Dietrim06 Healthy FP Ad

CONFERENCE PROGR AMME21 CONTINUING PROFESSIONAL DEVELOPMENT HOURS

ConferenceJuly 7th-9th 2008, St. John’s College, Cambridge, UK

21ST ANNUAL INTERNATIONAL

WHO SHOULD ATTEND

sData Protection Managers & StaffsChief Privacy OfficerssFreedom of Information ManagerssLawyerssDP/FoI Advisers & TrainerssCompany SecretariessInformation Systems, Data

Security & Database ManagerssConsultants & AuditorssMarketing/HR Managers

Register for this event and get more information at

www.privacylaws.com

Value Privacy, Secure Your Reputation,

Reduce Risk

21 YEARSPL&B ANNIVERSARY1987-2008

Contents:sOverview & SpeakerssProgrammesSession ThemessDP & FoI TrainingsRecruitment ServicesEuropean Privacy Officers NetworksUK & International NewsletterssRegistration & Subscriptions

PL&B Client companies include:25 of the Global Top 50, 24 of Europe’s Top 50,25 of the UK Top 50 in the Financial Times lists;10 of the Global Top 20 in the Fortune lists; 17 ofthe UK’s Top 20 law firms in the UK Legal 500.

OVER 45 SPEAKERS FROM 10 COUNTRIES IN 3 DAYSThe Privacy Laws & Business 21stAnnual International Conference featuresover 45 speakers from 10 countries over3 intensive days. Half of these speakersare giving a presentation at this eventfor the first time.

At Europe’s largest international dataprotection event you are sure to gainprofessionally by net working with yourpeers. Many of the speakers attend theentire conference, providing you withan ideal opportunity to have directcontact with the key decision makersand privacy managers of some of theworld’s largest companies. Scan thehorizon for new privacy issues and enjoythe unique summer school atmosphere.

EXHIBITION SPACELimited space is still available in theconference centre for companies wishingto demonstrate their privacy law relatedproducts and services.

Sponsorship opportunities are availablefor lunches, dinners, other social eventsand documentation packs.

For further information, please see our website at www.privacylaws.com/annualconference

For a virtual tour of St. John’s College,visit www.joh.cam.ac.uk.

DATA PROTECTION LAW is more than a legal right.For those organizations which are alert to thepotential for reputational benefit and damage,

getting privacy right can enhance brand loyalty andvalue and provide a distinctive feature and advantage.For organizations which ignore privacy values, the results can be adownward spiral of trust from customers and employees which diminishesthe way in which your organization is perceived.

You should organize the daily routines of staff training, website privacystatements, and data protection audits. How do you train customer-facingstaff to verify the identity of callers? How do you manage data protectionprocesses when you operate in many countries?

This year’s conference gives unprecedented time to reducing privacy risks byproviding corporate case studies of risk management, analysis of legal risk,and two intensive workshops: How to Conduct Privacy Impact Assessments,and How to Win a European Privacy Seal.

Discussions on some of the most pressing current issues will include the mainactors who will engage the audience on the fine line between personalisationand surveillance when conducting targeted behavioural marketing viawebsites; and how to handle mobile marketing. At this conference, mix with regulators at EU and national levels; leading lawyers; data protectionmanagers; consultants, academics and public interest groups.

For those in the UK, there are sessions on how the Freedom of InformationAct challenges the balance of power; government announcements onchanges which will impact companies providing public sector services; and on the timetable for stengthening the Information Commissioner’spowers to conduct compulsory audits.

A HISTORIC LOCATIONSt. John’s College, founded in the 16thcentury, is a beautiful conference locationcombining the best of old Cambridgeatmosphere with modern conferencefacilities, such as a computer room andwireless broadband access. It providesprofessionally equipped lecture roomsand first-rate cuisine in the medievaldining hall. The college has quiet gardensand a tranquil setting by the River Cam.


21ST ANNUAL INTERNATIONAL

“I thoroughly enjoyed theconference and found it timely

and relevant. The speakerschedule was a dream.”

TRACI CANNING, HIRERIGHT

“The participants were a deliciousblend of regulators, practitioners,

supporters, critics, observers,veterans and newbies. It was

an intellectual feast!”DOROTHY PATTON,

US FEDERAL TRADE COMMISSION

“This is a well run and incrediblyinteresting and fun conference.

