TrustWeek is back online this year to bring together OneTrust customers, partners, and industry professionals to explore the latest technology innovations, share best practices, and network with peers. Register now for your free ticket and get ready for four days of product updates, inspiring stories, networking, and hands-on skill building including:

  • Keynotes featuring OneTrust’s CEO, Chief Strategy Officer, and Chief Marketing Officer on Building the Technology Platform of Trust: OneTrust’s Company Vision and Product Roadmap 
  • Industry Panels discussing the latest trends and news featuring speakers from Autodesk, ManpowerGroup, and MasterCard
  • Product Breakouts highlighting the newest features of the OneTrust platform across Privacy, Data Governance, Third-Party Risk, GRC, Preferences & Consent, Ethics & Compliance and ESG
  • Practitioner-led sessions to hear from real users at ResMed, Centrica and Franklin Templeton on how they are solving program challenges
  • Expert Bars to get one-on-one advice tailored to your program and learn best practices
  • CONVERGE sessions to explore the most meaningful topics in compliance including the EU Whistleblower Protection Directive, employee engagement, program benchmarking and reporting, values and culture and DEI
  • Networking Events and Activities including special virtual experiences with the chance to win some prizes, as well as the option to meet in-person!

All TrustWeek sessions will be available across EMEA (BST), APAC (AEDT), and AMER (EDT) time zones, so you can join us from anywhere in the world. Let’s take a deep dive into the TrustWeek 2021 agenda:

TrustWeek Register

Tuesday, October 12: CONVERGE at TrustWeek

The Devil in the Details: EU Directive Requirement You May Not Know

The EU Directive’s intent is clear: Better protect whistleblowers and drive effective reporting. Yet the reality has the potential to be fundamentally counterproductive for multi-jurisdiction programs. A group of leading Danish companies are challenging the EU Commission Expert Group to remove the requirement for local hotline instances—and hitting a brick wall. Join this session to hear their journey and have your questions answered by those seeking a better outcome for all companies affected by the Directive.

Speaker: Michael Randrup

Time: 6:45 AM-7:45 AM EDT | 11:45 AM – 12:35 PM BST

Register here

Equity in Sports: Lessons to Inform Your DE&I Program

Details coming soon!

Time: 6:45 AM-7:45 AM EDT | 11:45 AM – 12:35 PM BST

Register here

‘Handle With Care’ – The Human Corporate Investigations Function

Poorly handled investigations have very real consequences for everyone involved. Cultural nuances in cross-border investigations coupled with the ongoing psychological and technological impact of the pandemic call for an empathetic overhaul of our approach. Join this panel of hands-on experts who will share a reporter-centered approach which humanizes your processes for the best possible outcome–and surfaces inherent biases.

Speakers: Lloydette Bai-Marrow, Leah Nyambeki Orwoba, Peter Stone

Time: 7:45 AM – 8:35 AM EDT | 12:45PM – 1:35PM BST

Register here

Storytelling With Your Data to Secure Investment in Your Program

Building internal support and getting “buy-in” can be challenging for teams when it comes to evolving programmes. Join us for a use case on how to seek internal support when competing priorities block the road to invest in your compliance programme. We’ll uncover best practices on how you can change the conversation with your business; leverage the data you have today to justify investment in your programme without waiting for regulatory fines to gain your board’s attention.

Speaker: Bobby Thomas

Time: 7:45 AM – 8:35 AM EDT | 12:45PM – 1:35PM BST

Register here

Supply Chain Risk Among Your 4th, 5th, and 6th Parties

Most companies are focused on building a strong third-party vendor risk assessment. Yet, the progression with reputational risk leaves vulnerabilities in our approach. Join this lively panel to uncover the reality of risk running through your supply chains–and hear best practice on how to increase controls.

Speakers: Gbemi Yusuff, Candace Jasso

Time: 8:45 AM – 9:35 AM EDT | 1:45 PM – 2:35 PM BST

Register here

You’re Already Doing ESG—You’re Calling It Something Else

ESG is perceived as a new, intimidatingly complex initiative, but the foundations of a best-practices ethics and compliance program include the building blocks of ESG. That means many ethics and compliance teams are already equipped to lead the ESG charge using tools they currently have at their disposal. We’ll cover a framework for shifting your perspective just enough to make ESG a core focus of your work without starting from scratch.

Speakers: Tom Fox, Anna Romberg

Time: 8:45 AM – 9:35 AM EDT | 1:45 PM – 2:35 PM BST

Register here

CONVERGE Connects:

Join an interactive conversation with your fellow ethics and compliance practitioners. We’ll leverage the combined expertise of the CONVERGE community and establish industry-wide ethical practices for the greater good. In this roundtable, connect with practitioners from the same industry and leave with ideas, context and a benchmark for your program priorities—plus a little of the human connection we seek. Featuring:

  • Pharmaceutical Industry
  • Manufacturing Industry
  • High Tech Industry
  • Professional Services Industry
  • Industry-agnostic

Time: 9:35 AM – 10:15 AM EDT | 2:35 PM – 3:15 PM BST

Register here

Keynote: The Ethics Movement Continues

Why did you pursue ethics and compliance as a career? It’s likely because you believed that you could make a difference. Join us to kick off CONVERGE21 keynotes with an inspiring look at how our work impacts the lives of real people within our companies.

