Privacy Risk Summit 2016
On June 8, 2016

Bespoke Event Center, San Francisco


Register For This Event

TRUSTe Privacy Risk Summit 2016

The pace of change for privacy is relentless. Whether it’s regulatory developments like the GDPR and Privacy Shield, technological changes from new connected devices and data collection methods, risk of data breach or brand trust – it is hard to keep your finger on the pulse.

What are the top privacy risks companies need to address? How can you assess and manage these risks effectively within your organization?

The TRUSTe Privacy Risk Summit 2016 brought together leading privacy practitioners, lawyers, regulators, and academics to address the top privacy risks and share proven strategies for success. The Summit built on the success of the 2015 TRUSTe EU Data Protection Conference and the 2014 / 2015 TRUSTe IoT Privacy Summits to offer an expanded program with four parallel tracks focusing on the risks rising from technological and regulatory change and privacy risk management best practices.

Thank you to all of our attendees, speakers, and sponsors for a great Privacy Risk Summit 2016. Stay in touch via our blog for details of future TRUSTe events.

IAPP CPE credits are available for conference attendees.

Keynote Speakers

Hilary has led the Merck Privacy Office and the company’s global privacy program since 2004. She has broad multi-disciplinary experience in HIV research, genetic and cellular toxicology, internet marketing, corporate law, ethics and compliance, and privacy and data protection. She is actively engaged in a broad range of industry and pan-industry outreach 
and advocacy efforts to address evolving policy and privacy and data protection policy issues.
Hilary Wandall

AVP Compliance & Chief Privacy Officer, Merck & Co., Inc.

Mr. Antonipillai advises the Secretary on a wide range of economic issues, including tax, digital economy, and data policy issues. He joined the Commerce Department in 2013 as Deputy General Counsel, and has also served as Acting General Counsel and Acting Chief of Staff to Secretary Pritzker. Mr. Antonipillai has played a key role in a number of the Department's top priorities.
Justin Antonipillai

Counselor to Commerce Secretary Penny Pritzker, U.S. DoC

Peter supports GE’s Predix platform and internet-connected products and predictive analytics solutions. Peter served as Chief Privacy Officer at GE Corporate from 2013-16. Prior to joining GE, Peter served as Vice President of Privacy & Security Legal and Chief Privacy Officer at Oracle. Peter clerked for the Honorable Robert E. Coyle, Chief Judge of the United States District Court for the Eastern District of California.
Peter M. Lefkowitz

Chief Privacy Officer, GE Digital

Speakers Include

Adam coordinates information technology projects with NIST's critical partners in the federal arena, including the Chief Information Officers' Council, the Office of Management and Budget and the National Security Staff. Sedgewick is leading NIST's newest project to develop a cybersecurity framework for critical infrastructure such as power plants, and financial, transportation and communications systems.
Adam Sedgewick

NIST Policy Lead on the Cybersecurity Framework

As a business litigator, Carly focuses her practice on a variety of cases, including breach of contract claims, trade secret theft, breach of duty claims, real estate disputes, fraud and unfair practices allegations, insurance coverage litigation, and consumer class actions. Her practice includes representing clients in California state and federal courts, as well as in alternative dispute resolution processes.
Carly O’Halloran Alameda

Partner, Farella Braun + Martel

Christopher Menoosh

Partner, Fieldfisher

Dan brings 25+ years of experience on legal and policy issues involving the convergence of internet, telecom and technology. He has substantial knowledge and experience in the areas of privacy, cyber security, and the IoT, a world in which all kinds of devices use a combination of software, sensors, and wireless connectivity to talk to their owners and to one another. He works with clients to define and capitalize on public policy strategies in the US and Europe.
Dan Caprio

Co-Founder, The Providence Group

Diana Maier is an employment and privacy law attorney who provides advice and counsel, privacy compliance, workplace complaint investigation, and litigation services.
Diana Maier

Employment and Privacy Counsel, Law Offices of Diana Maier

Elena Elkina is a privacy and data protection subject matter expert who drives meaningful and impactful business progress. She’s started her career as a lawyer 20 years ago, and 10 years later she realized that her passion for law is outmatched by her desire to build and innovate. “Now it is the time to disrupt, innovate, and execute”, says Elena. This is why she is driving her career in privacy and data protection solving some of the most pressing technology issues and making meaningful business changes.
Elena Elkin