Every year I learn something new – that’s vitally important”

ELIZABETH MARTIN, XAFINITY

“Essential for anyone who wantsto be seriously involved in privacy

– even after 20 years it’s fresh.” HENRIETTE TIELEMANS, COVINGTON & BURLING

DIARY DATE: PL&B 22ND INTERNATIONAL CONFERENCE JULY 6TH-8TH 2009

More information on PL&B Services at www.privacylaws.comPUBLICATIONS • CONFERENCES • CONSULTING • RECRUITMENT • TRAINING • COMPLIANCE AUDITSEUROPEAN/INTERNATIONAL PRIVACY OFFICERS NETWORKS • CHILDREN’S PRIVACY PROTECTION NETWORK

Data Protection Regulators

Richard Thomas, Information Commissioner, UK

Yann Padova, CNIL, France

Professor Artemi Rallo Lombarte, Data Protection Agency, Spain

Rosa Barcelo, European Data ProtectionSupervisor’s Office, Belgium

Kirsten Bock, Independent Centre for Privacy Protection, Germany

Graham Smith, Deputy Information Commissioner, UK

Jonathan Bamford, InformationCommissioner’s Office, UK

Stephen McCartney, InformationCommissioner’s Office, UK

John Angel, Information Tribunal, UK

The Ministry of Justice, UK

Organisations

Boris Wojtan, Accenture, UK

Les Kingstone, Aegon, UK

Jules Polonetsky, AOL, USA

Nick Tyler, AstraZeneca, UK

Ellis Parry, Astra Zeneca, UK

Julian Parkin, Barclays, UK

Andrew Woolfson, BDO Stoy Hayward, UK

Michael Colao, Dresdner Kleinwort, UK

Daniela Baker, Honda, UK

Christopher Foster, Honeywell International, USA

Kimberly Howell, Microsoft, USA

Mikko Niva, Nokia Group, Finland

Andy Harper, Pitney Bowes, UK

Janine Aston, Verizon, UK

Jim Keese, Western Union Company, USA

• Allied Irish Bank• American Express• AXA PPP• Barclays• British Airways• Chevron• Dell• eBAY

• Experian• Facebook• General Motors• GlaxoSmithKline• Google• Herbert Smith• Intel• Johnson & Johnson

Previous conference participants include:• JPMorgan Chase• KPMG• Linklaters• Marks & Spencer• Microsoft• Motorola• Nestlé• Nokia

• PayPal• Pfizer• PwC• Royal & Sun Alliance• Shell• Sony• Vodafone• Walt Disney

• Yahoo• Privacy Regulators• DP Authorities• European Union• Government Agencies • Local Authorities• Police• Universities

Speakers & Chairs by CategoryLaw Firms

Ariane Mole, Bird & Bird, France

Dan Cooper, Covington & Burling, UK

Lokke Moerel, De Brauw BlackstoneWestbroek, the Netherlands

Nicholas Graham, Denton Wilde Sapte, UK

Scott Singer, Denton Wilde Sapte, UK

Renzo Marchini, Dechert, UK

Eduardo Ustaran, Field FisherWaterhouse, UK

Richard Cumbley, Linklaters, UK

Christopher Millard, Linklaters, UK

Diego Rigatti, Orrick, Herrington & Sutcliffe, Italy

Alisa Bergman, Sonnenschein, Nath and Rosenthal, Belgium

Academics/Public Interest Groups

Carter Manny, University of Southern Maine, USA

Professor Douwe Korff, Metropolitan University, UK

Maurice Frankel, Campaign for Freedom of Information, UK

Consultants

Marcus Belke, 2B Advice, Germany

Simon McDougall, Deloitte & Touche, UK

Nigel Waters, Pacific Privacy Pty, Australia

Privacy Laws & Business

Stewart Dresner, UK

Laura Linkomies, UK

Stuart Lynch, UK

James Michael, UK

Amy Norcup, UK

Valerie Taylor, UK


21ST ANNUAL INTERNATIONALValue Privacy, Secure Your Reputation, Reduce Risk

Value PrivacyDAY 1 – MONDAY JULY 7TH, 2008

07.30-08.45 Breakfast in The Buttery 08.30-17.30 Registration in the Fisher Building

09.00 Early session: The transatlantic war over informationJames Michael, Editor, Privacy Laws & Business International Newsletter, UK

10.00 Chairman’s introduction: Value Privacy, Secure Your Reputation, Reduce RiskStewart Dresner, Chief Executive, Privacy Laws & Business, UK

10.15 Integrating privacy compliance into AstraZeneca’s corporate culture and behaviour Nick Tyler, Data Protection & Privacy Solicitor, AstraZeneca, UK

10.45 How principles of ethics and leadership can enhance privacy practices Carter Manny, Professor of Business Law, University of Southern Maine, Portland, Maine, USA

11.15 Coffee SPONSORED BY DENTON WILDE SAPTE

11.35 Information Commissioner’s Office – Higher profile? Stronger powers? More effective?Richard Thomas, Information Commissioner, UK

Commercial objectives via social networkingChair: Lokke Moerel, De Brauw Blackstone Westbroek, the Netherlands

15.10 Balancing privacy rules and your commercialobjectives in social networking communitiesLokke Moerel, Partner ICT, De Brauw Blackstone Westbroek, the Netherlands

Targeted behavioral marketingAlisa Bergman, Partner, Sonnenschein Nath and Rosenthal, Belgium

Communicating with consumers about data use:Challenges and taking opportunities to educate them about informed consentJules Polonetsky, Chief Privacy Officer, Senior Vice President, Consumer Advocacy, AOL, USA

13.10 Lunch in The Hall

Tensions between privacy and other valuesChair: James Michael, Editor, Privacy Laws & Business International Newsletter