Speakers: Patrick Quinlan, CEO, Convercent | Asha Palmer, Chief Ethics & Compliance Officer, Convercent | Philip Winterburn, CSO, Convercent

Time: 10:25 AM – 10:45 AM EDT | 3:25 PM – 3:45 PM BST

Register here

Keynote: Creating a Culture Where Employees Thrive With Arianna Huffington

As ethics and compliance teams take responsibility for managing company culture, we’re accountable for much more than preventing misconduct. Our employees’ ability to show up every day, perform at 100 percent, and resist the pressure to compromise standards is dependent on their mental health and wellbeing. Join Arianna Huffington and discover what it means to build a culture where employees can bring their full selves to work and feel safe and supported.

Speakers: Arianna Huffington | Patrick Quinlan, CEO, Convercent

Time: 10:45 AM – 11:15 AM EDT | 3:45 PM – 4:15 PM BST

Register here

CECO Inspo

Join us for a panel featuring inspirational, change-making CECOs from across industries. You’ll walk away with a new appreciation for what’s possible in the world of ethics and compliance.

Speaker: Asha Palmer, Chief Ethics & Compliance Officer, Convercent

Time: 11:30 AM – 12:20 PM EDT | 4:30 PM – 5:20 PM BST

Register here

Whistleblowing Programs That Foster Speak-Up Culture

A successful whistleblowing program doesn’t start with installing a helpline–it starts with fostering an environment that protects whistleblowers, makes them feel supported, and makes clear the value they bring to the business. So how do you build that “speak-up culture?” Join this session to hear from a panel of practitioners who manage whistleblowing programs and whistleblower advocates who’ll share their insights, experiences, and challenges they’ve faced.

Speakers: Lisa Beth Lentini Walker | Wendy Badger | Mary Inman | Kelli Spencer

Time: 12:30 PM – 1:20 PM EDT | 5:30 PM – 6:20 PM BST

Register here

Activating Evangelists: Tone at the Top, Mood in the Middle, Buzz at the Bottom

Communicating with an entire workforce—effectively–is a daunting task. But your company is full of potential compliance influencers at every level of the business. Join this session to hear from a panel of compliance practitioners who’ve successfully activated evangelists and allies to do the hard work of communication and engagement for them.

Speakers: Alex Punger | Kortney Nordrum | Cristina Revelo

Time: 12:30 PM – 1:20 PM EDT | 5:30 PM – 6:20 PM BST

Register here

Push & Pull Training

Does your compliance training pull people in—or push them away? Join us to discuss engaging training strategies that make people want to interact with your compliance program voluntarily.

Speakers: Hannah Walk | Claire Lawrence | Keturah Pestel

Time: 1:30 PM – 2:20 PM EDT | 6:30 PM – 7:20 PM BST

Register here

Diversity, Equity, & Inclusion: The role of Ethics & Compliance

The efforts of a Diversity, Equity, and Inclusion team can organically overlap with what we do in Ethics and Compliance. Join this panel with DEI experts to learn how to maximize the effectiveness of your company’s efforts in this area by banding together.

Speakers: Asha Palmer | Kim Vu

Time: 1:30 PM – 2:20 PM EDT | 6:30 PM – 7:20 PM BST

Register here

The Rising Pressure to Compromise Standards, With Data From ECI’s GBES Survey

This year’s Global Business Ethics Survey from the Ethics & Compliance Initiative included some eye-opening results. Not least was the increasing pressure that employees feel to compromise standards—and a related rise in observed misconduct. Join this session with the experts behind the survey to get the context around the numbers.

Speaker: Evren Esen

Time: 2:30 PM – 3:20 PM EDT | 7:30 PM – 8:20 PM BST

Register here

Managing Change, Culture, and Ethical IPOs in a High-Growth Environment

Things move fast in the tech world—so it’s all the more important to be proactively compliant from the start. Join this session with compliance practitioners in the tech industry who’ve successfully led their company through compliant IPOs, managed culture in a changing environment, and served as effective business partners rather than “the department of ‘no.’”

Speakers: Andria Jones | Scott Schools

Time: 2:30 PM – 3:20 PM EDT | 7:30 PM – 8:20 PM BST

Register here

Wednesday, October 13: CONVERGE at TrustWeek

A Pragmatic Approach to GDPR for Ethics & Compliance Teams

Are you concerned that your compliance programme may be holding onto data that according to regulators, you’re not supposed to have? Afraid to dive into analyzing your data because you don’t know what you’ll find? Not sure where to start? In this session, the experts will offer our ethics and compliance community simplification and pragmatic focus in data privacy.

Speaker: Alexis Kateifides, Lead Center of Excellence Counsel at OneTrust

Time: 6:45 AM – 7:35 AM EDT| 11:45 AM – 12:35 PM BST

Register here

Ethics Movement Showcase: Employee Awareness, Engagement, and Training

Details coming soon!

Speaker: Viktoria Reding

Time: 6:45 AM – 7:35 AM EDT| 11:45 AM – 12:35 PM BST

Register here

Securing Disclosures

“Full disclosure! My conflict of interest questionnaire sits at the end of my annual Code of Conduct training, leaving me with incompletions and poor visibility into risk.” Sound familiar? Join this session to hear how leading organizations are transforming the way the business looks at disclosures, from reactive to proactive engagement amongst employee groups.

Speaker: Safina Sethi, Senior Compliance lead at WeWorks

Time: 7:45 AM – 8:35 AM EDT | 12:45 PM – 1:35 PM BST

Register here

Doing the Right Thing to Deliver Results: Lessons from a Values-Based Program

Details coming soon!

