Title text 2022

The European Data Protection & Privacy Conference returns fully in-person in Brussels this year for the first time since 2019. Debating and discussing the most pertinent and timely data privacy issues through interactive panel discussions, speeches and interviews, this event is a staple in the European privacy community’s calendar, attracting more than 250 cross-sector delegates.

The 2022 edition of the European Data Protection & Privacy Conference will focus on the various European initiatives that aim to fulfil the block’s privacy and data sovereignty ambitions.

Topics of discussions will revolve around reflections on the intersection of the GDPR with the numerous digital files that have been introduced, debated and adopted in the past two years; considerations for privacy in the context of AI governance; how synergies can be created between different data privacy rulebooks worldwide and finally a focus on how our understanding of privacy may evolve as future technologies, such as the metaverse, emerge.

 

With keynote speeches from

Didier Reynders,
European Commissioner for Justice

Grant Harris,
Assistant Secretary of Commerce, Industry and Analysis, International Trade Administration, U.S. Department of Commerce 

11th Annual European Data Protection & Privacy Conference

Themes

GDPR

GDPR and the new wave of Tech Regulation

AI

Data Protection and AI governance

data transfers

Global privacy frameworks & trusted data flows

Data Privacy and Future Technologies

Speakers

Didier Reynders 240

Didier Reynders

Commissioner for Justice, European Commission

grant harris

Grant Harris

Assistant Secretary of Commerce, Industry and Analysis, International Trade Administration, U.S. Department of Commerce

*Pre-recorded speech

Aleid Wolfsen 240

Aleid Wolfsen

Deputy Chair,
EDPB

Joe Jones

Joe Jones

Deputy Director - International Data Transfers
UK DCMS

*Remote participation

Karolina Mojzesowicz

Karolina Mojzesowicz

Deputy Head of Unit Data Protection,
European Commission

Bruno Gencarelli 240

Bruno Gencarelli

Deputy to the Director for Fundamental Rights and the Rule of Law,
European Commission

peter eberl temp

Peter Eberl

Deputy Head of Unit, Cybersecurity and Digital Privacy Policy, DG CONNECT,
European Commission

Yordanka Ivanova 240

Yordanka Ivanova

Legal and Policy Officer for Artificial Intelligence,
DG CONNECT,
European Commission

Leonardo 240

Leonardo Cervera Navas

Director,
EDPS

Brando Benifei 240

Brando Benifei

Head of Delegation of Partito Democratico
European Parliament

*Pre-recorded speech

Monika Adamczyk 240

Monika Adamczyk

Cybersecurity Expert,
ENISA

*Remote participation

Teresa 240

Teresa Martínez Sánchez

Jefa de Área de Innovación Tecnológica,
Agencia Española de Protección de Datos (AEPD)

barbara-240

Barbara Cosgrove

Vice President & Chief Privacy Officer,
Workday

Ilias Chantzos 240

Ilias Chantzos

Global Privacy Officer,
Head of EMEA Government Affairs,
Broadcom Inc

John Miller 240

John Miller

Senior Vice President of Policy and General Counsel,
ITI

Elise 240

Elise Houlik

Chief Privacy Officer,
Intuit

Sermin 240

Sermin Altinkaya

Senior Product Manager Data Privacy Frameworks,
Usercentrics

Marco meta

Marco Pancini

Privacy Policy Director,
Meta

elisabeth-240

Elisabeth Dehareng

Partner,
Baker McKenzie

ursula_pachl 240

Ursula Pachl

Deputy Director General,
BEUC

Sebastiao 240

Sebastião Barros Vale

EU Policy Counsel,
Future of Privacy Forum

Fanny 240

Fanny Hidvegi

Europe Policy and Advocacy Director,
Access Now

Francis Crawley 240

Francis P. Crawley

Chair, International Data Policy Committee, CODATA; Co-Chair, EOSC-Future / RDA Artificial Intelligence and Data Visitation Working Group (AIDV-WG); Ukraine Clinical Research Support Initiative (UCRSI); Leuven, Belgium