14.10 The interaction between data protection and other laws creating harmony and conflictAriane Mole, Partner, Bird & Bird, France

14.40 Social networking in the workplace – What’s the fuss?Andrew Woolfson, Director of Knowledge Management, BDO Stoy Hayward, UK

16.10 Tea SPONSORED BY DENTON WILDE SAPTE

InternationalChair: James Michael, Editor, Privacy Laws & Business International Newsletter, UK

12.30 How the CNIL organisesinspections and enforcementof data protection law in FranceYann Padova, Secretary General, CNIL, France

United KingdomChair: Stuart Lynch, Consultant, Privacy Laws & Business, UK

12.30 Employing a privateinvestigator to conduct surveillanceLes Kingstone, Data Protection Officer, Aegon, UK

EthicsChair: Carter Manny, Professor of Business Law, University of Southern Maine, Portland, Maine, USA

12.30 Ethics case study discussionson how principles of ethics and leadership canenhance privacy practices

Freedom of InformationChair: Stuart Lynch, Consultant, Privacy Laws & Business, UK

15.10 How the FOI Act supports transparency and accountability in public spendingGraham Smith, Deputy Information Commissioner, UK

15.40 The Information Tribunal – Three years on John Angel, Chairman, Information Tribunal, UK

Secure Your ReputationDAY 2 – TUESDAY JULY 8TH, 2008

07.30-08.45 Breakfast in The Buttery 08.30-17.30 Registration in the Fisher Building

09.00 Data security and data protection audits after HMRCChair: Stewart Dresner, Chief Executive, Privacy Laws & Business, UK

The disappearance of 2 CDs with personal data on 25 million people when dispatched from the UK government department, Her Majesty’s Revenue and CustomsNicholas Graham and Scott Singer, Partners, Denton Wilde Sapte, UK; Jannine Aston, Data Protection Manager – EMEA,Verizon, UK

10.00 France’s new Presidency of the EU Art. 29 DP Working Party: What are the priorities?Sophie Nerbonne, Deputy Manager, Legal & International, CNIL, France; Chair: James Michael, Editor, PL&B International Newsletter, UK

10.45 Coffee SPONSORED BY DENTON WILDE SAPTE

11.10 Be careful where you store your data: the growing importance of information architectures for privacy professionals Christopher Millard, Partner, Linklaters, UK; Chair: Bojana Bellamy, Global Data Privacy Compliance Lead, Accenture, UK

IP addresses as personal dataChair: Lokke Moerel, De Brauw Blackstone Westbroek, the Netherlands

16.30 The legal challenges from aiming for both security and privacyIlias Chantzos, Director EMEA & Asia Pacific Japan, Government Relations, Symantec Corporation, Belgium

16.50 A fine line between personalisation and surveillanceShould computer (IP) addresses be considered personal data? If so, what are the implications for data protection laws covering search engine data and the retention and use of this data for targeted advertising by search engines and other organisations?

Rosa Barcelo, Legal Adviser to the European DP Supervisor, Belgium

Freedom of Information (cont’d)Chair: James Michael, Editor, Privacy Laws & Business International Newsletter, UK

16.30 How the Freedom of Information Actchallenges the balance of powerMaurice Frankel, Director, Campaign for Freedom of Information, UKRichard Thomas, Information Commissioner, UK

InternationalChair: Stewart Dresner, Chief Executive, Privacy Laws & Business, UK

12.05 The role of Spain’s DPA in safeguarding privacy in Spain and its influence in the wider worldProfessor Artemi Rallo Lombarte, President, DP Agency, Spain

Commentator: Eduardo Ustaran, Partner, Field Fisher Waterhouse, UK


12.05 Grappling with the fluid definitions of personal data: The definition of personal data in light of recent case lawRenzo Marchini, Counsel, Dechert, UK

17.15 How European Data Protection Authorities interpret the definition of personal data: Results of a Linklaters surveyRichard Cumbley, Partner, Linklaters, UK; Chair: Bojana Bellamy, Global Data Privacy Compliance Lead, Accenture, UK

17.50 Close 18.00 Guided Walks or Cambridge Folk Museum Tour

18.45 Drinks in Chapel Court 19.30 Dinner in The Hall

21.00 Party in the Lower Pythagoras FEATURING ‘THE FORE’ WWW.THEFOREBAND.COM, 'PRIVATE EYE' (PL&B BAND), ‘REPLAY’ WITH LIVE KARAOKE


InternationalChair: Laura Linkomies, Editor, Privacy Laws & Business UK Newsletter

14.00 When do outsourced service providers become data controllers? How much responsibility and/orliability exposure should they take on?Boris Wojtan, EMEA Data Privacy Lead, Accenture, UK

ManagementChair: Valerie Taylor, Consultant, Privacy Laws & Business, UK

14.00 “No, that’s not what I meant” The dancebetween your organisation’s lawyer andoutside data privacy counselDan Cooper, Partner, Covington & Burling,UK

Christopher Foster, Assistant General Counsel, Data Privacy, Honeywell International, USA

SOCIAL PROGRAMMESunday July 6thOrgan Recital & Evensong: Recital 18.00, Evensong 18.30 (Choirs of King’s & St John’s Colleges) at St. John’s College Chapel.Drinks: 19.00 in First Court.Dinner: 19.30 in the Wordsworth Room.