Time: 7:45 AM – 8:35 AM EDT | 12:45 PM – 1:35 PM BST

Register here

Complying with the EU’s Forced Labour Import Ban

Andrew Wallis, CEO of Useen UK returns to our virtual stage to share the EU’s proposed ban on products made by forced labour–and the impact it’ll have on your organization

Speaker: Andrew Wallis, CEO of Useen UK

Time: 8:45 AM – 9:35 AM EDT | 1:45 PM – 2:35 PM BST

Register here

AB InBev: Cross-Departmental Collaboration, Weaving Ethics Into the Business, and Mobilizing Allies

You may have heard of AB InBev’s ground-breaking compliance data program, BrewRight. But their compliance innovation goes beyond data to encompass risk management and employee engagement. Join this panel with leaders from across the AB InBev compliance department to learn how they collaborate cross-functionally and keep their program moving in the same direction.

Time: 8:45 AM – 9:35 AM EDT | 1:45 PM – 2:35 PM BST

Register here

CONVERGE Connects: How Do You Build a Speak-Up Culture?

Join your peers in ethics and compliance for an interactive conversation to collaboratively solve shared challenges. Have you succeeded in a program that addresses How Do You Build a Speak-Up Culture? Or maybe you’re still figuring out what works and what doesn’t? We’d love to hear! Join a lively discussion with your peers and leave with pragmatic, actionable ideas for your program– plus a little of the human connection we seek.

Time: 9:35 AM – 10:15 AM EDT | 2:35 PM – 3:15 PM BST

Register here

CONVERGE Connects: How Do You Measure Risk Across 3rd, 4th, and 5th Parties?

Join your peers in ethics and compliance for an interactive conversation to collaboratively solve shared challenges. Have you succeeded in a program that addresses How Do You Measure Risk Across 3rd, 4th, and 5th Parties? Or maybe you’re still figuring out what works and what doesn’t? We’d love to hear! Join a lively discussion with your peers and leave with pragmatic, actionable ideas for your program– plus a little of the human connection we seek.

Time: 9:35 AM – 10:15 AM EDT | 2:35 PM – 3:15 PM BST

Register here

CONVERGE Connects: How Do You Build Meaningful Program Engagement?

Join your peers in ethics and compliance for an interactive conversation to collaboratively solve shared challenges. Have you succeeded in a program that addresses How Do You Build Meaningful Program Engagement? Or maybe you’re still figuring out what works and what doesn’t? We’d love to hear! Join a lively discussion with your peers and leave with pragmatic, actionable ideas for your program– plus a little of the human connection we seek.

Time: 9:35 AM – 10:15 AM EDT | 2:35 PM – 3:15 PM BST

Register here

CONVERGE Connects: How Do You Proactively Secure Disclosures?

Join your peers in ethics and compliance for an interactive conversation to collaboratively solve shared challenges. Have you succeeded in a program that addresses How Do You Proactively Secure Disclosures? Or maybe you’re still figuring out what works and what doesn’t? We’d love to hear! Join a lively discussion with your peers and leave with pragmatic, actionable ideas for your program– plus a little of the human connection we seek.

Time: 9:35 AM – 10:15 AM EDT | 2:35 PM – 3:15 PM BST

Register here

Keynote: The Ethics Movement Continues

In 2022 and beyond, how will technology empower you to shift your focus from manual compliance box-checking to meaningful ethics impact? Join thought leaders and practitioners from Convercent by OneTrust for a glimpse at the future of compliance technology.

Time: 10:25 AM – 10:45 AM EDT | 3:25 PM – 3:45 PM BST

Register here

Keynote: The Power of Our Story: Marketing Your Compliance Program with a Special Guest

This special guest has left an undeniable mark on pop culture and brand marketing. She refuses to show up as anything less than her full, true self—and she demands the same authenticity from the brands she works with. Join this fireside chat to discover how to use the power of storytelling to inspire employee loyalty to your company values and ethics—and learn how that loyalty can empower your company to achieve greater results than ever before.

Special Guest, Asha Palmer

Time: 10:45 AM – 11:15 AM EDT | 3:45 PM – 4:15 PM BST

Register here

Customer Showcase #DeathtothePDF

Join us for a CECO panel featuring Convercent customers who’ve successfully engaged in the digital transformation of their Codes of Conduct, from static PDFs to fully interactive portals.

Time: 11:30 AM – 12:20 PM EDT | 4:30 PM – 5:20 PM BST

Register here

Making Culture Real: Operationalize, Measure, Document

Details coming soon!

Speakers: Michael Volkov | Ashley Page

Time: 12:30 PM – 1:20 PM EDT | 5:30 PM – 6:20 PM BST

Register here

Digital Ethics: AI, Privacy, and More

With the digital transformation well underway, it’s high time to consider the ethics behind practices including AI, machine learning, and consumer data collection. Join Digital Ethicist Chris McClean and Convercent by OneTrust Chief Strategy Officer Philip Winterburn to discuss how companies can embrace new technologies, scale quickly, and continue evolving while maintaining their values.

Speakers: Chris McClean | Philip Winterburn

Time: 12:30 PM – 1:20 PM EDT | 5:30 PM – 6:20 PM BST

Register here

Solving for Retaliation

Fear of retaliation and observed retaliation are at an all-time high according to the Ethics and Compliance Initiative’s latest Global Business Ethics Survey—and regulators are codifying anti-retaliation requirements into law, starting with the EU Whistleblower Protective Directive. Join this session with antiretaliation experts to learn how you can get ahead of those requirements.

Speaker: Greg Keating

Time: 1:30 – 2:20PM EDT | 6:30 – 7:20 PM BST

Register here

Social Activism and E&C: Proactively Protecting Your Brand

Details coming soon!

