8:55 Welcome and Introductions
Steve Snyder, Bradley Arant Boult Cummings LLP, Charlotte, 2021-2022 Section Chair, presiding
9:00 Updates in Privacy Law‡
Matthew A. Cordell, VF Corporation, Greensboro
Elizabeth H. Johnson, Wyrick Robbins Yates & Ponton LLP, Raleigh
This session covers recent and pending updates to data privacy law both internationally and in the United States, with a focus on the practical implications of those changes and tips for preparing your clients.
10:10 Ethics in Privacy and Data Security*‡
Jay Exum, Asurion, Raleigh
Lynn C. Percival IV, Wyrick Robbins Yates & Ponton LLP, Raleigh
Implementing security measures, avoiding phishing, preserving attorney-client privilege in a data breach—there are a multitude of ethical issues for lawyers relating to privacy and data security. This session helps attendees navigate them.
11:20 AI in the USA‡
Roy Iversen, Fortalice Solutions LLC, Washington D.C.
Karin M. McGinnis, Moore & Van Allen PLLC, Charlotte
Artificial intelligence (AI) is everywhere but is largely unregulated in the U.S. During this presentation, review FTC guidance and decisions on AI and discuss new state law requirements. With insight from a technical expert, attendees also gain a better understanding of what AI is and why it has lawmakers concerned.
12:20 Lunch Break
1:05 Avoiding a SolarWinds in Your Business‡
Tom MacKenzie, TCDI, Greensboro
Peter N. McClelland, Ward and Smith PA, Raleigh
Take a look at the SolarWinds breach and its implications for corporate technology procurement policies, cyber supply chain risk management and due diligence. The session also covers best practices for vendor management, audits and related security frameworks.
2:15 Legally Required Impact Assessments: How to Do It Right‡
Clara Cottrell, BASF Corporation, Raleigh
Molly F. Martinson, Wyrick Robbins Yates & Ponton LLP, Raleigh
Shannon B. Ralich, Zendesk, Raleigh
Review the recent requirements of GDPR and various U.S. state laws for businesses to conduct privacy and transfer impact assessments. The speakers also outline the legal requirements and provide practical insights on how businesses are approaching those requirements.
3:25 Mock Data Breach‡
Alicia Bowers, Atrium Health, Charlotte
Tara N. Cho, Womble Bond Dickinson (U.S.) LLP, Raleigh
Hayden McKaskle, Palo Alto Networks, Nashville, TN
Cyberattacks, like the recent ones against Colonial Pipeline and meat processor JBS, are crippling organizations in nearly every industry sector. During this session, the speakers walk through the response to a ransomware attack of a health care organization and provide practical tips for containing the breach, complying with legal obligations, and minimizing the harm to patients and the organization.
* Indicates portion providing Ethics/Professional Responsibility credit
‡ Indicates portion providing Technology Training credit