Monday July 7thSt John’s College 17th Century Library Tour: 08.30 Visit St. John’s College library, built in 1624, containing books dating from the 10th century which are so rare and valuable that undergraduate access is restricted! Meet at the new library entrance.Cambridge Walks: 18.00 Two walks led by qualified guides leaving from the door of the Fisher Building. No booking needed.Cambridge Folk Museum: 18.00 A guided tour of the collection, 5 minutes walk from the Fisher Building.Drinks: Between 18.45 and 19.30 in Chapel Court.Dinner: 19.30 in The Hall.Party in the Lower Pythagoras: 21.00 with FREE first drink. With ‘The Fore’, ‘Private Eye’ (PL&B band), ‘Replay’, live karaoke.St John’s College Bar: The college cash bar has extended opening hours until midnight.

Tuesday July 8thSt John’s College 17th Century Library Tour: 18.15 (see above for details).Punting on the River Cam: Chauffeured punts depart from River Court, immediately in front of the Fisher Building at 18.15. Punting is free, on a first come first served basis. Be early if you are keen.Drinks: 18.15-19.30 at River Court. Come and watch and/or join the punters!Dinner: 19.30 in The Hall with Twist (Valerie Taylor’s barbershop quartet).St John’s College Bar: The college cash bar has extended opening hours until midnight.

Introduction to the European Privacy SealChair: Stewart Dresner, Chief Executive, Privacy Laws & Business

17.15 How a European Privacy Seal provides your product with a competitive advantage by showing that it complies with the requirements of the EU Data Protection DirectiveKirsten Bock, Project Manager, European Privacy Seal, Independent Centre for Privacy Protection, Schleswig-Holstein, Germany

17.25 Why Microsoft applied for and won a Privacy Seal for Windows XP UpdateSue Glueck, Senior Attorney, Microsoft, Redmond, Washington State, USA

18.00 Close 18.15 Punting or St John’s College Library Tour

18.15 Drinks at River Court SPONSORED BY COVINGTON & BURLING 19.30 Dinner in The Hall

InternationalChair: James Michael, Editor, Privacy Laws & Business International Newsletter, UK

16.10 Binding Corporate Rules as ‘Safe Harbor on Wheels’– a new approach for US-centric multinationalsEduardo Ustaran, Partner, Field Fisher Waterhouse, UK

16.30 Developments in BCRs and beyondRosa Barcelo, Legal Adviser to the European DP Supervisor, Belgium

Sophie Nerbonne, Deputy Manager, Legal & International, CNIL, France

16.45 The APEC Asia-Pacific Privacy Initiative – a new route to effective data protection or a trojan horse for self-regulation?Nigel Waters, Principal, Pacific Privacy Pty, Australia

Mobile marketingChair: Valerie Taylor, Consultant, Privacy Laws & Business, UK

16.10 Choosing and maintaining a permission based privacy policy on mobile marketingMikko Niva, Senior Legal Counsel, Nokia Group, Finland

Alisa Bergman, Partner, Sonnenschein Nath and Rosenthal, Belgium

15.45 Tea SPONSORED BY DENTON WILDE SAPTE

International (cont’d)14.40 The prospects of European data breach laws

Results of PL&B’s European survey on attitudes of Europeannational DP Authorities towards an EU legal requirementStewart Dresner, Chief Executive, Privacy Laws & Business

Amy Norcup, Researcher, Privacy Laws & Business

15.10 The EU Data Protection Supervisor’s views on securitybreach provisions in the EU ePrivacy DirectiveRosa Barcelo, Legal Adviser to the European DP Supervisor, Belgium


14.45 The view from central government on the DP Act and the Freedom of Information ActBelinda Crowe, Head, Information Rights, Ministry of Justice, UK

15.15 Identity, privacy and the need of others to know who you areEugene Oscapella, Consultant, Privacy Laws & Business, Canada

Conference Sponsors, Exhibitors and Advertisers:

Privacy impact assessments (cont’d)Chair: Eugene Oscapella, Consultant, Privacy Laws & Business, Canada

14.00 How to conduct Privacy Impact Assessments

European Privacy Seal (cont’d)Chair: Stuart Lynch, Consultant, Privacy Laws & Business, UK

14.00 How to win a European Privacy Seal

Surveillance in the workplaceChair: Ellis Parry, Global Privacy Officer, Astra Zeneca, UK

14.00 Surveillance in the workplaceor necessary human resourcesmanagement controls?Reducing risk of privacyviolations in the workplaceWorkshop with small group exercises

16.00 Close and Tea

Note: Time has been scheduled for discussion in each session. It may be necessary to change the conference content/timing/speakers.A more detailed programme is available at www.privacylaws.com/annualconference