Senior Manager Global Privacy Officer, McKesson

Florian Schaub is a postdoctoral fellow in the School of Computer Science at Carnegie Mellon University. Dr. Schaub's research is focused on empowering users to effectively manage their privacy in complex socio-technical systems. His research interests span privacy, human-computer interaction, mobile and ubiquitous computing, and the Internet of Things.
Florian Shaub

Postdoctoral Fellow at Carnegie Mellon University

Gary Roboff

Senior Consultant, Shared Assessments

Joanne has worked in privacy since 2001, when she headed the California Office of Privacy Protection, a state agency with an education and advocacy mission. McNabb is a Certified Information Privacy Professional, with specializations in Government and Information Technology. She serves on the Privacy Advisory Committee to the U.S. Department of Homeland Security and is a Fellow of the Ponemon Institute.
Joanne McNabb

Director of Privacy Education & Policy, Office of the Attorney General, California Department of Justice

Jonathan is a national security veteran with experience as an intelligence officer, a staff member on the Senate Foreign Relations Committee and a senior defense industry executive who consulted on information operations and strategic planning. He was the Executive Secretary for the National Warning Intelligence Task Force and most recently led Edelman Public Relations’ cybersecurity policy and national security practice in Washington, D.C.
Jonathan Litchman

Co-Founder, The Providence Group

Juan Luis is the founding partner of Novus Concilium, a boutique law firm specialized in tech law, privacy and venture capital with headquarters in Mexico City. He has 6+ years of experience helping companies develop their privacy policies in compliance with Mexican Law; representing them in related litigation in Mexican Courts and; has recently advised the Mexican Supreme Court on the subject.
Juan Luis Hernandez Conde

Founding Partner, Novus Concilium

K Royal

Vice President and Assistant General Counsel for Privacy & Compliance, CellTrust Corporation

Lourdes is an attorney at Arent Fox LLP and experienced senior privacy program leader with 7+ years of cross-functional experience in law, privacy, security, compliance, policy, and technology. She is passionate about advising organizations on their privacy and security law obligations across different industries and jurisdictions, setting trustworthy legal and data strategy, and delivering innovative solutions to operationalize privacy and minimize risk, all while balancing legal and business considerations.
Lourdes M. Turrecha

Attorney, Arent Fox LLP

Mr. Palmore serves as the leader of the San Francisco FBI Cyber Branch. His responsibilities include the strategic and operational management of several teams of cyber intrusion investigators, computer scientists and digital forensics personnel. Mr. Palmore entered on duty with the FBI in 1997. His assignments, in addition to San Francisco, have included FBIHQ, and the Sacramento and Los Angeles Field Offices. Prior to his current assignment, Mr. Palmore supervised and conducted investigations in International and Domestic Terrorism, Cyber Terrorism, Civil Rights, Public Corruption, Organized Crime, Violent Crimes, and Human Intelligence (HUMINT) development. Mr. Palmore’s certifications include the ISC2 – CISSP and the GIAC - GISP. He earned a B.S. from the United States Naval Academy and a MBA from Pepperdine University. Prior to the FBI, Mr. Palmore served as a commissioned officer in the United States Marine Corps.
Malcolm (MK) Palmore

Assistant Special Agent in Charge, FBI San Francisco - Cyber Branch

Michelle’s organization is responsible for corporate data governance, Cisco’s enterprise-wide data protection program, including incident response, and a comprehensive security certification and compliance strategy. Michelle also represents Cisco in customer engagements and advocates for data protection and privacy across Cisco and the industry.
Michelle Fleury

Chief Data Protection Officer, Cisco

Olga is currently General Counsel at ClearSlide, a leading SaaS sales and marketing engagement platform. Prior to ClearSlide, Olga was an Assistant General Counsel in Zoosk, an international online dating company, where she counseled on intellectual property, risk management, consumer and privacy issues. Before Zoosk, Olga worked at Visa, Pacific Art League of Palo Alto, Wilson Sonsini Goodrich & Rosati, and Yahoo!
Olga V Mack