Time: 1:30 – 2:20PM EDT | 6:30 – 7:20 PM BST

Register here

Regulatory Compliance: DOJ Guidance and the SEC

The Biden administration is approaching a year in office. Join this panel of legal experts and learn how federal regulators are approaching corporate compliance.

Speaker: Karen Woody

Time: 2:30 – 3:20PM EDT | 7:30 – 8:20 PM BST

Register here

Integrity

Details coming soon!

Time: 2:30 – 3:20PM EDT | 7:30 – 8:20 PM BST

Register here

Thursday, October 14: TrustWeek 2021

Opening Keynote: Building the Technology Platform of Trust: OneTrust’s Company Vision and Product Roadmap

The world is changing and consumers now expect organizations to be more trusted, transparent, and ethical. Growing from our privacy and security roots to expanding into data governance, ethics and ESG, OneTrust is focused on helping businesses meet consumer expectations with our platform of trust. In this session, we’ll highlight our path forward while showcasing the latest OneTrust latest tools and technology to help you easily integrate trust throughout your entire organization.

Speakers: Kabir Barday, CEO, OneTrust | Blake Brannon, Chief Strategy Officer, OneTrust | Lisa Campbell, Chief Marketing Officer, OneTrust

Time: 11:00 AM – 12:00 PM EDT | 11:00 AM – 12:00 PM BST | 12:00 PM – 1:00 PM AEDT

Register here

Maturing your Privacy Program with Data Discovery & Automation

Privacy programs have matured from tick-the-box compliance to a focus on data intelligence as privacy continues to be a competitive differentiator for business. Data intelligence takes privacy beyond the manually generated Article 30 report and the siloed PIA to focus more on a deep understanding of personal data through data discovery & classification, automated identification of privacy risk and policy violations, and integrated enforcement of policies like retention, access, and data minimization across the organization. Intelligence-driven insights into data ensures that privacy and security controls are automatically implemented across IT ecosystems, driving the business value of data with privacy and security built-in.

Speaker: Ryan Edge, Privacy Solutions Engineer, OneTrust

Time: 12:00 – 12:45 PM EDT | 12:00 – 12:45 PM BST | 1:00 PM – 1:45 PM AEDT

Register here

How to Pass SOC 2 or ISO 27001 (for Small Teams and InfoSec Newbies)

This session will help you demystify, prepare for and pass your audit, stay secure, and win more deals with automation and continuous compliance.

Speaker: Patrick Murray, CPO, Tugboat Logic

Time: 12:00 – 12:45 PM EDT | 12:00 – 12:45 PM BST | 1:00 PM – 1:45 PM AEDT

Register here

Unifying Trust: How ResMed Built a Cross-Functional Risk Management Solution with OneTrust

Protecting sensitive data requires cross-functional collaboration and diligent action to manage compliance and mitigate risks to our customers – and ResMed’s ultimate end user; millions of patients worldwide. To meet this need, ResMed developed a OneTrust Governance Framework that enables collaboration and optimizes the use of the OneTrust platform and related policies and procedures. Leveraging the OneTrust platform and effective governance, they’ve cultivated a thriving cross-functional risk management solution to avoid collisions, enable the requestor, and enrich other departments.

Join this session to learn what it took to do this!

Key takeaways:

  • Insights into implementing a cross-functional risk management solution that drives results
  • Best practices for training team members on the OneTrust platform to ensure effective use
  • Learn strategies to build a holistic risk and compliance program across business functions

Speaker: Kevin Conolly, Global Privacy Manager, ResMed

Time: 12:00 – 12:45 PM EDT | 12:00 – 12:45 PM BST | 1:00 PM – 1:45 PM AEDT

Register here

Solving Third-Party Risk, Together: Exploring the Exchange Community

Do you trust your vendors? Do your vendors trust you?

By taking a community-based approach, the Third-Party Risk Exchange reduces the burden of conducting and responding to vendor risk assessments for both you and your vendors. And now, with an all-new design, the Exchange is even easier to join and use. So, what’s new and what’s next?

In this session, you’ll see how the Exchange can help you:

  • Search & automatically tier third parties by risk & criticality
  • See out-of-the-box cyber risk scores on all your vendors
  • Offload the entire vendor risk assessment process with access to pre-completed assessments
  • View auto-analyzed risk assessment results across over a dozen risk domains
  • See risks and control gaps in the standard or framework of your choice
  • Manage your own Trust Profile within the Exchange

Speaker: Jaymin Desai, Third-Party Risk Offering Manager, OneTrust

Time: 1:00 – 1:45 PM EDT | 1:00 PM – 1:45 PM BST | 2:00 PM – 2:45 PM AEDT

Register here

Touchpoints to Trustpoints: Honor Privacy Through Preference Management

Only 8% of consumers believe they receive superior experiences from brands, and even worse, three-quarters don’t trust businesses with their personal data. To win consumer trust and succeed in the modern marketing world, businesses must put users in control of their own data and privacy and deliver on promises by using accurate and efficient preference management tactics to drive communications, campaigns and sales cycles. This session will highlight how to create on-brand and user-centric marketing experiences that build trust.

