The 3rd
Mitigate risks, design & implement privacy programs, policies & procedures
Conference Date
27th - 29th August 2019
Location
Sydney Harbour Marriott
Early Bird - Save $200
Book by 19/07/19
Add to calendar

Agenda

Print

Day 1 - Wednesday 28th August, 2019

8:00
Registration, coffee & networking
8:30
Welcome remarks from the Chair
Adapting to additional regulatory requirements
8:40
OPENING KEYNOTE ADDRESS: The Notifiable Data Breaches Scheme: One year on
  • Reflecting on the causes of breaches that put personal data at risk
  • Using this to adapt how we manage privacy obligations
  • Taking steps to prevent similar breaches happening moving forward
9:20
INTERNATIONAL KEYNOTE: Lessons Learned a Year into the GDPR in ANZ
  • Highlights over the past year – the good and bad
  • The impact on ANZ organisations
  • Truths and myths around the GDPR
  • Direction for organisations in ANZ over the next year
Sheila FitzPatrick
Worldwide Expert in Data, Privacy & GDPR
Fitzpatrick & Associates USA
10:00
SPEED NETWORKING

In this fun, interactive session, you will have the opportunity to meet fellow attendees and speakers in 2 minute bursts, to set up conversations for the rest of the event

10:20
Morning tea & networking
10:50
PANEL DISCUSSION: What can other sectors learn from the Banking industry in regards to CDR?
  • How does CDR improve consumers’ ability to compare and switch between products and services?
  • What challenges are we seeing so far? What can we do to prepare?
  • How do organisations comply with CDR privacy requirements?
Jade Haar
Chief Privacy Officer & Data Protection Officer (GDPR)
NAB
Jamie Leach
Founder & CEO
Open Data Australia
Evolving data use while keeping privacy & transparency at the forefront
11:30
Navigating the AI privacy minefield
  • AI and issues in privacy and security for management and the community
  • Can AI and privacy co-exist?
  • Data protection through technology, policy and culture
Rachel Dixon
Privacy & Data Protection Deputy Commissioner
Office of the Victorian Information Commissioner
12:10
Networking lunch
1:10
ROUNDTABLE DISCUSSIONS
  • Future of Data Privacy / Compliance software 
  • Data Governance Tools
  • Data Centre Solutions
2:10
Afternoon tea & networking
2:40
DATA BREACH CASE STUDY: Red Cross Blood Service case study: Responding to a privacy violation affecting 550,000 donors
  • Acting fast – initial steps taken to mitigate the impact of the breach
  • The importance of ensuring transparency when responding to incidents
  • Moving forward to ensure third party providers comply with appropriate privacy practices and procedures
  • Key lessons learned
Marion Hemphill
General Counsel, Chief Privacy Officer
Australian Red Cross Blood Service
3:20
Effective strategies for responding to a data breach
  • Working with the regular to minimse impact
  • Communicating your privacy programs to rebuild trust
  • Keeping honesty and transparency at the heart of communications
  • Reimagining privacy frameworks and engaging staff in privacy
Kath Slack
Senior Group Privacy Specialist, CRO Privacy Team
Telstra
Angela Dally
Compliance Senior Analyst Privacy, Legal & Corporate Affairs
Telstra
4:00
Closing remarks from the Chair & close of Day One
5:00
Mid Conference Workshop B commences

How to de-identify data & mitigate re-identification risks

Workshop B: How to de-identify data & mitigate re-identification risks
Wednesday 28th August 2019, 4:30pm – 7:30pm

Where any project collects personal information, there will be concern over how people’s right to privacy is being protected. This workshop will introduce a risk-based methodology for de identification, showcase how privacy can be enhanced through de-identification and uncover what limits there may be.

The workshop is recommended for attendees who want to have a better understanding of de-identification controls and techniques used to render a data set de-identified.

This workshop will cover

De-identification controls & techniques

  • Clarifying the reason for wanting to release or share de-identified information
  • Understanding the environment in which the information will be released
  • Selecting which de-identification techniques should be used, and in what combination

Unpacking & mitigating risks around re-identification

  • Determining risks associated with a deliberate attempt to re-identify individuals by the data recipient
  • Managing an inadvertent re-identification by the data recipient
  • Choosing an acceptable threshold for the risk of re-identification based on the characteristics of the dataset
  • Applying safeguards and controls to reduce the risk of re-identification and preserve the utility of information being released

* Refreshments & dinner provided

Price 499 + GST

Day 2 - Thursday 29th August, 2019

8:00
Welcome, coffee & networking
8:30
Welcome remarks from the Chair
Building a privacy-aware culture & strengthening customer trust
8:40
Rebuilding trust in the financial services sector -The Xinja neobanking story
  • Balancing privacy, compliance obligations and enabling digital banking
  • Data, data, everywhere
  • Empowering customers to actively manage their own privacy and security
David Nichols
Co-founder & General Counsel
Xinja Bank
9:20
PANEL DISCUSSION: Strengthening customer trust & brand loyalty
  • Updating company data regulations to achieve competitive differentiation
  • Going beyond compliance to put ethics at the forefront of your privacy programs
  • Communicating with customers about data, privacy, and their experience with your organisation
  • Using data to boost the value you provide to your customers
Marion Hemphill
General Counsel, Chief Privacy Officer
Australian Red Cross Blood Service
Nicole Hunt
Privacy & Ethics Specialist
ANZ
10:00
SPOTLIGHT SESSION