General Counsel, ClearSlide

Paola is a member of the Legal Department at Palo Alto Networks, the next-generation security company. As Senior Director of Global Privacy, she supports Palo Alto Networks with legal advice on global privacy and security issues, and works cross-functionally with all teams at the company to ensure that privacy is incorporated in everything the company does. Paola is a veteran of the information security industry.
Paola Zeni

Senior Director, Global Privacy, Palo Alto Networks

Paul Plofchan serves as Vice President of Government Affairs and Chief Privacy Officer for ADT, based out of Boca Raton, Florida. Paul leads ADT’s political engagement and public policy strategy, to include oversight of the company's political action committee (ADT PAC). As Chief Privacy Officer, Paul is a leader within the company's data stewardship and protection program, focused on ensuring ADT's products, services and practices foster customer and employee trust. In conjunction with his current role, Paul serves as Chairman of the Electronic Security Association (ESA) government affairs board. Prior to joining ADT, Paul spent 20 years with Pfizer, Inc. in corporate affairs, government relations and sales and marketing. Paul is a graduate of the University of Notre Dame (Economics) and the University of Nebraska (MBA) and holds a privacy certification from the International Association of Privacy Professionals (CIPP-US).
Paul Plofchan

Chief Privacy Officer, ADT

Peter Cullen

Executive Strategist, Policy Innovation, Information Accountability Foundation

Phil Lee is a Partner in the Privacy, Security and Information Group at Fieldfisher, and runs its US Office in Palo Alto, the heart of Silicon Valley. He holds CIPP(E) and CIPM status, and sits on the IAPP's Education Advisory Board. Phil has particular specialisms in behavioural profiling and cookie regulation, e-marketing, and international data transfer strategies (including binding corporate rules).
Phil Lee

Partner & Head of US Officer, Fieldfisher

Robert is a Counsel in the Intellectual Property Group, with a focus on Data Privacy and Technology Transactions. For over a decade he has advised clients on: regulatory compliance matters such as data privacy, consumer protection and e-commerce; and international expansion and associated cross-border and multi-jurisdictional issues. Robert also has deep insight pertaining to European regulatory enforcement.
Robert Blamires

Counsel, White & Case

Sharon Anolik

President & Founder, Privacy Panacea

Stuart S. Shapiro is a Principal Cyber Security and Privacy Engineer at the MITRE Corporation, a not-for-profit company performing technical research and consulting primarily for the US government. At MITRE he has led multiple research and operational efforts in the areas of privacy engineering, privacy risk management, and privacy enhancing technologies (PETs) and has written and presented on these in numerous forums. Among his professional affiliations are the International Association of Privacy Professionals (IAPP), the Advisory Board of the Ponemon Institute’s Responsible Information Management Council, and the US Public Policy Council of the Association for Computing Machinery (USACM) where he currently serves as Co-Vice-Chair.
Stuart S. Shapiro

Principal Cyber Security and Privacy Engineer, MITRE Corporation

Tom leads the privacy and information security governance program at Silicon Valley Bank Financial Group (a global financial services company with locations in US, Europe, Middle East, China & Hong Kong) and is responsible for strategy and execution of privacy and information governance across the organization. Prior to joining SVBFG Tom spent 7 years at Western Union as the director of privacy for the Americas, EU, Middle East and Africa regions.
Tom Widgery

Director of Privacy and Information Security Governance, SVB Financial Group

Agenda at a Glance

8.00 – 8.45
Registration & Breakfast
  • 8.45 – 8.55 — Welcome & Opening Remarks

    Chris Babel, CEO, TRUSTe

  • 8.55 – 9.20 — Opening Keynote

    Hilary Wandall, AVP & Chief Privacy Officer, Merck & Co., Inc

  • 9.20 – 10.00 — Opening Panel: Evolution of Privacy Risk Management

    Moderator: Chris Babel, CEO TRUSTe

    Speakers to be announced

10.00 – 10.15
Networking Break
10.15 – 11.05
Understanding how the NIST Cyber Framework Connects Privacy and Security*

