The Association of Corporate Counsel (ACC) is the world's largest organization serving the professional and business interests of attorneys who practice in the legal departments of corporations, associations, nonprofits and other private-sector organizations around the globe.
With increasing data volumes, conflicting privacy requirements, remote work, and AI governance, traditional records policies and schedules fall short of modern needs and expectations. More and more, companies are adopting modern, compliant, and easier-to-execute schedules. This session will explore strategies for meeting retention and privacy demands, aligning schedules with AI governance, gaining cross-functional agreement, ensuring employee compliance, and automating retention processes.
This session will examine the new EU cybersecurity laws hitting multinationals in January 2025, including the Network and Information Security (NIS) Directive, the Digital Operational Resilience Act (DORA), and the European Cyber Resilience Act (CRA). These laws involve a multitude of essential sectors including health, food production, financial services, and SaaS services and will involve the widening of how companies will have to deal with data incidents beyond personal data.
In the last year, 53 percent of companies have experienced a third-party data breach, and global regulatory bodies are increasingly incorporating data breaches into environmental, social, and governance ratings and reporting guidelines. As data breaches persist as a cost and risk of business, companies and their legal teams must improve how they manage and respond when a breach occurs. This interactive session will simulate some of the recent developments within breach response and proactive measures in-house counsel can take to mitigate risks.
Dive into the heart of Asia's complex privacy and cybersecurity landscape in this engaging panel discussion. Explore the complexities and challenges organizations face when navigating laws across Asian jurisdictions, and learn practical strategies tailored to the unique regulatory environment of the region. From understanding cultural nuances to addressing the evolving legal landscape, this session is a must-attend for professionals seeking to fortify their organizations against privacy and cybersecurity risks. Gain a comprehensive understanding of the challenges and chart a course towards compliance excellence.
Attendees and panelists will work together in team to discover best practices and potential pitfalls in a simulated in-house investigation. This session will provide practical tools and a robust framework for approaching challenging situations. Walk away with valuable insights, equipped to navigate and conduct in-house investigations effectively, ensuring a proactive and informed approach to potential workplace issues.
Every industry, organization, and department is positioned to unlock efficiencies and advantages through AI innovation, and legal teams are tasked with the immense opportunity (and challenge) to enable this without sacrificing privacy, accuracy, and compliance. Join legal and operations leaders in this interactive workshop to break down the seemingly endless AI applications. Exchange best practices, innovative solutions, and resources to address the most consequential hurdles and pitfalls on the journey to establishing AI guidelines and policies.
Ease your concerns about the Corporate Transparency Act (CTA) and Ultimate Beneficial Owner (UBO) regulations around the globe. Since its implementation on January 1, the CTA aims to make corporate ownership more transparent and to combat money laundering, terrorist financing, and other illicit activities. Join this session to learn more about CTA exemptions, enforcement actions, and what may be coming in 2025 and beyond.
The GDPR was enacted more than 5 years ago, but global companies continue to grapple with privacy laws throughout the world, now with even more cybersecurity laws and regulations set to take effect. Beginning with a panel discussion, this session will compare existing US and EU data privacy laws with China's new Personal Information Protection Law (PIPL) before attendees step in to discuss how data privacy scenarios should be handled under both existing and future laws. The session will integrate insights for crafting a flexible and effective global cybersecurity compliance policy, examine international perspectives on cybersecurity obligations, and identify overlaps in cybersecurity and data privacy.
Delve into cost and risk reduction strategies in the realm of big data with this interactive panel discussion. This session will present hypothetical situations that in-house counsel may face involving large amounts of data – from broad litigation requests and regulatory compliance efforts to intricate privacy dilemmas. Panelists will field potential solutions to these situations from the audience, highlighting successful strategies and potential traps to avoid. The panel will also dive into best practices in the areas of records retention, defensible disposal, and litigation readiness.
Companies are finding out that once developed, data retention policy execution can be difficult and inconsistent. Kaye Cyrus from Health Edge, and Tom Mighell from Contoural, Inc will discuss creating a data retention policy that meets privacy requirements, utilizes AI Governance, does not conflict with other compliance requirements, and are easier to execute. Topics will include:
• How organizations can create modern and more compliant records retention schedules to better handle both paper and electronic information • Strategies to privacy-enable your schedule to avoid conflicts with recordkeeping requirements • The role of AI Governance • How to get your employees to follow your policy
