the Privacy Framework.

Margaret Alston, Director of Consulting, presented with RADAR on “How to Build a Global Data Incident Management Program,” which featured discussions of how to simplify and operationalize critical privacy program functions to help ensure compliance with existing and emerging global data breach regulations–of which there are many. The engaging session looked at the lifecycle of privacy incidents, PIPEDA’s mandatory data breach notification and recordkeeping requirements, what a unified framework for global data breach compliance looks like, and surveyed global data breach laws that passed or have taken effect since 2018 (including penalties for non-compliance).  A major theme across these laws, as Margaret explained, whether at the U.S. state and federal level, the GDPR, PIPEDA or APAC-Australia, is the use of a multi-factor risk assessment to determine notification obligations to affected individuals, taking into account the nuances of each law’s standard of harm.  

Darren Abernethy, Senior Counsel, presented on a Star Wars-themed panel entitled “The Last Jedi: Why the Future of Privacy Belongs to Canada,” a comparative look at the legal and historical cultures that led to different privacy regimes in the European Union (comprehensive model), the United States (sectoral approach) and Canada (co-regulatory). The session asked, one year after the GDPR has been in effect, which model would best meet the challenges of tomorrow?  Darren addressed the U.S. and European perspectives, surveying U.S. sector-specific legislation; discussing federalism and states as “laboratories for experimentation” as evidenced by California Consumer Privacy Act and the Washington State bill; describing the major federal legislative proposals put forth in Congress, federal agencies, private corporations, and associations such as Privacy for America or think tanks such as CIPL and the IAF. Darren concluded that any federal or state legislation should focus on interoperability with the major common concepts of significant privacy standards around the world to reduce the cost of implementation for businesses and to facilitate digital trade. Each law can do so in line with the specific cultural and historical principles for its jurisdiction, such as First Amendment rights in the U.S., but laws that have an eye towards syncing with other major standards to interoperate together will be the laws and regimes that rule the accountability- and risk-based data galaxy of the future.  

To request copies of any slides used during the above sessions, or to learn more about how TrustArc can help your organization with privacy compliance technology solutions, consulting or assurance programs/certifications, contact TrustArc today.

TrustArc at European Data Protection Summit

Data Protection World Forum will launch a new event for 2019, The European Data Protection Summit & Dinner which takes place next week on 3rd June, 2019 at a newly launched state-of-the-art event suite at 133 Houndsditch, London. This one-day event is designed to tackle the latest issues, challenges and developments that data protection, privacy and security professionals are facing in 2019. In the evening the summit will transform into an evening-dinner where attendees will be able to enjoy a drinks reception, three-course meal, networking and entertainment. The European Data Protection Summit & Dinner will bring together an international line-up of expert speakers exploring the latest insights and findings in data protection, governance and security.

During the European Data Protection Summit, TrustArc Senior Privacy Consultant Ralph O’Brien will be speaking on “What Data Are You Collecting, How Is It Stored And Used?” This session will explore the dangers of all parts of the data journey in the GDPR era. A business that collects data – whether those data come from EU-based employees, clients or customers – must comply with the GDPR, even if that business is located outside the EU. Ensuring data collection is consent-based is only a fraction of the challenge – secure storage and compliant handling of those data can represent something of a legislative minefield, especially if third-parties are involved. Ralph’s session will take place within the Synergy track on June 3rd at 09:40.

TrustArc also has the pleasure of exhibiting at the European Data Protection Summit. Stop by booth #15 to learn how TrustArc simplifies privacy compliance for the GDPR, CCPA, and other data protection regulations with an unrivaled combination of technology and privacy expertise!