Keeping it Real (current): I’m back

im back 2Hello everyone! I am back. I wasn’t sure I would be, but based on comments this week at the Privacy, Security, Risk conference in Austin by IAPP – some people have missed me. I’m so sorry.

I thought blogs were out of style (Should I do YouTube or podcast?), but apparently, a couple of people do like to read what I write.

So here we are.

Today, I had the honor to moderate a panel of fantastic professionals – all women. All so very fabulous. The session was on Leadership and Privacy – and beyond featuring Agnes Bundy Scanlan (Treliant Risk Advisors), Liisa Thomas (Sheppard Mullin Richter and Hampton), and Katie Licup (Discover).  The session was centered around these women and what they have learned in their practices over the years. Seriously – Agnes hired Trevor Hughes, president and CEO of IAPP, 16 years ago when she was the first chair of IAPP.  Liisa had some great advice that she had received in law school from one of her favorite professors who told her to always shoot for the best job and the right pay. If she doesn’t, she is jeopardizing everyone else. And given that her professor himself aimed for the best job and made it…. President of the U.S. (Barack Obama) – she takes that advice to heart. So do I.

Other great programs. Surrounded by privacy peeps. The world doesn’t get much better. Well, until I went to eat Cooper’s BBQ. WOW. and gluten free. I was in brisket heaven.

So I will write. or I will video. or I will cast?  If either of you are reading this, let me know your thoughts.

ACC WITH: Global Women in Law

20160621_172608Tonight, a dream came true. A vision took form.

The Association of Corporate Counsel (the organization for in-house attorneys with about 40,000 members worldwide) launched their global initiative supporting women attorneys.

It all started with one question “Does the ACC offer programming for women?” The answer was no, but we should. And two years later, here we are. In the brilliant hands of Jennifer Chen, the Director of the ACC Foundation, this program has not only been put in place, it has grown wings.

It took a cadre of amazing ACC attorneys (Tracy Stanton, Jennifer Mailander, Katia Bloom, and many others) along with the ACC (Veta Richardson, Tori Payne, and also many others) to share the vision and take actionable steps to make it happen. Last October, we did a soft launch of WITH at the ACC Annual Meeting, where we held a breakfast with inspiring, accomplished women attorneys. We did surveys, wrote articles, developed toolkits, and spread the word.

That word resulted in honoring three women tonight who have truly forged the path and had a vision and a plan long before us: Irina Bokova, Director-General, UNESCO; Gloria Santona, Executive Vice President, General Counsel and Secretary, McDonald’s Corporation; and Charisse R. Lillie, Fellow and Vice President of Community Investment
Comcast Corporation, Executive Vice President, Comcast Foundation. The fabulous Sunny Hostin, Senior Legal Correspondent & Analyst, ABC News led the discussion, which touched on many key points – mentoring and having a sponsor for one’s career, situations in which they noted “this is what it means to be a woman in the legal field,” salary, plans, and advice. They held the room enthralled – about 200 attendees all nodded their heads in agreement and there were more than a few “yeah. Yeah!” heard around the room.

And this was after David Nabarro, Special Adviser to the United Nations Secretary-General on the 2030 Agenda for Sustainable Development and Climate Change inspired the room with his talk on the 17 goals in the 2030 Agenda – and how many are related to the empowerment of women.  Knowing that 193 countries are committed to seeing women empowered is simply incredible.

And the room was not just women. There were many men present as well – as it should be. Men are a critical component if women are to “live under the sky” (as opposed to breaking the glass ceiling in a few spots here and there).

We all hope to see this field equalized and celebrate the difference that women make. One thing Irina said really resonated with the audience. When a woman reaches a certain position or role, there are high expectations – people are watching. She must do an exceptional job and far surpass expectations. Yet men in the same role are only expected to do the job. They don’t need to surpass expectations, no one is “watching.” At some point, we – as women – want to be average. Let us simply do the job. Because we can. But it is really hard to always exceed expectations that are only set for one half of the profession. Hitting a metric that should not exist is simply unreasonable.

