By Stephanie Gallagher
stephanie.gallagher@corporatecompliance.org
Technology was the hot topic of the day at the SCCE Minneapolis Regional Compliance & Ethics Conference. Kicking off the conference was the ever-evolving topic of cyber-security and data breaches, presented by Lou Stephens, Special Agent in Charge, Minneapolis Field Office, U.S. Secret Service.
This session was a fascinating deep-dive into the current cyber threat landscape, and one thing that really stuck out was the truth to the phrase, “There are two types of companies in America, those that have been hacked, and those that don’t know it yet.” Since this is such a wide-spread issue, it was incredibly enlightening to hear from Mr. Stephens about the ins-and-outs of handling these breaches, what to expect when working with law enforcement, and some best practices to keep in mind when responding to a data breach. More information and the presentation from today’s session is available here.
We moved into another emerging hot topic compliance, human trafficking. The session presented by Dave Pinto, Assistant County Attorney and Director, Safe Harbor Training & Protocol Development, Ramsey County Attorney’s Office and Lisa Beth Lentini, VP, Global Compliance, Carlson Wagonlit Travel. This presentation focused on the basics and background of human trafficking in addition to global and local perspectives on the topic. There were some important takeaways and hot topics that are worth taking a look at in the presentation, available here.
Tim Purton, Co-Chair, Government and Internal Investigations Group, Robins Kaplan LLP, presented on the rapidly evolving topic of drone technology and privacy and the corporate compliance implications of the regulatory system in addition to the privacy concerns associated with commercial drone users. In addition, there was a fantastic discussion about the seminole cases regarding what constitutes public domain airspace, protecting intellectual property, and local government privacy implications. Navigating Privacy pitfalls without FAA guidance as the FAA focus is on safety, not privacy and what a compliance department needs to know to keep up. More information from this session here.
Keeping with the technology and data protection issues, Al Sweeny, Director, Cybersecurity & Privacy PricewaterhouseCoopers LLP, discussed how data protection is more than security or privacy with some interesting discussions about data privacy in marketing and advertising, among other issues. Check out the presentation here.
New Innovations and Best Practices in Unclaimed Property was a very interesting session by David Westmark, Senior Counsel at Thrivent Financial for Lutherans, which discussed several best practices for dealing with unclaimed property. One of the surprising take aways was the need to pay close attention to document retention policies with regard to unclaimed property, as the retention period may exceed a typical retention policy for an organization (35 years). The major concern with the extended record retention is that if your organization doesn’t have the records, auditors can extrapolate and estimate unclaimed property. More information on this here.
We wrapped up the day with the the final session of the day, Payment Card Compliance and Challenges, presented by Michelle Greely, Sr. Director, Security Governance Risk and Compliance, Carlson Wagonlit Travel. We discussed the ever-present issue of cyber-crime, privacy and regulation, threats from third-party vendors, BYOx trends in the workplace, engagement with your people, among other issues. Slides available here.
Overall, it was a great event, with many great speakers, best practices and networking. All presentations from the conference are available here. A list of all SCCE Regional Complaince & Ethics Conferences is available here.
[clickToTweet tweet=”Live From SCCE’s Minneapolis Regional Compliance & Ethics Conference @SCCE #SCCEmsp” quote=”Live From SCCE’s Minneapolis Regional Compliance & Ethics Conference” theme=”style3″]