Data Management: The Regulatory Context and Practical Roadmaps
Roundtable on Digital Strategies Special CIO Session
October 23, 2010
In this special session, CIO's convened in Zurich, CH to consider the current data environment and practice of data management in today's global landscape. Participants experienced presentations by two experts in this field: Philipp Von Schweinitz, Senior Manager, Governance, Risk & Compliance and PricewaterhouseCoopers AG and Bridget Treacy, Partner, Privacy and Information Management Practice, Hunton & Williams.
This discussion was concerned with the data environment and practice of data management of a global firm today, with particular focus on understanding the regulatory environment of the EU and U.S. and the related emerging issue of regulation of data in the “cloud”. Topics within this were data storage, data transfer (especially between jurisdictions), data privacy and data security and discussion included both customer and employee data.
The goals of this session were to: (i) enhance our understanding of the global regulatory environment (with emphasis on the EU and contrast to the U.S.); and (ii) share practical roadmaps, best practices and experiences for successful global corporate data management given today’s environment. We will have two expert presentations that will address the first of these goals and perhaps touch on the second, and then have a robust group discussion on the second of these goals with the experts participating fully.
Specifically, the group considered:
- What does the global regulatory landscape regarding data look like? How is it changing? What are the key trends and issues to be aware of?
- What are the key issues to be aware of in EU data regulation? What does the landscape of country regulatory regimes in Europe look like? What are the key issues to be aware of in the U.S., how do they differ from Europe, and what are the pitfalls between Europe and the U.S.?
- How does the emergence of the “cloud” as a force impact data management, especially from a regulatory perspective? What are your corporations doing in this area?
- What are the issues and best practices around data storage?
- What are the issues and best practices around international data transfers?
- What are the issues and best practices around data privacy? How does one avoid getting tripped up by approaches amongst European countries that appear similar but are just a bit different?
- What are the issues and best practices around data security? Where do the real security problems lie and can technology and data mining defend against most of them or not? How do you ensure the right practices are in place at external providers?
- What best practices are emerging around governance of data management in large corporations? Who is involved? Who should be?
- How do any of the above issues and approaches/roadmaps change when outsourcing arrangements or third-party providers are involved?
Philipp von Schweinitz, Senior Manager, Governance, Risk & Compliance at PricewaterhouseCoopers AG (left) Bridget Treacy, Partner, Privacy and Information Management Practice, Hunton & Williams (right)
Bridget Treacy, Partner, Privacy and Information Management Practice, Hunton & Williams
Keith Sturgill, VP and CIO, Eastman (left) Urs Bleisch, SVP and CIO, Holcim (right)
RIchard Brown, Chief Counsel of Corporate & Finance, ABB (left) Olivier Gourinchas, Manager, Global IT Security & Data Protection, Hilit (center) Martin Petry, CIO, Hilti (right)
Randy Krotowski, CIO, Chevron Global Upstream (left) Haider Rashid, Group SVP and CIO, ABB (right)
Amal Mezour, Global IT Secuirty, Holcim (left) Josef Nelissen, CISO, ABB (center) Richard Brown, Chief Counsel of Corporate & Finance, ABB (right)
Phil Lucas, Head of Group IS Risk Management / Group Function IS, ABB (left)
Prof. Eric Johnson, Center for Digital Strategies, Tuck (left) Yoseph Nelissen, CISO, ABB (left of Eric) Amal Messour, Global IT Security, Holcim (center left) Keith Sturgill, VP and CIO, Eastman (center right) RIchard Brown, Chief Counsel of Corporate & Finance, ABB (far right)
The entire group.