We are excited about our next steps. And we welcome you to the effort. We have a huge initiative in place with Diversity Lab and the onRamp  Fellowships. Caren Ulrich Stacy, the founder, is truly a giant among giants (I think I fell a little in love with her). Five corporate powers have signed on to her program to help women re-enter the legal workforce.

You know you want to be WITH us. Feel free to contact me or the ACC Foundation to learn more.



Go beyond Talking Heads: How to build a panel presentation that Pops

Wanh. Wanh. Wanh.fireworks

No matter how interested you are in a topic, talking heads start sounding like the teachers in the Charlie Brown cartoons. Sometimes, the panel can even put their audience to sleep.

Most people who speak at an event choose to do so – meaning that they have a message that they want to share. I am not a professional or fabulous speaker, but I do speak on occasion at the typical talking heads conference. And while you cannot please all of the people all of the time, there are some basic tips that can improve just about any panel presentation.

My ten top popping panel tips:

1. Create a diverse panel
Whether the diversity is in gender, sector, perspective, opinion, race, title, role – whatever – make the panel diverse. Give the audience someone to whom each one of them can relate.

2. Be creative, but keep it within limits
There are ways that even talking heads can present the same material, but creatively. I have participated in presentation based on the dating game, family feud, a political debate, and more. Recognize that not everyone in the audience will relate to creativity, but the overwhelming majority will like it.

3. Get organized before the presentation
Get on the phone. Speak to each other. Know who is going to change the slides. How will the chairs be organized? Determine if you want to sit behind a long table. Will you rise to speak at a podium? How will you handle too many questions and comments? How will you handle none?

4. Appoint a control person
Someone needs to be in charge of keeping the presentation moving. This should and could be done with ruthless charm. You can disclaim at the beginning how you will handle questions and comments. If time starts running short, the control person can keep it moving.

5. Do a true dry run
You may have everything planned out, but a true dry run – a real one – (cannot emphasize realism enough) should help ferret out problem areas, such as a long-winded speaker.

6. Speak to the slides, rather than read from them
There is not much worse than a presentation with paragraphs of material on each slide. Ugh. The audience will be reading them and not listening. You should have impactful slides that you can easily speak to. You can develop substantive material to submit for continuing education credit, and inform the audience that such material is available, just not what they will see in the panel presentation.

7. Stay on time and on point
Often, panelists have no say in the topic, title, or description of presentations. Yet the audience chooses that session based on those. Panelists should ensure that their presentation lives up to what is promised. I hate walking away from a presentation not having learned what was in the description. For the time, see #4 above on control person.

8. Interact with each other
Have a point person on each topic and interact. Whether in agreement or disagreement, the panelists should interact. Please do not separate the program into evenly divided topics and let one head bobble for ten minutes. Have fun. If you don’t, they won’t.

9. Have questions teed up
Seems basic. Is basic. Do it.
It’s pretty disheartening to save ten minutes for questions and there are none. You can announce at the beginning that although it is a safe environment, anyone who doesn’t want to raise his/her hand can submit questions electronically (in the manner of your choice). If you don’t address the questions during the session, you will at the end.

10. Engage the audience

IAPP Global Privacy Summit 2015: session highlights and closing session

In this post, I won’t go into details about each day or every session. You can see the schedule and descriptions here. However, I do want to touch on some key points.

With over 3,000 attendees, several sessions were standing room only. The venue worked with the IAPP to move some of the more popular sessions to larger rooms, but nearly every session I went to had ten-fifteen people standing in the back and along the sides.

In general, the sessions were staffed with qualified professionals, albeit not necessarily gifted speakers. Sometimes, it really is their experience and knowledge we crave, so we can tolerate a lack of creativity and speaking skill.  I will say though, that after one of my speaking sessions, all of my co-panelists and I were stopped over the next two days by attendees and profusely thanked for the quality of our session – entertaining and informative. As a speaker, there is no better compliment. Additionally, there were quite a few really good speakers in sessions that I attended.

On the other hand, there was one session I attended that I enjoyed the speakers, enjoyed the session, smiled, clapped, and walked out of there wondering what I actually learned. I even went back to the program guide to see what I was supposed to have learned.