Angel Serna 240

Angel Serna

Senior Vice President, Political & Government Affairs,
Zurich

Untitled design - 2022-10-18T103427.378

Sebastian-Dan Naste

Analyst,
Cullen International

Friederike Berfelde 240

Friederike Berfelde

Associate,
Brunswick Group

Patrick Grady 240

Patrick Grady

Policy Analyst,
Center for Data Innovation

Paul Adamson

Paul Adamson

Chairman,
Forum Europe

Agenda

This year’s edition will focus on the European initiatives that aim to fulfil the block’s privacy and data sovereignty ambitions. Topics of discussions will revolve around reflections on the intersection of the GDPR with the numerous digital files that have been introduced, debated and adopted in the past two years; considerations for privacy in the context of AI governance; how synergies can be created between difference data privacy rulebook worldwide and finally a focus on how our understanding of privacy may evolve as future technologies, such as the metaverse, emerge.

*** TIMES ARE IN CET ***

Event Day
2022-12-01
08:45 - 09:40
Welcome coffee and registration
09:30 - 09:45
Welcome by Forum Europe
09:45 - 11:00
Session 1: The GDPR and the new wave of Tech Regulation: Consistency, Compliance and Enforcement

Since the implementation of the GDPR nearly five years ago (*by the time of the conference), Europe is widely regarded as a global pioneer in tech regulation. This trend as a standard-setter in digital regulation intensified in 2022, most notably with the work on the DSA, the DMA, the AI Act and the acts under The European Strategy for Data. Complementarity and compatibility between these rules and consistent enforcement will be key for the digital economy to grow and thrive in Europe. This session will discuss the lessons learnt from the application of the GDPR and the functioning and limitations of its enforcement mechanisms as well as explore how these new and upcoming laws will interact with it.

 

  • While still in its infancy, are there areas of the GDPR that may already need rethinking to create synergies and avoid frictions with the upcoming new wave of Tech regulation (eg. consideration around the GDPR’s purpose limitation and the DMA data portability provision) as well as with consumer protection and competition rules? What can  be done to address the lack of a harmonised implementation and consistent enforcement of the GDPR? 
  • What cooperation and coordination mechanism will be established between the different enforcement authorities for each legal instrument to avoid fragmented oversight and enhance legal certainty?
  • To what extent will the European data framework enable individuals to better control their personal or self-generated data, and how will it work in practice?
  • What support will be provided to European businesses to allow them to operate and be competitive in the context of this new regulatory landscape? 
  • What tools are available to industry players to go beyond compliance and develop strategies that enable the adaptation of their data protection practices to constantly-evolving requirements and stay ahead of the legislative curve?
Session 1: The GDPR and the new wave of Tech Regulation: Consistency, Compliance and Enforcement image
Elisabeth Dehareng
Partner, Baker McKenzie
Session 1: The GDPR and the new wave of Tech Regulation: Consistency, Compliance and Enforcement image
Aleid Wolfsen
Deputy Chair, EDPB
Session 1: The GDPR and the new wave of Tech Regulation: Consistency, Compliance and Enforcement image
Karolina Mojzesowicz
Deputy Head of Unit Data Protection, European Commission
Session 1: The GDPR and the new wave of Tech Regulation: Consistency, Compliance and Enforcement image
Ilias Chantzos
Global Privacy Officer and Head of EMEA Government Affairs, Broadcom
Session 1: The GDPR and the new wave of Tech Regulation: Consistency, Compliance and Enforcement image
Fanny Hidvegi
Europe Policy and Advocacy Director, Access Now
Session 1: The GDPR and the new wave of Tech Regulation: Consistency, Compliance and Enforcement image
Sermin Altinkaya
Senior Product Manager Data Privacy Frameworks, Usercentrics
11:00 - 11:20
Morning Coffee Break
11:20 - 12:40
Session 2: Data Protection and AI governance

This session will focus on data protection, and privacy issues in the context of the discussions held about the AI Act.