In this interactive session you will gain a better understanding of all stakeholders present within the room and the different challenges they face

10:30
Morning tea & networking
11:00
FIRESIDE CHAT: Aligning your organisation around a core set of data principles
  • Understanding how our organisation uses and shares data
  • Building a culture that understands the importance of effective governance
  • Keeping communication around data principles clear and simple
Jonny Ayres
Chief Privacy Officer ANZ
Novartis
11:40
PANEL DISCUSSION: Educating employees about data governance procedures
  • Ensuring a culture of commitment
  • Including employee training, scenario planning and drills
  • Having a strong, top-down commitment to data governance
Cameron Beck
Deputy General Counsel - Lotteries & Keno, & Chief Privacy Officer
Tabcorp
Kate Bradshaw
Corporate Counsel & Privacy Officer
TasNetworks
Bob Sparshatt
Chief Data Officer
Equifax Australia/New Zealand
Anthony Hollis
Managing Director
Data Governance Australia
12:40
Networking lunch
Evolving data use while keeping privacy & transparency at the forefront
1:40
WORLD CAFE: Implementing an effective third-party risk management program
  • Developing a global third party management program ready to be rolled out in Australia

Hosted by Johnny Ayres, Chief Privacy Officer ANZ, Novartis

  • What are the criteria that we should expect from third parties in demonstrating privacy and data protection capability?
  • Conducting third party supplier assessments – what are the key considerations
Jonny Ayres
Chief Privacy Officer ANZ
Novartis
2:40
Afternoon tea & networking
3:10
KEYNOTE ADDRESS: Overcoming the challenges to the protection of personal information through advancements in digital technology
  • Privacy, consent and digital government over the next 20 years
  • Digital first delivery, and keeping privacy at the forefront
  • Strengthening privacy when digitising old processes
Samantha Gavel
Privacy Commissioner
Information & Privacy Commission NSW
3:50
Open Data Institute Spotlight
Jamie Leach
Founder & CEO
Open Data Australia
4:30
Closing remarks from Chair & close of Conference
Workshop A: Building a data protection framework that is agile to the future
Tuesday 27th August 2019, 9:00am – 4:00pm

The workshop
Data has become one of the biggest and most important assets for businesses. With the potential data brings, comes the challenges to ensure compliance with evolving privacy legislation, whilst continuing to implement data driven growth and innovation. So what matters to the regulator, your employees and customers?

The key principle that sits behind a successful privacy program will be how you demonstrate and communicate what data you are collecting and what you’re doing with it. This interactive workshop with global privacy expert Sheila FitzPatrick will take you step by step through the practical actions you can take to get the most out of your privacy policies and frameworks.

Essential updates

  •  Recent changes and advancements in data protection laws
  • The status of GDPR compliance
  • What has happened in the past year since the GPDR went into effect
  • How Australian organisations have addressed, or not addressed, their obligations under the Regulation
  • The expanding laws in ANZ and Asia as a result of GDPR

This workshop will explore

  • The global privacy landscape
  • What data are you collecting, how is it stored and used?
  • What are your direct and third party privacy obligations?
  • What are the gaps in your current privacy programs?
  • What next for privacy?

What will you take away?

  • Create a data privacy legal compliance framework
  • Create a privacy program that supports the foundations of your business
  • Ensure policies and third party contracts are compliant
  • Embed a culture of privacy that enables compliance and reduces human error
  • Conduct an effective privacy impact assessment

* Refreshments & lunch provided

Price $999 + GST

Sheila FitzPatrick
Worldwide Expert in Data, Privacy & GDPR
Fitzpatrick & Associates USA
Register Now
Workshop B: How to de-identify data & mitigate re-identification risks
Wednesday 28th August 2019, 4:30pm – 7:30pm

Where any project collects personal information, there will be concern over how people’s right to privacy is being protected. This workshop will introduce a risk-based methodology for de identification, showcase how privacy can be enhanced through de-identification and uncover what limits there may be.

The workshop is recommended for attendees who want to have a better understanding of de-identification controls and techniques used to render a data set de-identified.

This workshop will cover

De-identification controls & techniques

  • Clarifying the reason for wanting to release or share de-identified information
  • Understanding the environment in which the information will be released
  • Selecting which de-identification techniques should be used, and in what combination

Unpacking & mitigating risks around re-identification

  • Determining risks associated with a deliberate attempt to re-identify individuals by the data recipient
  • Managing an inadvertent re-identification by the data recipient
  • Choosing an acceptable threshold for the risk of re-identification based on the characteristics of the dataset
  • Applying safeguards and controls to reduce the risk of re-identification and preserve the utility of information being released

* Refreshments & dinner provided

Price 499 + GST

Back to Top

Key Speakers

Samantha Gavel
Privacy Commissioner
Information & Privacy Commission NSW
Sheila FitzPatrick
Worldwide Expert in Data, Privacy & GDPR
Fitzpatrick & Associates USA
David Nichols
Co-founder & General Counsel
Xinja Bank
Jonny Ayres
Chief Privacy Officer ANZ
Novartis