Closing general session: Google guy. not impressed (very sorry, I wanted to be and I am sure he is a heck of a qualified professional). I probably just blew any chance of a job at Google. I really wanted to be impressed. I was interested. Google is a huge topic of interest in the privacy world. But sadly, this one simply did not hit the mark.

Sarah Lewis. Blown away. Fabulous speaker. Great topic. Hit the delivery spot on. An amazing presence. Had us laughing, listening, and enthralled. She spoke about creativity and gave examples such as Samuel Morse, J.K. Rowling, Albert Einstein, and Charles Lund Black, Jr. – whose meeting with Louis Armstrong entrenched his interest in civil rights.

And last, Oren Yakobovich a social entrepreneur who uses cameras to capture violations of human rights.  He co-founded Videre, an NGO which equips people in oppressed communities with cameras to uncover information. He showed us some videos – the gain of which endangers the lives of those who wear the cameras – cameras hidden in clothes, wood, stones. He was poised, passionate, and persuasive. He humbled us all.

In conclusion of this short three-part series, I met wonderful professionals, learned a lot of information, and reconnected with people I seem to never see outside the conferences. The IAPP serves such a true purpose – to give both roots and branches to those of us in privacy. Beyond a doubt, the IAPP has moved this profession forward by huge leaps. I am a raving fan. If you have a chance to get involved (if you like privacy), take advantage of the opportunity.

Pre-conference Workshops – an overview (IAPP Global Privacy Summit 2015)

if you are interested in privacy, pay attention to IAPP and attend the conferences. Don’t write off the pre-conferences. They are powerful, informative, valuable sessions well worth your time and money. Read further to learn more.

In the first post to this series, I discussed the location, venue, attendees, and opening session of the IAPP Global Privacy Summit 2015. In this post, I will briefly discuss the pre-conference workshops.

The IAPP designates the day before its summit as the “pre-conference” day. I was honored and delighted to participate in the pre-conference this year, so I cannot speak directly to the content and quality of this year’s workshops – but I have attended some previous pre-conference workshops of the same topics. And some I have not.

In addition to workshops, the pre-conference day includes training sessions for the IAPP certifications, several KnowledgeNet meet-ups, and various networking events – such as peer-to-peer roundtables, young professionals, and 5-minute mixers.

In general, the workshops all seem highly relevant to privacy professionals and seem to contain valuable information. The IAPP does charge extra to attend the pre-conferences, but every year, there are quite a number of people who attend.

Half-day morning workshops: There were three workshops presented on Wednesday from 9 am to 1 pm:
– the Data Breach Notification Bootcamp,
– the EU Privacy Bootcamp, and
– Piecing Together the Privacy Engineering Puzzle.

  • Given the number of breaches in the recent past, the first workshop was probably a popular one. Ponemon Institute named 2014 as the Year of the Mega Breaches.
  • The EU Privacy Bootcamp is also popular with anyone whose company does business in the European Union. The EU is the strongest multinational privacy regime in the world and is thus a topic that a global company – or simply one who is active in the EU – should know quite well.
  • The last session on the privacy engineering is not one with which I am familiar, but OH MY GOODNESS, I should have been there. (my excuse was inshlepping back and forth from the Mayflower, but seriously, I should have just got my sillybutt up and attended). Here are some excerpts of the description:
    • Include privacy considerations in the systems engineering and development process.
    • …a survey of the evolution of “privacy engineering” and how it can be used to achieve Privacy by Design objectives…
    • …explore the current efforts underway to define the privacy engineering discipline, including the status of the federal privacy engineering model the National Institute of Standards and Technology (NIST) is developing…


Half-day afternoon workshops: there were three sessions presented on Wednesday afternoon from 2 pm – 6 pm:
– Globalizing Your Privacy Program: The Hot Buttons,
– Healthcare Privacy—Diagnosis vs. Prognosis of Hot-button     Topics in Healthcare, and
– Privacy Bootcamp.