When presenting the AI Act in April 2021, the European Commission aimed to create a path towards trustworthy development and deployment of AI-driven systems in Europe, setting a framework that would promote innovation and reduce risks to fundamental rights. With AI already ubiquitous in our lives, its limitless opportunities and risks are well recognised. The increased amounts of data enabling sophisticated AI models that have the potential to solve the numerous challenges that the world face today raise questions about privacy, fairness, accountability, and ethics when the technology is applied to personal data – it is therefore critical that the right technological and regulatory tools are in place to mitigate possible flawed or harmful results caused by risks such as algorithmic bias, dark patterns or surveillance abuses. This session will analyse the latest updates on the AI Act currently being discussed at both Parliament and Council levels focusing on issues relating to the use of personal data, privacy, and the protection of other fundamental rights. It will explore the numerous layers of regulation for the governance of data, addressed by the GDPR, the AI Act, the Data Act and the Data Governance Act and debate the extent to which this constitutes a harmonised governance framework providing legal certainty. It will discuss what is needed at regulatory level but also at technological level to ensure that AI developments are framed by ethical and privacy principles. It will also explore how the use of AI can provide innovative ways of solving privacy and consumer protection issues. 

 

  • How is the current version of the AI act interacting with other existing legal frameworks? How can it be ensured that regulations regarding personal data don’t make it more difficult for companies to gather data to train AI systems accurately enough to ensure fairness in predictive decision-making? 
  • To what extent does the proposed risk-based system in the AI Act appropriately address privacy and other fundamental rights concerns, especially when it comes to uses for content moderation, age-verification, facial recognition or predictive policing?
  • What lessons can be learnt from regulatory sandboxes that have been established with the aim of fostering responsible and innovative AI systems? 
  • What do rights-oriented and human-centric AI systems look like, and what are examples of best practices that have enabled the value brought by algorithmic decision-making based on personal data to be maximised while combating potential harmful threats?
  • How is AI technology being used for data protection, security and anonymisation purposes? What role can synthetic data, encryption, differential privacy and federated learning play to safely maximise the power of personal data? What can be learnt from sectors that are already using these techniques?
  • How can organisations, both private and public, operationalise ‘Responsible AI’?
Session 2: Data Protection and AI governance image
Brando Benifei (via pre-recorded speech)
Head of Delegation of Partito Democratico, European Parliament
Session 2: Data Protection and AI governance image
Yordanka Ivanova
Legal and Policy Office, AI Policy Development and Coordination Unit, DG CONNECT, European Commission
Session 2: Data Protection and AI governance image
John Miller
Senior Vice President of Policy and General Counsel, ITI
Session 2: Data Protection and AI governance image
Ursula Pachl
Deputy Director General, BEUC
Session 2: Data Protection and AI governance image
Francis P. Crawley
Chair, International Data Policy Committee, CODATA; Co-Chair, EOSC-Future / RDA Artificial Intelligence and Data Visitation Working Group (AIDV-WG); Ukraine Clinical Research Support Initiative (UCRSI); Leuven, Belgium
Session 2: Data Protection and AI governance image
Teresa Martínez Sánchez
Jefa de Área de Innovación Tecnológica, Agencia Española de Protección de Datos (AEPD)
Session 2: Data Protection and AI governance image
Sebastian-Dan Naste
Analyst, Cullen International
12:40 - 13:45
Lunch Break
13:45 - 14:10
Afternoon Keynote Speeches
Afternoon Keynote Speeches image
Paul Adamson
Chairman, Forum Europe
Afternoon Keynote Speeches image
Didier Reynders
Commissioner for Justice, European Commission
Afternoon Keynote Speeches image
Grant Harris (via pre-recorded speech)
Assistant Secretary of Commerce, Industry and Analysis, International Trade Administration, U.S. Department of Commerce
14:10 - 15:30
Session 3: Building bridges between global privacy frameworks to facilitate trusted data flows.