Key Takeaways: ​

  • Empower customers with information about privacy policies and choices for their consent, preferences, and personal data shared
  • Create dynamic and logic-based displays for data elements, custom questions, and questions and options available based on geolocation, user, customer segment, and more
  • Collect first-party data directly from your audience, prospects, and customers to enhance customer profiles and begin to replace other data sources like third-party cookies
  • Discover integration workflows and connections to your full martech stack ensure user choices are honored in all marketing, sales, and communication activities
  • Leverage the most advanced opt-in analytics direct in the OneTrust platform with the newly released PowerBI integration

Speaker: Zachary Faruque, Offering Analyst, OneTrust

Time: 1:00 – 1:45 PM EDT | 1:00 PM – 1:45 PM BST | 2:00 PM – 2:45 PM AEDT

Register here

Trading Internationally: Schrems II, the New EU and UK Data Protection SCCs

As the privacy landscape evolves, compliance now requires that organizations are intentional in their data usage, storage and transfers to ensure that they are acting as responsible data controllers. Enterprises making global data transfers must integrate new contractual terms, update existing legal paperwork, and produce new risk assessments so educating yourself and your team on the new forms of compliance is key to standing up a knowledgeable workforce. So, in order to be compliant, where do you begin? Empower your organization to action global data transfers in multiple forms. Although BCRs remain the gold standard for all things international data movement, SCCs remain a key global safeguard, and the UK and the EU have produced new and improved templates and guidelines to address the above compliance needs, Brexit, and the Schrems II decision.

Join this session to:

  • Understand what data protection regimes apply to your business
  • Run through the types of safeguards and when they’re needed
  • Discuss appropriate use cases for international data transfer contracts
  • Gain insight into obligations surrounding EU and UK personal data
  • Dissect common and emerging trends in international data transfer law

This session is sponsored by Shoosmiths

Time: 1:00 – 1:45 PM EDT | 1:00 PM – 1:45 PM BST | 2:00 PM – 2:45 PM AEDT

Register here

Automating Data Policies: Retention, Classification, Open Access and More

Organizations are increasingly maturing their data retention, classification, and access policies. However, enforcement of these policies is the real challenge with ever-increasing quantities, types, and uses of data. Once you have created and managed your data policies, how can they then be translated into effective enforcement and remediation?

Key Takeaways:

  • How to translate policies into an actionable rule based engine
  • Using Data Discovery to identify policy violations
  • The role Policy enforcement plays in a Data Catalog
  • How to manage policy violations for different areas ranging from retention and ROT data to Data usage
  • Effective methods for Policy Violation Remediation

Speaker: Kelsey Naschek, Lead Solutions Engineer, OneTrust

Time: 1:45 – 2:30 PM EDT | 1:45 PM – 2:30 PM BST | 2:45 PM – 3:30 PM AEDT

Register here

A How to Guide for International Data Transfers

Compliant international data transfers continue to pose challenges, with 2021 seeing multiple updates including the European Data Protection Board’s finalized guidance on supplementary measures following the Schrems II decision. Join this session to hear our panel share their experiences, best practices, and lessons learned around international data transfers. The panel will also look at how organizations can keep their program up to date with the changing transfer landscape.

Key Takeaways:

  • Understand the guidance around international data transfers in light of Schrems II guidance updates published this year
  • Step by step guidance on how data importers and exporters can manage international data transfers

Speakers: Linda Thielová, Head of Privacy CoE, DPO, OneTrust | Tumi Atolagbe, Information Governance and Risk Advisor, British Council | Martin Macke, Global Privacy Director, ManPowerGroup | Yukiko Lorenzo, Senior Managing Counsel, Privacy and Data Protection, Mastercard | Annick O’Brien, Chief Operating Officer & General Counsel, CybSafe

Time: 1:45 – 2:30 PM EDT | 1:45 PM – 2:30 PM BST | 2:45 PM – 3:30 PM AEDT

Register here

Creating a Third-Party Risk Program: How Centrica Integrates OneTrust Vendorpedia, Security Scorecard, and SAP Ariba for TPRM

Each day, companies experience new security, privacy, compliance, and business continuity challenges related to their vendors. With the shift to work from home, digital transformation is rapidly increasing reliance on vendors (mainly cloud providers) making third-party risk management (TPRM) a permanent, board-level concern. In this session, hear from OneTrust customer Centrica, an international energy services and solutions company, as they share how they created a TPRM program by integrating OneTrust, Security Scorecard, and SAP Ariba. Centrica will outline how they built an enhanced TPRM team and modified their vendor assessment process.

Speaker: Matt Ford, Manager, Security Third Party Assurance, Centrica

Time: 1:45 – 2:30 PM EDT | 1:45 PM – 2:30 PM BST | 2:45 PM – 3:30 PM AEDT

Register here

Aligning ITRM, Policy, and Audit within OneTrust to Operationalize Your Risk Initiatives

Strengthen your risk management practices by aligning core competencies across Policy, IT Risk, and Audit to operationalize risk management best practices. This session highlights the latest product enhancements, touch-points, and synergies across the OneTrust platform that help you better execute risk management initiatives and enable stakeholders to truly “own” risk.

Key Takeaways:

  • Establish a risk methodology that best suits your business needs to quantify and communicate risk to the business
  • Create accessible and measurable policies through flexible workflow, policy linking and multi-lingual capabilities
  • Audit and report across elements of risk and your digital business to understand the impact on your organization and opportunities for improvement

Speaker: Nick Pavlichek, Product Manager, OneTrust

Time: 2:45 – 3:30 PM EDT | 2:45 PM – 3:30 PM BST | 3:45 PM – 4:30 PM AEDT

Register here

Raising the Bar: The Latest in Privacy Management

The privacy landscape is constantly evolving and organizations need technology solutions that keep pace and pre-empt their needs. The latest developments in OneTrust technology helps your privacy program become more trusted through agile, centralized workflows. In this session we’ll discuss the latest in OneTrust’s category-defining platform for trust, and how the technology can support evolving use cases.