Reduce RiskDAY 3 – WEDNESDAY JULY 9TH, 2008

07.30-08.45 Breakfast in The Buttery

08.30-13.00 Registration in the Fisher Building

09.00 How Pitney Bowes fits data protection law into its global risk management programChair: Stewart Dresner, Chief Executive, Privacy Laws & BusinessAndy Harper, VP Risk Management, Pitney Bowes, UK

09.45 Negotiating insurance to minimise your data breach risks and liabilities when outsourcingDiego Rigatti, Partner, Orrick, Herrington & Sutcliffe, Italy

10.30 Coffee

Privacy impact assessmentsChair: Laura Linkomies, Editor, Privacy Laws & Business UK Newsletter, UK

10.50 How to conduct PrivacyImpact AssessmentsJonathan Bamford, Assistant Commissioner,Information Commissioner’s Office, UK

Stephen McCartney, Head of DataProtection Promotion, InformationCommissioner’s Office, UK

12.00 Has the experience of Privacy Impact Assessmentmatched its promise? –Lessons from AustralasiaNigel Waters, Principal, Pacific Privacy Pty, Australia

European Privacy SealChair: Stuart Lynch, Consultant, Privacy Laws & Business, UK

10.50 How to win a European Privacy SealKirsten Bock, Project Manager,European Privacy Seal, IndependentCentre for Privacy Protection, Schleswig-Holstein, Germany

Sue Glueck, Senior Attorney, Microsoft,Redmond, Washington State, USA

Marcus Belke, European Privacy SealConsultant and accredited expert, 2B Advice, Bonn, Germany

Professor Douwe Korff, Department ofLaw, Metropolitan University, London

Global privacy risk strategyChair: Michael Colao, Director of InformationManagement, Dresdner Kleinwort, UK

10.50 A global privacy prototype:unifying privacy, information security andrecords managementJim Keese, Global Privacy Officer, VP,Records & Information Management,The Western Union Company, USA

11.50 Delivering a Data PrivacySolution in 60+ jurisdictions –How to maximise the valuefrom your experts andminimise your risksJulian Parkin, Group Privacy Programme Director, Barclays, UK Simon McDougall, Director, Deloitte & Touche, UK

Sessions by Theme at a GlanceThis guide shows sessions dealing wholly or partially with each listed theme. Please not that some sessions appear under more than one heading.

Mon 11.35 UK InformationCommissioner’s Office – Higher profile? Strongerpowers? More effective?

Mon 12.30 How the CNILorganises inspections andenforcement of data protectionlaw in France

Mon 15.10 How the UK FOI Act supports transparency andaccountability in public spending

Mon 15.40 The UK InformationTribunal – Three years on

Mon 16.30 How the Freedomof Information Act challengesthe balance of power

Mon 16.50 IP addresses aspersonal data

Tues 10.00 France's dataprotection priorities for itsPresidency of the EuropeanUnion, July to December 2008

Tues 15.10 The EU DataProtection Supervisor’s views onsecurity breach provisions in theEU ePrivacy Directive

Tues 16.10 Developments inBinding Corporate Rules andbeyond

Tues 14.00 The role of Spain'sDPA in safeguarding privacy inSpain and its influence in thewider world

Tues 14.00 The view from UKcentral government on the DataProtection Act and the Freedomof Information Act


Tues 17.10 How a EuropeanPrivacy Seal provides your productwith a competitive advantage byshowing that it complies with therequirements of the EU DataProtection Directive

Wed 10.50 How to conductPrivacy Impact Assessments

Wed 10.50 How to win aEuropean Privacy Seal

Sessions with regulators and policy makers


Mon 12.30 How the CNILorganises inspections andenforcement of data protection law in France

Mon 14.10 The interactionbetween data protection andother laws creating harmonyand conflict


Mon 16.30 IP addresses aspersonal data: The legal challengesfrom aiming for both security andprivacy; A fine line betweenpersonalisation and surveillance

Mon 17.15 How European DataProtection Authorities interpretthe definition of personal data:Results of a Linklaters survey

Tues 10.00 France's dataprotection priorities for itsPresidency of the EuropeanUnion, July to December 2008

Tues 12.05 Grappling with thefluid definitions of personaldata: The definition of personaldata in light of recent case law

Tues 14.00 The role of Spain'sDPA in safeguarding privacy inSpain and its influence in thewider world


Tues 14.40 The prospects ofEuropean data breach laws


Tues 16.40 The APEC Asia-Pacific Privacy Initiative – a new route to effective dataprotection or a trojan horse for self-regulation?

Tues 17.10 How a EuropeanPrivacy Seal provides yourproduct with a competitiveadvantage by showing that it complies with therequirements of the EU DataProtection Directive


Privacy and data protection laws worldwide

in-house data protection & FOI staff training

An essential part of ensuring good compliance is staff training

Privacy Laws & Business has years of experience in providing in-house training – the mosteffective way to communicate data protection and FOI requirements to your staff.