The global privacy landscape continues to develop at speed with new laws in different countries (such as Brazil, China, Kenya, Australia, to only name a few) having been introduced, updated or coming into effect in the last two years. In the US, five States have now enacted their own privacy rules, efforts at both the FTC and Congress levels are ramping up for the design of a comprehensive nationwide data privacy framework, and a Global CBPR Forum developed with APEC and other countries has been established to better facilitate multilateral cooperation. The Executive Order recently signed by President Biden brings a new EU-US data transfer system one step closer. In the UK, the government recently released the Data Protection and Digital Information Bill, a post-Brexit reform of its existing framework and is looking to enable free personal data transfers with countries for which the EU does not have adequacy decisions in place. Regional and national data sovereignty approaches are also becoming more prominent worldwide.

This session will explore the latest in data protection rules worldwide, how they converge and where tensions exist, what this means for current and future adequacy decisions with the EU, and how cooperation between different regions can be strengthened to foster synergies in privacy standards and boost trusted cross-border data flow.

 

  • What does the proliferation of new rules worldwide and the emergence of new multilateral agreements mean for the future of the EU’s adequacy decision mechanism?
  • It is well recognised that the convergence of global rules with like-minded partners is necessary to boost cross-border data flows and international trade, how is this compatible with the emergence of national and regional data sovereignty ambitions?  How can global interoperability between privacy laws be achieved in today’s geopolitical context, considering that data transfer agreements are both politically and business-driven?
  • With regards to the transatlantic relationship, what progress has been made since the signature of the Executive Order by President Biden to implement a EU-U.S. Data Privacy Framework? To what extent are the right provisions included to avoid another possible challenge before the CJEU?
  • What role can technology developments play to create data protection systems and tools that function beyond jurisdictional borders? What is being done to foster convergence in data privacy technical standards worldwide
  • How are businesses addressing the challenges of complying with multiple laws and what is being done to address the compliance challenges faced by global data-driven companies in the current challenging economic and geopolitical contexts?
Session 3: Building bridges between global privacy frameworks to facilitate trusted data flows. image
Friederike Berfelde
Associate, Brunswick Group
Session 3: Building bridges between global privacy frameworks to facilitate trusted data flows. image
Bruno Gencarelli
Deputy to the Director for Fundamental Rights and the Rule of Law, European Commission
Session 3: Building bridges between global privacy frameworks to facilitate trusted data flows. image
Barbara Cosgrove
Vice President & Chief Privacy Officer, Workday
Session 3: Building bridges between global privacy frameworks to facilitate trusted data flows. image
Joe Jones
Deputy Director for International Data Transfers, DCMS, UK Government
Session 3: Building bridges between global privacy frameworks to facilitate trusted data flows. image
Sebastião Barros Vale
EU Policy Counsel, Future of Privacy Forum
Session 3: Building bridges between global privacy frameworks to facilitate trusted data flows. image
Angel Serna
Senior Vice President, Political & Government Affairs, Zurich
15:30 - 15:45
Afternoon Coffee Break
15:45 - 17:00
Session 4: Data Privacy, Future Technologies and Digital Services: Future-proofing regulatory and technical considerations

The advanced technologies, digital services and concepts that have recently emerged at the forefront of discussions around privacy, responsibility, and control over one’s data, have the potential of altering our understanding of what privacy, data ownership and consent are and will therefore inform future regulations needs in this area. The Metaverse, for example, will vastly increase the amount of personal data used to monitor habits, preferences and even physiological responses or brain wave patterns. Other technologies and digital services allow organisations to tailor services and products in an extraordinarily targeted way, creating a range of complex data privacy considerations for businesses and governments alike. Some experts see in Web3 – a decentralised Internet model built on blockchain and cryptographic encryption – a possible solution to challenges around data privacy, storage, security, ownership, and control.

 

This session will analyse the data protection and privacy concerns that are expected to be amplified as data-driven technological innovations and services continue to accelerate, and the role that PETs can play in alleviating risks. It will debate how these risks are currently being addressed by existing regulations on data and consumer protection and how it can be ensured that these policies remain up-to-date and dynamic enough to protect individuals’ interests while allowing for further technological advances.