Speaker: Ryan O’Connor, Solutions Engineer, OneTrust

Time: 2:45 – 3:30 PM EDT | 2:45 PM – 3:30 PM BST | 3:45 PM – 4:30 PM AEDT

Register here

PIPL: Deep Dive Into China’s New Data Protection Framework

With rapidly evolving requirements, it’s important for companies doing business in China to understand the complicated regulatory frameworks coming into effect. Join this session to get an overview of China’s first comprehensive data protection legislation (PIPL). This session panel will compare the key provisions of the GDPR with the PIPL, including in relation to scope, legal bases, data subject rights, and penalties. The session will also focus on the complicated landscape of cross-border transfers and data localisation. Finally, the panel will explore the steps companies can start taking now in preparation for the PIPL entering into effect November 1, 2021.

Speakers: Angela Potter, Lead Privacy Analyst, OneTrust | Barbara Li Head of Corporate, Rui Bai Law Firm and & Ex-Vice Chair of Cybersecurity Sub-Working Group of EU Chamber of Commerce | Igor Máté, Global Data Privacy Manager, Tetra Pak Group

Time: 2:45 – 3:30 PM EDT | 2:45 PM – 3:30 PM BST | 3:45 PM – 4:30 PM AEDT

Register here

Cutting Through the Noise: Streamlined Incident Response

As breaches increase in number and severity, often creating big headlines, organizations need to have an incident response plan that they can rely on. In order to mitigate potential damage to trust, organizations must ensure that their Incident Management programs effectively respond to a broad array of events that impact and disrupt their operations and services. Incident response is a team sport. Given that breaches pose a threat to individuals’ personal data, the incident management processes must incorporate data security and privacy requirements as well as considerations from other functions. Incidents come in all shapes and sizes, and to help build and maintain trust your response process must be flexible and scalable.

Key Takeaways:

  • How to build an incident response program that can keep up with the changing landscape
  • How technology can help mitigate risk and support your incident response

Speaker: Doug Boykin, Global Privacy Engineer, OneTrust

Time: 3:30 – 4:15 PM EDT | 3:30 PM – 4:15 PM BST | 4:30 PM – 5:15 PM AEDT

Register here

Connecting Ethics and Compliance to Data Privacy, GRC, ESG and Risk

Intrigued by OneTrust’s recent acquisition of Convercent? How does Ethics & Compliance relate to the worlds of Privacy, ESG, GRC and Risk? Join us for an introduction into the latest addition to the OneTrust family. Come away with an understanding of how Ethics & Compliance is not just relevant but can accelerate your programs. And see the Convercent platform in action engaging employees to elevate your culture and build trust between your organization’s stakeholders.

Speaker: Asha Palmer, Chief Ethics & Compliance Officer & EVP, Convercent by OneTrust

Time: 3:30 – 4:15 PM EDT | 3:30 PM – 4:15 PM BST | 4:30 PM – 5:15 PM AEDT

Register here

Building Trustworthy Customer Experiences with Adobe and OneTrust

Join this live, fireside chat with discussion between experts at Adobe and OneTrust. In this session, we’ll discuss why building consumer trust is essential for great customer experiences and technology’s critical role in making this a reality.

You can expect to learn more about:

  • How great customer experiences are built on trust
  • Why consumer trust is built on privacy, responsible data usage and data transparency
  • Integrating technology to build a secure privacy, consent & preference management, and experience management infrastructure for the enterprise

This session is sponsored by Adobe

Time: 3:30 – 4:15 PM EDT | 3:30 PM – 4:15 PM BST | 4:30 PM – 5:15 PM AEDT

Register here

Delivering Business Value with OneTrust ESG

While more than 80% of medium and large companies report on sustainability and ESG (Environmental, Social, and Governance) today, it’s often limited in scope and reliant on manual processes. As ESG reporting evolves, organizations will need to solidify their strategy, approach, and tools used to manage the full ESG lifecycle and get to carbon zero. In this session, we’ll cover how OneTrust can support successful, enterprise-level ESG programs through carbon footprint calculation, ESG planning and reporting, supplier management, and more.

Speakers: Phil Redman, Offering Manager, OneTrust | Tim Wilson, Customer Success Manager, OneTrust

Time: 4:15 – 5:00 PM EDT | 4:15 PM – 5:00 PM BST | 5:15 PM – 6:00 PM AEDT

Register here

#Hacked: What We’ve Learned from The Year’s Biggest Breaches

What does it look like to be #Hacked in 2021? Stay up to date on all things security as we look into the implications of this year’s biggest breaches. From incidents in the oil and gas industry to successful ransomware defense in the IT consulting and services industry, we’re breaking down what you need to know about breaches as the security landscape continues to evolve. Join us for this session we walk through the implications of ransomware, effective risk mitigation, increased regulation resulting from cybercrime, emerging trends from hackers, and more.

  • Get actionable insight from effective risk mitigation techniques used in successful attack defenses
  • Understand the evolution of hackers and trends they’re following as they target organizations
  • Hear security professionals outline the implications of different types of attacks and learn how to be proactive in preventing them
  • Gain insight into regulatory action being taken against cybercrime

Time: 4:15 – 5:00 PM EDT | 4:15 PM – 5:00 PM BST | 5:15 PM – 6:00 PM AEDT

Register here

How Automated, Intelligent Redaction Makes Protecting Sensitive Information Easier

With an increased focus on privacy protection, especially of individual and consumer rights, life sciences and government records, as well as in the context of litigation discovery and M&A, the need for redaction continues to grow. Redaction can be a very manual and tedious process, but it doesn’t have to be. Join this session to get a greater understanding of when and why redaction is needed, and how implementing automated redaction capabilities can greatly improve and modernize privacy or other processes.

