Speaking Engagement

Join Us at IAPP Washington 2020

07 Apr 2020 - 08 Apr 2020

Walter E. Washington Convention Center
801 Mt. Vernon Pl. NW
Washington, D.C. 20001


Join Lokke, Alex, and Miriam as they discuss leading-edge issues in privacy today.

Fireside Chat with Andrew Smith, Director of the FTC’s Bureau of Consumer Protection

Tues., April 7, 4:15 p.m. - 5:15 p.m.

Conversations in Privacy

Big Data, Children’s Privacy, Consumer Privacy, Enforcement, Regulatory Developments

Miriam H. Wugmeister, Co-Chair, Privacy + Data Security, Morrison & Foerster

Andrew Smith, Director, Bureau of Consumer Protection, Federal Trade Commission

From its record-breaking $5 billion penalty against Facebook for mishandling consumers’ personal information to its $170 million settlement with YouTube and Google for alleged children’s privacy violations, the FTC has stepped up its enforcement activity. And with increasing calls for federal privacy legislation, the FTC as the main U.S. privacy enforcer is under ever more scrutiny. In this session, Morrison & Foerster’s Miriam Wugmeister will conduct a wide-ranging fireside chat with Andrew Smith, Director of the FTC’s Bureau of Consumer Protection, in which they will discuss the Bureau’s recent enforcement activities and its priorities for 2020 and beyond. They will explore hot privacy topics at the forefront of the national conversation regarding consumer privacy, including: the FTC’s privacy priorities for 2020; updates on COPPA enforcement, rulemaking and policy work; the FTC’s role in regulating big data and artificial intelligence, including its upcoming workshop on the accuracy of big data under the FCRA; the application of FTC privacy and consumer protection requirements to platforms; and the prospects for a federal privacy law and the FTC’s role as enforcer, rule-maker and administrator of that law.

What you’ll take away:

The FTC’s areas of focus in the coming year.

The prospects for federal data protection legislation and the FTC’s role in any new law.

FTC priorities with respect to the regulation of children’s privacy, platforms and big data.

Non-Stop Discussion of the One-Stop Shop

Tues., April 7, 4:15 p.m. - 5:15 p.m.

Traditional Breakout

Consumer Privacy, Enforcement, European Union, Privacy Law, United States

Moderator: Lokke Moerel, Senior Of Counsel, Morrison & Foerster; Professor, Global ICT Law, Tilburg University

Andrea Jelinek, Chairwoman, European Data Protection Board; Director, Austrian Data Protection Authority

Karolina Mojzesowicz, Deputy Head of Unit Data Protection, European Commission

Anna Morgan, Deputy Commissioner, Head of Legal Affairs, Data Protection Commission

Wojciech Wiewiórowski, European Data Protection Supervisor, Poland

The one-stop shop enforcement mechanism proved the last hurdle for adopting the GDPR, and has been under debate ever since. What are the concerns and criticisms and are they justified? The debate was further triggered by the first landmark enforcement decision under the GDPR, when the CNIL fined Google 50 million euros rather than referring the case to the supervisory authority of Ireland, where Google has its EU headquarters. What were the facts of the case and why did the CNIL not apply the one-stop shop here? What does this decision mean for U.S.-headquartered companies? Can they benefit from the one-stop shop and, if so, what do they need to do? How does the one-stop-shop mechanism work in practice, and how do lead supervisory authorities decide on priorities? How can we ensure that no bottlenecks in enforcement are created?

What you’ll take away:

  • Clarity as to when the one-stop shop applies (and when it does not).
  • Insight into the issues and concerns around the one-stop shop, and whether they are valid.
  • Which measures a U.S. company can take to benefit from the one-stop shop.

All Is Fair in the Name of Research?

Wed., April 8, 1:30 p.m. - 2:30 p.m.

Traditional Breakout

Big Data, European Union, Health Care Privacy

Alex van der Wolk, Co-Chair, Privacy + Data Security, Morrison & Foerster

Patrice Ettinger, CIPP/U.S., CPO, Pfizer

Today, everything is about innovation. For many companies there is an ever-strong emphasis on R&D, product and AI development using data analytics. And while availability of underlying data for research purposes may not necessarily be an issue, use limitations often are — especially if health or other sensitive data are concerned. Companies often find themselves in a foothold where obtaining consent is impracticable (or even invalid) and anonymous data diminishes the potential of the initiative. In this session, we will review the (im)possibilities of R&D under the GDPR. When does an activity qualify as “scientific research”? What requirements and constraints exist under the GDPR’s “research exception”? How can you operationalize R&D activities to fit with the GDPR? We will use the healthcare industry as a starting point, but the issues discussed will be relevant for any company conducting data analytics for R&D purposes.

What you’ll take away:

  • Understand where scientific research and R&D can overlap.
  • Learn about limitations and possibilities of scientific research under the GDPR.
  • Practical tips for how sensitive data can be used for R&D, including AI development.

For more conference information or to register, click here.




Unsolicited e-mails and information sent to Morrison & Foerster will not be considered confidential, may be disclosed to others pursuant to our Privacy Policy, may not receive a response, and do not create an attorney-client relationship with Morrison & Foerster. If you are not already a client of Morrison & Foerster, do not include any confidential information in this message. Also, please note that our attorneys do not seek to practice law in any jurisdiction in which they are not properly authorized to do so.