 

Possible questions include:

 

  • “Future” technologies and digital services as well as the expected benefits and feared risks that they entail are often quite vague or even ambiguous. How can we be more precise regarding these technologies, benefits and risks?
  •  To what extent would the currently existing rules around privacy and consumer protection need to be construed or potentially evolve to allow for the benefits of emerging technologies and digital services to be leveraged whilst addressing their possible risks and promoting accountability measures?
  •  What is being done so that principles such as privacy-by-design are truly embedded in the functional design, development, and deployment of future technologies and services? How can the role of data protection engineering be further promoted within the context of emerging technologies and digital services?
  •  Do concepts like responsibility and accountability, personal data and/or special categories of data need to evolve in an environment such as the Metaverse?  Are metaverse-specific security and privacy standards needed? To what extent can voluntary practices and codes of conduct address privacy concerns in the metaverse appropriately, considering the possible risks involved?
  • What more is needed to encourage further multi stakeholder cooperation to create a digital space where innovation can flourish and individual privacy and consent are respected in the area of ‘datafication’? In what way can Privacy Enhancing Technologies help address privacy and security concerns to individuals?
Session 4: Data Privacy, Future Technologies and Digital Services: Future-proofing regulatory and technical considerations image
Leonardo Cervera Navas
Director, EDPS
Session 4: Data Privacy, Future Technologies and Digital Services: Future-proofing regulatory and technical considerations image
Peter Eberl
Deputy Head of Unit, Cybersecurity and Digital Privacy Policy, DG CONNECT, European Commission
Session 4: Data Privacy, Future Technologies and Digital Services: Future-proofing regulatory and technical considerations image
Monika Adamczyk
Cybersecurity Expert, ENISA
Session 4: Data Privacy, Future Technologies and Digital Services: Future-proofing regulatory and technical considerations image
Elise Houlik
Chief Privacy Officer, Intuit
Session 4: Data Privacy, Future Technologies and Digital Services: Future-proofing regulatory and technical considerations image
Marco Pancini
Privacy Policy Director, Meta
Session 4: Data Privacy, Future Technologies and Digital Services: Future-proofing regulatory and technical considerations image
Patrick Grady
Policy Analyst, Center for Data Innovation
Select date to see events.

Sponsorship Opportunities

To discuss sponsorship and visibility opportunities at the 12th Annual European Data Protection & Privacy Conference, please contact Anne-Lise Simon on [email protected] / +44 (0) 2920 783 023

Tick

Exclusive speaking positions | Your organisation can contribute to the discussion.

Tick

Engaging and Interactive format | Engage in a fully immersive and interactive debate with decision makers, businesses and policymakers.

Tick

European and global outreach | Convey your message to a broad and international audience.

Tick

Networking opportunities | Connect with your fellow attendees during coffee and lunch breaks throughout the event.

Tick

Visibility Opportunities | Ensure maximum visibility through branding in the room, on the event website and marketing activities.

Tick

Exhibition and demos area | Showcase your products and solutions or share a position paper with the audience.

Sponsors & Partners

Baker McKenzie
Broadcom logo
Intuit logo for WS
ITI-logo_vertical
Copy of Meta-logo-1080x1080
usercentrics logo
Workday logo PNG
Encompass

Costs

  • Standard €170

    Applies to: Corporate Organisations, Trade Associations, Law Firms

  • Complimentary €0

    Applies to: NGOs, Academic / Student , National Government / Regulator, Diplomatic Mission to the EU, European Commission / Parliament / Council, EU Permanent Representations, Press / Journalists

Venue:

Stanhope Hotel
Balmoral Room
Rue du Commerce 9, 1000 Bruxelles, Belgium

This event will take place fully in person. There will be no virtual component to this year’s edition.

There are currently no COVID-19 restrictions in place in Belgium, however Forum Europe will continue to closely monitor the public health situation.

Contact:

For more information on any aspect of this event, please contact Anne-Lise Simon using any of the details below.

Anne-Lise Simon
Forum Europe

[email protected]

Tel: +44 (0) 2920 783 023

Receive our event updates:

Sign up to receive updates on our upcoming policy events. We will only send you emails about the conferences and topics that interest you, and you can unsubscribe at any time.