Key takeaways:

  • Understand why redaction is critical for privacy
  • Learn when to use redaction and how
  • Key use cases where redaction is needed most

Speaker: Rama Veeraragoo, Offering Manager, OneTrust

Time: 4:15 – 5:00 PM EDT | 4:15 PM – 5:00 PM BST | 5:15 PM – 6:00 PM AEDT

Register here

Friday, October 15: TrustWeek 2021

The Emergence of the Chief Trust Officer

The role of Chief Trust Officer has come about thanks to greater focus on accountability and ultimately trust. The role might be relatively new, but as more organizations focus on building trust, Chief Trust Officers and their teams play a vital role in a successful organization, as the measure for success has widened from profit and loss to incorporate an organization’s values and ethical behavior. Trust is the most valuable business asset, and as OneTrust continues to lead the market in trust technology, the Chief Trust Officer leads the way in ensuring the full suite of OneTrust technology is utilized to build trust with our customers. We’re not just talking the talk – we’re walking the walk.

Key Takeaways:

  • Understand how and why our Chief Trust Officer helps us better support our customers
  • Gain insight into how a Chief Trust Officer works with other C-suite executives
  • Steps you can take to implement the Chief Trust Officer model in your organization

Speakers: Andrew Clearwater, Chief Trust Officer, OneTrust | Lisa Campbell, Chief Marketing Officer, OneTrust

Time: 11:00 AM – 12:00 PM EDT | 11:00 AM – 12:00 PM BST | 12:00 PM – 1:00 PM AEDT

Register here

Third-Party Due Diligence: Automate Initial Screening and Ongoing Compliance Monitoring

Whether it’s vendors, suppliers, partners, or persons, the third parties you work with often come with significant compliance implications. Are your vendors on a sanctions list? Is a politically exposed person (PEP) involved? Has the supplier been flagged for human rights violations? These and other ethics, compliance, and ESG concerns are best identified upfront, prior to engaging a vendor or conducting an in-depth risk assessment. Further, these compliance concerns must be monitored for changes over time.

In this session, we’ll show how you can:

  • Automate due diligence and initial screening on all your third parties
  • Make sense of lengthy compliance reports by highlighting only what matters most
  • Take necessary action automatically when ethics and compliance issues are flagged
  • Maintain a third-party inventory with detailed due diligence attributes

Time: 12:00 PM – 12:45 PM EDT | 12:00 PM – 12:45 PM BST | 1:00 PM – 1:45 PM AEDT

Register here

Regulation Roundup: Planning Your Privacy Strategy After a Whirlwind Year of Regulations

CPRA, CDPA, CPA, PIPL, new SCCs, TIAs are just a few of the major developments from the past 12 months. In one form or another these developments will have impacted every organization’s privacy program, leaving many having to restructure their policies and strategies to account for new provisions and processes. So, after a whirlwind year of regulatory developments, what has happened? what do we need to know? And how should you adjust your privacy strategy to account for this influx of new requirements? In this session we will hear from privacy professionals from across the world to discuss the latest developments in their region and the key compliance areas that should be top of mind when revisiting your privacy program.

Key Takeaways:

  • A roundup of the most poignant regulatory developments
  • Region-specific discussion relating to key compliance areas
  • Tips for incorporating new regulations into you privacy strategy

Speakers: Alexis Katefides, Lead Centers of Excellence Counsel, OneTrust | Marcelo Crespo, Partner, Peck Advogados | Alexandra Ross, Senior Director, Senior Data Protection, Use & Ethics Counsel, Autodesk | Sebastien Lacroix, Regional Privacy Officer, APAC, Royal Bank of Canada | Olivia Shirville, Lead Privacy Counsel (EMEA), AON

Time: 12:00 PM – 12:45 PM EDT | 12:00 PM – 12:45 PM BST | 1:00 PM – 1:45 PM AEDT

Register here

Lessons Learned from a Serial OneTrust Implementer

How well have you implemented OneTrust modules? Have you configured the environment to capture the necessary information? Are you able to meaningfully extract the correct information for reporting?

In this session, Protiviti subject matter experts will share best practices, lessons learned, and one “if I told you, you wouldn’t believe me” story – stemming from numerous engagements supporting global organizations with OneTrust module implementation. From design and configuration of the platform to reporting and building custom APIs, the team will explore the OneTrust experience from end-to-end.

Following this session, you will be able to:

  • Articulate the foundational activities required for a successful set-up
  • Avoid common missteps in configuration
  • Communicate real-time analytics to executive leadership to help inform compliance business decisions

This session is sponsored by Protiviti

Time: 12:00 PM – 12:45 PM EDT | 12:00 PM – 12:45 PM BST | 1:00 PM – 1:45 PM AEDT

Register here

Ethics & Compliance Insights: Meaningful Data Analysis and Reporting

If data is the gateway to more complete ethics and compliance risk visibility and an operationalized compliance program, then meaningful analysis is the key to unlocking that gate. Knowing how to meaningfully analyze compliance data and forming it into a story that your Board of Directors will find compelling is an ongoing struggle for many compliance teams. Join this session and learn to use insights for root cause analysis, real-time data analysis, and impactful board reporting.