In-house training is tailored to exactly meet your needs, organised at your requireddate/location, conducted using plain language, and encourages staff to ask questions

and relate the law to their particular responsibilities.

For further information, contact Glenn Daif-Burns on Tel: +44 (0)20 8868 9200; E-mail: [email protected]

recruitment serviceDo you need a data protection or freedom of information specialist?

Privacy Laws & Business will help you select suitable candidates from our list of people looking for new jobs or short term contracts. Using our extensive international network has already proved

to be more efficient for companies than recruiting through agencies or the media.

For further information, contact Glenn Daif-Burns on Tel: +44 (0)20 8868 9200; E-mail: [email protected]

• Accenture • Aviva • News International • Mellon • Towers Perrin • Centrica • Loyalty Management Group • Deloitte

• Disney • Linklaters • Western Union • Morley Fund

Management • Acxiom • Next • BNA International

Recruitment Service clients include:• Barclays • MBNA • Prudential • Zurich Financial Services • Law Society • Financial Services Authority • London Underground • Ernst & Young

• JP Morgan Chase • PricewaterhouseCoopers • MCI Worldcom • IMS Health • Sainsburys • HFC Bank • PA Consulting

www.privacylaws.com/recruitment


Mon 12.30 Employing aprivate investigator to conductsurveillance

Mon 15.10 How the UK FOI Act supports transparencyand accountability in public spending


Mon 16.30 How the Freedomof Information Act challengesthe balance of power

Tues 12.05 Grappling with thefluid definitions of personaldata: The definition of personaldata in light of recent case law



The UK Data Protection and Freedom of Information Acts

Mon 10.00 Chairman’sintroduction: Value Privacy,Secure Your Reputation, Reduce Risk

Mon 10.15 Integrating privacycompliance into AstraZeneca’scorporate culture and behaviour

Mon 10.45 How principles ofethics and leadership canenhance privacy practices

Mon 12.30 Ethics case studydiscussions on how principles of ethics and leadership canenhance privacy practices

Mon 12.30 Employing aprivate investigator to conductSurveillance

Mon 12.30 How the CNILorganises inspections andenforcement of data protectionlaw in France

Mon 14.10 The interactionbetween data protection andother laws creating harmonyand conflict

Mon 14.40 Social networkingin the workplace – What’s the fuss?

Mon 15.10 Balancing privacyrules and your commercialobjectives in social networkingcommunities; targetedbehavioral marketing; How AOLintegrates its privacy values intoits consumer advocacy programand communicates them

Tues 09.00 Data security and data protection audits after HMRC

Tues 11.10 How to managedata security in the context ofinternational data transfers

Tues 11.10 When dooutsourced service providersbecome data controllers? What about responsibility and liability?

Tues 14.40 The prospects ofEuropean data breach laws;15.10 The EU Data ProtectionSupervisor’s views on securitybreach provisions in the EUePrivacy Directive

Tues 14.40 “No, that's not whatI meant” The dance betweenyour organisation's lawyer andoutside data privacy counsel

Tues 16.10 Binding CorporateRules as ‘Safe Harbor on Wheels’ – a new approach forUS-centric multinationals

Tues 16.10 Developments inBCRs and beyond

Tues 16.10 Choosing andmaintaining a permission based privacy policy on mobile marketing

Tues 16.40 The APEC Asia-Pacific Privacy Initiative – a new route to effective dataprotection or a trojan horse for self-regulation?

Tues 17.10 How a EuropeanPrivacy Seal provides your productwith a competitive advantage byshowing that it complies with therequirements of the EU DataProtection Directive

Tues 17.20 Why Microsoftapplied for and won a PrivacySeal for Windows XP Update

Wed 09.00 How Pitney Bowesfits data protection law into itsglobal risk management program

Wed 09.45 Negotiatinginsurance to minimise your data breach risks and liabilitieswhen outsourcing



Wed 10.50 Global privacyprototype: Unifying privacy,information security and records management

Wed 11.50 Delivering a DataPrivacy Solution in 60+jurisdictions – How to maximisethe value from your experts and minimise your risks

Wed 12.00 Has the experienceof Privacy Impact Assessmentmatched its promise? – Lessonsfrom Australasia

Wed 14.00 Surveillance in thework place or necessary humanresources management controls?Reducing risk of privacyviolations in the workplace

Management

Membership Fee 3 meetings and papers£1,500 +17.5% VAT www.privacylaws.com/specialist_groups

EPON Data ProtectionCommissioner RoundtablessMadrid, SpainsRome, ItalysCzech Republic, Hungary

and Poland in PraguesParis, FrancesBerlin, GermanysDublin, IrelandsGreece and Portugal in LondonsRussia’s new law with

its principal author, LondonsStockholm, SwedensHelsinki, FinlandsBrussels, BelgiumsThe Hague, NetherlandssLuxembourgsWarsaw, Poland