Adam Sedgewick, NIST Policy Lead on the Cybersecurity Framework

Sean Brooks, NIST Privacy Engineering Lead

Jonathan Litchman, The Providence Group, Co-Founder

Dan Caprio, The providence Group Co-Founder

GDPR Compliance Countdown – It’s All About the Details Now

Phil Lee, Partner Fieldfisher

Robert Blamires, Counsel, White & Case

Understanding Your Privacy Risk Exposure in Latin America

Juan Luis Hernandez Conde, Founding Partner, Novus Concilium

Another Privacy Regulation?! How to Minimize & Prioritize Privacy Risks

Paola Zeni, Senior Director, Global Privacy, Palo Alto Networks

Lourdes M. Turrecha, Attorney, Arent Fox LLP

Elena Elkina, Co-Founder Women in Security & Privacy

11.05 – 11.55
Evolution of PIA Methodologies & Best Practices

Barbara Mangan Sondag, Privacy Counsel, North America, eBay Inc.

Beth Sipula, Senior Privacy Consultant, TRUSTe

Privacy Risk Management for Law Firms

Diana Maier, Law Offices of Diana Maier

Joanne McNabb, Director of Privacy Education and Policy Office of the Attorney General, California Department of Justice

Heather B. Deixler, Latham & Watkins LLP

Lindsy Solanki, Cooley LLP

Beth Arnese, Law Offices of Diana Maier

Going Probabilistic: Rethinking Quantitative Privacy Risk Assessment*

Stuart S. Shapiro, Principal Cyber Security and Privacy Engineer, MITRE Corporation

Operationalizing Privacy & Security Standards for IoT

Craig Speizle, Executive Director, Online Trust Alliance

Joanne Furtsch, Director of Product Policy, TRUSTe

11.55 – 12.45
Keep Calm & Protect Your Data – Case Study

Michelle Fleury, Chief Data Protection Officer, Cisco

Patrick Curry, Director, Privacy and Compliance, McKesson U.S. Pharmaceutical

Global Frameworks and Local Laws: An Accountability-based Approach

Josh Harris, Director of Policy, TRUSTe

Hilary Wandall, AVP & Chief Privacy Officer, Merck & Co., Inc

Designing Notice and Consent for the Internet of Things

Florian Schaub, School of Computer Science at Carnegie Mellon University

Comprehensive Information Impact Assessments (PIA/DPIAS 2.0)*

Peter Cullen, Executive Strategist, Policy Innovation, Information Accountability Foundation

12.45 – 1.45
Lunchtime Workshop – Breakout A
Streamlining PIAs with Privacy Automation

Paul Plofchan, Chief Privacy Officer, ADT

Tony Berman, Senior Product Manager, TRUSTe

1.45 – 2.35
Evolving Face of Privacy by Design For Internet Connected Devices

Peter Lefkowitz, Chief Privacy Officer, General Electric Company, USA

Cross Device Tracking and How I Learned to Stop Worrying and Love the Graph!

Andy Dale, Corporate Counsel, DataXu, Inc

Adam Markey, VP Product Management, Zaius Inc

Chris Boucher, SVP Advertising Technology, Advantage Marketing Solutions

Jurgen Van Staden, Policy Counsel, Network Advertising Initiative Greg Fulton, Head of Product, AdRoll

Your Customers are Asking…are you Ready for their Risk Assessment?

Andrew McDevitt, Senior Privacy Consultant, TRUSTe

Gary Roboff, Senior Consultant, Shared Assessments

Angela Saverice-Rohan, Managing Director Southern California, PwC Cybersecurity, Privacy & IT Practice

Elimu Kajunju, Senior Director / Senior Counsel, Privacy, McKesson

2.35 – 3.25
Weathering The Nest: Privacy Implications Of Home Monitoring

Jill Bronfman, Director and Adjunct Professor, University of California Hastings College of the Law

Privacy Risk & Valuation: Getting & Keeping a Seat at the Deal Table

Sharon Anolik, President & Founder, Privacy Panacea

Gerard Stegmaier, Partner, Goodwin Proctor LLP

Lourdes M. Turrecha, Consultant on Law & Policy, TeachPrivacy Turrecha

Cyber-heist your Corporate Mindshare: How to Engage the C-suite and Board

K Royal, Vice President and Assistant General Counsel for Privacy & Compliance, CellTrust Corporation