Speaker: Asha Palmer, Chief Ethics & Compliance Officer & EVP, Converge, Convercent by OneTrust

Time: 1:00 PM – 1:45 PM EDT | 1:00 PM – 1:45 PM BST | 2:00 PM – 2:45 PM AEDT

Register here

How Franklin Templeton Automates Privacy Compliance with the help of OneTrust

In an ideal world, privacy compliance seamlessly integrates into design, workflows, and operational best practices. As many privacy professionals know, compliance is not that easy. Building an effective privacy program takes time, resources, and collaboration across multiple teams. In this session, learn how Franklin Templeton worked with OneTrust’s Technical Account Management (TAM) team to automate their privacy program while streamlining compliance. Using OneTrust technology, the privacy professionals at Franklin Templeton simplify a variety of day-to-day tasks from answering DSAR requests, incorporating privacy by design at the start of a project, mitigating risk, and managing vendors. Join Eric Bedell, Chief Privacy Officer of Franklin Templeton, and OneTrust’s Frederick Hanson, Technical Account Manager, to discuss how automation has simplified privacy compliance across their organization.

Key Takeaways:

  • Learn how to build trust with your data subjects by automating your DSAR workflows to respond to requests quickly and effectively
  • Mitigate risk and incorporate privacy from the beginning with automated PIA/DPIA templates and gap analysis
  • Ensure privacy across your vendor network through scheduled automated risk assessments

Speakers: Eric Bedell, Chief Privacy Officer, Franklin Templeton | Frederick Hanson, OneTrust Lead TAM

Time: 1:45 PM – 2:30 PM EDT | 1:45 PM – 2:30 PM BST | 2:45 PM – 3:30 PM AEDT

Register here

Who Owns ESG? Building ESG as a Reflex In Your Organization

ESG continues to move up the agenda for business leaders, investors, and consumers alike, but who should be taking the lead on ESG within an organization? In this session our panel will share their experience in growing ESG initiatives at various points of maturity, sharing best practices for engagement and becoming an integral part of business processes.

Key Takeaways:

  • An understanding of where ESG responsibility sits within an organization
  • How to build ESG engagement across all business areas
  • Tips on how to mature your organisation’s ESG program

Speakers: Pam Fitzpatrick, Head of ESG Center of Excellence, OneTrust | Kate Stark, Senior Manager, Risk and Compliance, Epiq | Alexandra Albro, General Counsel, Eset

Time: 1:45 PM – 2:30 PM EDT | 1:45 PM – 2:30 PM BST | 2:45 – 3:30 PM AEDT

Register here

Applying OneTrust to Key Learnings From the CA AG’s Examples of CCPA Non-Compliance

Since it was enacted just over a year ago, companies are now having to deal with the uncertainties surrounding the interpretation of the California Consumer Privacy Act (CCPA) and the circumstances that might subject them to penalties and fines for violations. In an effort to inform the marketplace and minimize those uncertainties, the office of the California attorney general recently published 27 examples that demonstrate what CCPA non-compliance looks like and highlights actions that can be taken to remedy each situation. Ankura’s David Manek and Colleen Yushchak will be joined by Alan Friel from the law firm of Squire Patton Boggs for an in-depth look at the AG’s various scenarios and provide an analysis of their review. In addition to sharing insights on how the OneTrust technology can be applied to the scenarios, David, Colleen and Alan will provide several essential tools, including a checklist of CCPA enforcement issues you can use as part of your year-end assessment and best practices for planning your 2023 CPRA/CDPA/CPA workstreams.

This session is sponsored by Ankura

Time: 1:45 PM – 2:30 PM EDT | 1:45 PM – 2:30 PM BST | 2:45 PM – 3:30 PM AEDT

Register here

The SIG: Setting the Standard and Establishing Efficiency in Third Party Risk Programs

The Standardized Information Gathering Questionnaire (SIG) is a questionnaire tool and content library developed with input from Shared Assessments’ member experts that span industry and role in the vendor risk management ecosystem. The SIG is updated to map to current risk landscape and global regulatory changes. The SIG is the standard driving excellence in risk management:

  • Used across industries (15+ years)
  • Used by over 15,000 organizations worldwide
  • Used by 36+ GRC and TPR Software platforms including OneTrust Vendorpedia
  • Created by risk practitioners for risk practitioners

Speaker: Colleen Milazzo, Senior Vice President, TPR Software Products, Shared Assessments

Time: 2:45 PM – 3:30 PM EDT | 2:45 PM – 3:30 PM BST | 3:45 PM BST – 4:30 PM AEDT

Register here

A/B Testing & Cross-Device Consent: Optimizing Your CMP For the Best User Experience

Increasing consumer expectations, technology shifts, and regulatory updates are influencing the strategies businesses must adopt to capture consent and maximize opt-in rates. Companies are now faced with the question of how to personalize user experiences while maintaining privacy compliance. Forward-looking companies focus on delivering compliant, dynamic consumer journeys across domains and devices that help build trust and maintain revenue and personalization as third-party cookies go away. Join this session to learn how to optimize consent rates through a variety of functions.

Key Takeaways:

  • Leverage A/B testing to experiment and easily test template designs, layouts, text, colors, and more
  • View detailed dashboards, analytics, and reports to understand variant performance and inform CMP configuration
  • Deliver specific templates to visitors based on logic and specific attributes
  • Decrease consent fatigue by reducing the number of times you ask for user consent
  • Synchronize consent of known users across devices and integrate with industry-wide ID solutions

Speaker: Stephanie Hanson, Offering Manager, OneTrust

Time: 2:45 PM – 3:30 PM EDT | 2:45 PM – 3:30 PM BST | 3:45 PM BST – 4:30 PM AEDT

Register here

Next steps on TrustWeek 2021:

Follow OneTrust on LinkedInTwitter, or YouTube for the latest on #TrustWeek 2021.