IPON RoundtablessArgentina’s Commissioner

in Montreux, SwitzerlandsAustralia’s Commissioner

in Montreux, SwitzerlandsBCRs in Washington DCsEuropean HR issues

in Washington DCsCanadian HR issues in TorontosAsia Pacific Briefing, London

Issues MeetingssEmployee monitoringsData protection trainingsData protection standardssE-marketingsArt 29 DP Working Partys International data transferssOutsourcingsData breach laws in EuropesData protection management

• Abbott Laboratories• Accenture• Allied Irish Bank• Arnold & Porter• AstraZeneca• Barclays Bank• Boeing• BP• BT• Citigroup• Covington & Burling• CSC Computer Sciences• De Brauw• Deloitte

• Dresdner Kleinwort• eBAY• Ernst & Young• ExxonMobil• Fujitsu• General Electric• General Motors• Halliburton• HBOS• Hewlett Packard• IMS Health• Intel• Int’l Pharmaceutical

Privacy Consortium

• JPMorgan Chase Bank• Johnson & Johnson• Kodak• Linklaters• Lloyds Register• Manpower• McDonald’s• Microsoft• Novartis• Oracle• PricewaterhouseCoopers• Procter & Gamble• Schering-Plough• Sony

EPON PARTICIPANTS INCLUDE:

International and European Privacy Officers Networks

HOW DO YOU BEST LEARNfrom the practicalexperience of your fellow internationalprivacy professionals in a confidential

environment? How do you gain insights, in anatmosphere of mutual understanding and trust,about how other companies manage privacy?The answer that many leading companies and law firms (see below) havefound effective, is to join the European Privacy Officers Network(EPON), established in 2001 and/or the International Privacy OfficersNetwork (IPON), which had its first meeting in 2005.

Membership of EPON/IPON is open to Privacy/Data Protectionprofessionals and their advisors from organisations operating in morethan one country. IPON members have global responsibilities for privacy. EPON members have European responsibilities for privacy, which maybe part of wider regional or worldwide functions and meet in Europe.

Meetings are hosted by members.

MEMBER BENEFITSAt meetings, there are exchanges of ideas, experience and solutions onnational and international privacy laws and policies.

Ultimately, you will do your job better and be recognised for it. You will gain the confidence that your decisions and policies will be strengthenedby your greater appreciation of the norms established by your peer group.

You will be able to better argue your case with your top management andprivacy regulators based on the confidence that you know what workselsewhere; you can protect your company’s reputation; and secure adefensible position in the event of an investigation or prosecution.

REPORTSAt closed sessions, members reveal in detail how they tackle specificissues. The subsequent members only reports provide a record.Confidentiality is a hallmark of these discussions to encourage disclosureand close networking.

SUBSCRIPTION PACKAGE1. Six Newsletters a yearPrivacy Laws & Business newsletters provideyou with a comprehensive informationresource for data protection issues – topics suchas new laws, amendments, codes and how theywork in practice. The UK edition also coversthe UK Freedom of Information Act.

2. E-Mail UpdatesNewsletter subscribers will be kept regularlyinformed of the latest developments in dataprotection and privacy issues via email updates.

3. Helpline Enquiry ServiceSubscribers may contact the PL&B team withquestions such as the current status of legislation,and sources for specific issues and texts.

4. IndexSubscribers will receive a cumulative country,subject and company index annually, coveringsubjects such as outsourcing, transborder dataflows and marketing. The index is regularlyupdated on the PL&B website.

Electronic Format/Enterprise LicenceThe newsletters are available in print and PDFformats. For an additional enterprise licence fee,you may upload the newsletters onto yourIntranet or network. This option enables you tosee the newsletters on any computer on yournetwork and to print out pages at any location.

SUBSCRIPTION PRICESInternational Newsletter £375UK Newsletter £285Combined Subscription £595Free sample issue available

FREE E-NEWS SERVICEPrivacy Laws & Business provides 3FREE e-mail news services, deliveringregular updates on international andUK data protection, and UK Freedomof Information issues. To subscribevisit: www.privacylaws.com

PRIVACY INCIDENTS can leave organisations in breach of the law and can even result incriminal liability for senior management and

employees. Bad publicity can seriously damage yourorganisation’s brand and inevitably its bottom line.

Can your organisation really afford not to understand its legalrequirements? Consumers are becoming increasingly aware of their privacy rights and are willing to exercise them againstorganisations that fail to safeguard their personal data properly.

Privacy Laws & Business has been providing data protectionpublications, conferences, advice and consultancy since 1987.It has become the comprehensive information source forprivacy and data protection managers, and lawyers.

Through a mixture of corporate case studies, legal analysis and advice, the Privacy Laws & Business newsletters:

sShow you where organisations have gone wrong, and how to go about correcting any problems

sHelp your organisation benchmark its compliance practicesand discover new ways of improving your procedures

sProvide you with expert comment from leading privacy consultants, managers, lawyers, and regulators.

Breaking news and developments are gathered together in onevaluable resource, leaving you free to improve compliance, boostcustomer trust, and protect your organisation’s reputation.