Tom Widgery, Sr. Director Privacy & Information Governance, Silicon Valley Bank

Olga V Mack, General Counsel ClearSlide

Carly O’Halloran Alameda, Partner, Farella Braun + Martel

3.25 – 3.40
Networking Break
  • 3.40 – 4.10 — Closing Keynote: Negotiating the EU-U.S. Privacy Shield

    Justin Antonipillai, Counselor, Delegated Duties of Under Secretary for Economic Affairs at US Dept. of Commerce

  • 4.10 – 5.00 — Closing Panel : Privacy and Surveillance – The US and European approaches in an Era of Terror

    Christopher Menoosh, Partner, Fieldfisher

    Kenesa Ahmad — Co-Founder and Project Director, Women in Security and Privacy; Privacy Associate at Promontory

    Malcolm Palmore,
 ASAC – Cyber Branch,

  • 5.00 – 6.00 — Networking Reception
* Denotes Advanced Session

Session Videos

This video is unavailable due to your cookie preference setting. To view the video: (1) Click the ‘Cookie Preferences’ button in the bottom right; (2) Change the ‘Advertising Cookies’ setting to ‘Yes’; (3) Refresh the page.

This video is unavailable due to your cookie preference setting. To view the video: (1) Click the ‘Cookie Preferences’ button in the bottom right; (2) Change the ‘Advertising Cookies’ setting to ‘Yes’; (3) Refresh the page.

This video is unavailable due to your cookie preference setting. To view the video: (1) Click the ‘Cookie Preferences’ button in the bottom right; (2) Change the ‘Advertising Cookies’ setting to ‘Yes’; (3) Refresh the page.

This video is unavailable due to your cookie preference setting. To view the video: (1) Click the ‘Cookie Preferences’ button in the bottom right; (2) Change the ‘Advertising Cookies’ setting to ‘Yes’; (3) Refresh the page.

This video is unavailable due to your cookie preference setting. To view the video: (1) Click the ‘Cookie Preferences’ button in the bottom right; (2) Change the ‘Advertising Cookies’ setting to ‘Yes’; (3) Refresh the page.

Sponsors & Partners

Ticket Type

Event Launch Special

  • 1/27 - 3/16
Hide Registration

Early Bird

  • 3/17 - 5/1
Hide Registration

General Admission

  • 5/2 - 6/8
Hide Registration


The Conference is taking place at Bespoke located on the 4th floor of the Westfield Mall in downtown San Francisco. Click Here.
Parking is available at the 5th & Mission garage (you can access Westfield Mall through the 5th Street entrance of Bloomingdales across the street from parking garage). Alternatively Powell Bart station is conveniently located at the bottom floor of Westfield Mall.
There is no room block reserved for the Privacy Risk Summit. Downtown San Francisco has many hotel options although it is advised to book early as demand can be high.
Business casual.
A light breakfast and full buffet lunch will be provided. There will also be a short wine reception immediately following the event from 5.00pm-6.00pm
No refunds are available but your tickets can be transferred to another colleague within the same organization. Contact organizer to arrange transfers.
Unfortunately MCLE credits are not yet available but IAPP members can submit requests for CPE credits for the conference on the IAPP website. Learn more here

From The Blog

Read recaps from our previous TRUSTe events in the blog posts below. Stay up-to-date with the latest privacy and event updates by subscribing to the TRUSTe Blog.


The Privacy Risk Summit 2016 is part of a series of live thought leadership events hosted by TRUSTe. Check out other TRUSTe events at

TRUSTe powers privacy compliance and trust by enabling businesses to use data across their customer, employee and vendor channels. We have nearly 20 years experience and a team of over 150 professionals dedicated to providing data privacy management solutions and services, including assessments, certifications and our SaaS-based Platform. The Data Privacy Management Platform provides control over all phases of privacy; from conducting assessments and implementing compliance controls to managing ongoing monitoring. Companies worldwide rely on TRUSTe to minimize compliance risk and protect their brand. Find out more at