  • Globalizing a privacy program sounds like an incredibly practical and useful workshop. I recognize some of the names presenting and know them to be very knowledgeable and practical.
  • Healthcare privacy was the one in which I spoke. Trust me, it was riveting! Seriously, good speakers and great material. We did not get to discuss some of the topics in depth because our fabulous audience was highly engaged.
  • Privacy bootcamp is a successful annual workshop presented by Trevor Hughes, president and CEO of IAPP and Kirk Nahra, partner with Riley Wein and frankly, one my favorite privacy attorneys ever. ’nuff said.

And last, there is one full day workshop, Privacy in the Cloud with a Silver Lining. Cloud services are always a controversial topic for privacy professionals, so it was likely a packed house.

I apologize that I cannot give you summaries of the sessions nor true feedback on their value. The purpose was to give you an overview on the offerings and some insight into whether attending the IAPP’s pre-conference workshops is valuable.

IAPP Global Privacy Summit 2015

I love conferences. I had a boss who told me he did not like conferences, they were just big parties. I found that to be odd – all the conferences I had ever gone to – whether with the IAPP, HCCA, the Equal Justice Conference with the ABA, etc. – I had been subsumed with attending the sessions and learning. Then I attended the ACC, which is incredibly informative and educational – but for those it appeals to, there is definitely an opportunity to participate in social events and networking.

Let’s break down the IAPP Global Privacy Summit 2015. I’ll do this in a few posts as I have more to say than should be shared in one post.

First: location. This conference is always in DC in the Early spring. March seems to be a little too early, more late winter than early spring. It’s been freaking cold COLD the past couple of years. Last year was my first year to come to the Global Privacy Summit and there was ice and snow on the ground then, too.  I have heard rumors that they are moving it to April for 2016. I hope so!

Hotel: The venue was moved to the Mariott Marquis this year and it was wonderful. Well…other than those who were here on Monday were shifted to the Mayflower for the night. Now the Mayflower is supposed to be awesome, but it fell way short of that. The floor I was on was being renovated, including the room next to mine. I dealt with construction noises and fumes the entire time I was there. I am horribly allergic to chemicals, so I was miserable. The Marriott was pleasant. The movement from floor to floor for sessions was easy. Even schlepping over to the huge ballroom for the opening and closing sessions was fine.

Attendees: The IAPP has reached over 20,000 members and over 3,000 of them were at this conference. There were not enough seats for meals and people were eating at vendor booths, standing in hallways, etc. But that was a minor inconvenience. There were a huge number of IT/Information Security professionals there which was truly encouraging for the collaboration between the fields. Also, one of the big draws for this summit is the number of government personnel and foreign privacy professionals who attend. I met quite and few. Discussions tend to range from personal to professional, privacy to education, kids to processes – seriously, the scope and breadth of topics individually and in small groups was enormous – thought-provoking and entertaining. Networking is like breathing. Never met a privacy professional I did not like.


Opening session was typical. Trevor Hughes, president and CEO of IAPP, is exactly what one would expect for such a group. He is engaging, informative, and enthusiastic. (I had a couple of personal minutes with him as he was locked out of his room and waiting for security. He really is as human as the rest of us.)

Hilary Wandall, Associate Vice President, Compliance and Chief Privacy Officer of Merck & Co., Inc., current Vice Chair for the IAPP Board of Directors served as emcee for the event. I had the opportunity to meet her later during the conference and was surprised that she knew my names – and of course responded with my typical complete lack of sophistication. I only have one time to make a first impression so I sure hope her impression was formed long before we met! She is charming, quite intelligent, composed, and a wonderful public speaker.

Glenn Greenwald, journalist, who authored No Place to Hide, a book detailing his coverage of the NSA scandal and Edward Snowden’s disclosures. He is an excellent speaker – and no matter your opinion on NSA, Snowden, US surveillance – he is in the thick of exposing privacy and security concerns. He is not an inspiring speaker, but his words are riveting.

Next up was Michael Sandel, Anne T. and Robert M. Bass Professor of Government, Harvard University. Now here is an interesting speaker. He is obviously a law professor – he has a charming habit of leaning on the podium at times that makes him seem like an average joe…kinda. It is evident by his words that he is far from average. He engaged the audience directly – calling out questions, seeking impressions, and near-Socratically delving further into a speaker’s opinion.

Tune in for the next installment of the pre-quel to the opening sessions, the pre-conference.