Newsletter Editors: International – James Michael [email protected] – Laura Linkomies [email protected]

The Essential Information Source for Privacy Law Compliance

I N T E R N A T I O N A L & U K

Subscribers in 26 countries include:• American Express• AstraZeneca• AXA PPP Healthcare• BP• Deloitte & Touche• Ernst & Young• Fujitsu Services

• Hewlett Packard• Johnson & Johnson• Linklaters• Microsoft• Merrill Lynch• Novartis• Reuters

• Sony Corporation• Western Union• Walt Disney Company• Data Protection Commissioners• Foreign & Commonwealth Office• Ministry of Justice• Other Public Sector Agencies

Cancellation & Substitution PolicyIf you are unable to attend the conference for any reason,you may make substitutions at no additional charge butyou must inform us in advance.

If you wish to cancel your booking, you must do so byJune 20th. If you cancel by June 20th, an administrationfee of 20% will be payable. If full payment has alreadybeen made, the balance (less the administration fee) willbe refunded. If your cancellation notice is NOT received byJune 20th, you will be liable for payment of the full feeand will not be entitled to any refund.

To secure your place you must either make your payment,or send a purchase order within 21 days of invoicing.

PL&B 21ST ANNUAL INTERNATIONAL CONFERENCE 2008 REGISTRATION

Personal Details(For more than one person, please photocopy this form)

Name:

Position:

Organisation:

Address:

Postcode:

Country:

Sector:

Tel: Fax:

E-Mail:

Special Needs/Diets:

Car Registration No.:To reserve a parking place at the college (limited availability)

Payment OptionsVAT Registration No.: 505 3809 59.

Address of Accounts (if different):

Postcode:

nn Purchase Order

nn Cheque payable to: Privacy Laws & Business

nn Bank transfer direct to our account:Privacy Laws & Business, Barclays Bank PLC, 355 Station Road, Harrow, Middlesex, HA1 2AN, UK. Bank sort code: 20-37-16 Account No.: 20240664IBAN: GB92 BARC 2037 1620 2406 64 SWIFTBIC: BARCGB22Please send a copy of the transfer order with this form.

nn American Express nn MasterCard nn Visa

Card Name:

Credit Card Number:

Expiry Date:

Conference RegistrationDays Attending Conference:nn Mon July 7th nn Tues July 8th nn Wed July 9th(For college accommodation see below)

nn 3 Day Conference & Papers including all meals for duration of the conference £1,675 GBP +17.5% VAT (£1,968.13)

nn 2 Day Conference & Papers including lunch both days & dinner on the middle evening £1,135 GBP +17.5% VAT (£1,333.63)

nn 1 Day Conference & Papers including lunch£575 GBP +17.5% VAT (£675.63)

10% Discount for group bookings of a minimum of 8 days, when booked at the same time and paid on one invoice.Please contact the PL&B office to arrange this discount.

Public/Voluntary Sector Prices(Pay By June 1st)

nn 3 Day Conference & Papers including all meals for duration of the conference £1,375 GBP +17.5% VAT (£1,615.63)

nn 2 Day Conference & Papers including lunch both days & dinner on the middle evening £945 GBP +17.5% VAT (£1,110.38)

nn 1 Day Conference & Papers including lunch£480 GBP +17.5% VAT (£564.00)

Additional Optionsnn St John’s Dinner Sun 6th July £40.00 GBP +17.5% VAT (£47.00)

nn Accommodation at St John’s College including breakfast£72.50 GBP +17.5% VAT (£85.19) p.p. per night (tick nights)nn Sun 6th July nn Mon 7th July nn Tues 8th July nn Wed 9th July

See www.privacylaws.com for booking information and other nearby hotels.

nn Conference Slides & Documentation(for non-participants) £195 GBP +17.5% VAT (£229.13)

Newsletter Subscriptionsnn PL&B UK Annual Subscription £285 GBP

nn PL&B International Annual Subscription £375 GBP

nn International/UK Combined Annual Subscription £595 GBP

nn Send me a FREE sample of the International/UK NewsletterPreferred Format: nn Print nn PDF (+17.5% VAT PDF version)

CO

NFE

RE

NC

E P

RO

G 0

5/08

A

ll ph

otog

raph

s of S

t Joh

n’s C

olle

ge b

y Pr

oCre

ativ

ean

d N

igel

Luc

khur

st.

Des

igne

d an

d Pr

oduc

ed b

y Pr

oCre

ativ

e, T

el: 0

845

3003

753

Please return this form to: Conference Coordinator, Privacy Laws & Business, 2nd Floor, Monument House, 215 Marsh Road,Pinner, Middlesex HA5 5NE, United Kingdom. e-mail: [email protected] Tel: +44 (0)20 8868 9200 Fax: +44 (0)20 8868 5215

Data Protection Notice: Privacy Laws & Business will not pass on your details to third parties. We would like to send you informationoccasionally on data protection/FoI services. Please indicate if you do not wish to be contacted by: nn Post nn E-mail nn Telephone.

Total: £ ...............

Signature: .............................................. Date: ................By signing this form, you agree that PL&B may process this data

Documents

Dietrim06 Healthy FP Ad