Ginevra Cerrina Feroni

Vice President , Italian Data Protection Authority (Garante per la Protezione dei Dati Personali)

Ginevra Cerrina Feroni is the Vice President of the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali). She is Full Professor of European and Comparative Constitutional Law at the University of Florence.

Prof. Cerrina Feroni is also a lawyer, member of the scientific board of several academic journals in the area of comparative public law, and a serial columnist of several national newspapers. She has been often nominated to hold posts in governative and parliamentary committees and working groups for constitutional and administrative matters.

Philippe Dufresne

Privacy Commissioner of Canada, Office of the Privacy Commissioner of Canada

Philippe Dufresne was appointed Privacy Commissioner of Canada on June 27, 2022. A leading legal expert on human rights, administrative and constitutional law, he previously served as the Law Clerk and Parliamentary Counsel of the House of Commons. In this capacity, he was the chief legal officer of the House of Commons and led the office responsible for the provision of legal and legislative drafting services to the House of Commons, its Speaker, Members and committees, the Board of Internal Economy and the House Administration.

Prior to his appointment as Law Clerk of the House of Commons in 2015, he was the Canadian Human Rights Commission’s Senior General Counsel, responsible for legal services, litigation, investigations, mediations, employment equity and Access to Information and Privacy. During that time, he successfully represented the Commission before all levels of Canadian Courts, including the Supreme Court of Canada, in a number of key human rights and constitutional cases over the last two decades. He has appeared before the Supreme Court on 15 occasions, on issues ranging from accessibility and equal pay for work of equal value, to the balancing of human rights and national security. As lead counsel for the Commission in the landmark parliamentary privilege case of House of Commons v. Vaid, he helped reinforce and clarify some of the country’s fundamental constitutional principles as they apply to the House of Commons and Parliament.

A member of the Bars of Quebec, Ontario, and Massachusetts, he has served his profession and community in several different capacities, including as president of the constitutional and human rights law section of the Canadian Bar Association (Quebec Branch) and as a member of the editorial board for the Canadian Corporate Counsel Association’s CCCA Magazine. In 2014, he served as president of the International Commission of Jurists, an organization devoted to the protection of the rule of law and judicial independence in Canada and internationally.

John Edwards

Information Commissioner, UK Information Commissioner's Office

Began his term as UK Information Commissioner on 3 January 2022. Edwards was previously New Zealand’s Privacy Commissioner and will bring with him a wealth of data regulatory experience – as Privacy Commissioner but also from 20 years – practicing law and specialising in information law.

Shuhei Ohshima

Commissioner, Personal Information Protection Commission of Japan

Mr. OHSHIMA Shuhei was appointed as Commissioner of the Personal Information Protection Commission of Japan in 2019. Prior to being appointed as Commissioner, he served as Commissioner for International Cooperation of the Personal Information Protection Commission of Japan from 2017 to 2019. He participated in many meetings and international forums and contributed to the Japan-EU mutual adequacy arrangement by building relationships with Data Protection Agencies of 31 EEA countries.

He holds B.A. in Economics from Keio University. In 1978, he started his career in Idemitsu Kosan Co., Ltd. From 2002 to 2005, he worked as Managing Director, Idemitsu International (Asia) Pte. Ltd. in Singapore. In 2010, he was appointed as Managing Director, Idemitsu Tanker Co., Ltd. After that, he served as President of Idemitsu Tanker Co., Ltd. from 2013 to 2015.

Jules Polonetsky

Chief Executive Officer, FPF

Jules serves as CEO of the Future of Privacy Forum, a Washington, D.C.-based non-profit organization that serves as a catalyst for privacy leadership and scholarship, advancing principled data practices in support of emerging technologies. FPF is supported by the chief privacy officers of more than 200 leading companies, several foundations, as well as by an advisory board composed of the country’s leading academics and advocates. FPF’s current projects focus on AI and Ethics, Connected Cars, Health, Research Data, Smart Communities, Ad Tech, Youth, Ed Tech, Privacy Legislation and Enforcement, and Global Data Flows.

Jules also serves as Chairman of the International Digital Accountability Council and as Co-Chairman of the Israel Tech Policy Institute.  Jules is co-editor of The Cambridge Handbook of Consumer Privacy, published by Cambridge University Press (2018). More of his writing and research can be found at the www.fpf.org and on Google Scholar and SSRN.

Jules’s previous roles have included serving as Chief Privacy Officer at AOL and at DoubleClick, as Consumer Affairs Commissioner for New York City, as an elected New York State Legislator and as a congressional staffer, and as an attorney.

Jules has served on the boards of a number of privacy and consumer protection organizations including TRUSTe, the International Association of Privacy Professionals, and the Network Advertising Initiative. From 2011-2012, Jules served on the Department of Homeland Security Data Privacy and Integrity Advisory Committee. Jules is a member of The George Washington University Law School Privacy and Security Advisory Council. He also currently sits on the Advisory Boards of Open DP | Harvard University Privacy Tools Project and the California Privacy Lab (University of California).

Rebecca Kelly Slaughter

Commissioner, U.S. Federal Trade Commission

Rebecca Kelly Slaughter was sworn in as a Federal Trade Commissioner on May 2, 2018.Commissioner Slaughter brings to the Commission extensive experience in competition, privacy, and consumer protection. She builds consensus for a progressive vision, and staunchly advocates for our nation’s consumers and workers. Commissioner Slaughter believes that the FTC’s dual missions of promoting competition and protecting consumers are interconnected and complementary, and she is mindful that enforcement or rulemaking in one arena can have far-reaching implications for the other.

A proponent of greater resources, transparency, and comprehensive use of the FTC’s authorities, Commissioner Slaughter is outspoken about the growing threats to competition and the broad abuse of consumers’ data. Targeted merger retrospectives, corrective enforcement, and expansion of the Commission’s rulemaking authorities are among the approaches that she has championed during her time at the FTC. Along with advocating for consumers, particularly those traditionally underrepresented and marginalized, Commissioner Slaughter strongly supports working families and work-life balance.

Before joining the FTC, Ms. Slaughter served as Chief Counsel to Senator Charles Schumer of New York, the Democratic Leader. She was an associate in the D.C. office of Sidley Austin LLP before entering federal service.

Takeshige Sugimoto

Senior Fellow, Global, FPF

Takeshige (“Take”) Sugimoto is the Managing Director and Partner of S&K Brussels LPC, a Japanese boutique law firm specializing in data protection, privacy laws, and AI regulations in the US, EU, UK, China, and Japan. He is qualified to practice law in Japan and New York State and is a member of the Brussels Bar Association (B-List). He is a Senior Fellow with the Future of Privacy Forum, and also serves as the Director of the Japan DPO Association, which he co-founded.

Take’s data protection practice includes the establishment and review of clients’ global data protection compliance systems; representation and defense in disputes involving global data protection law issues, including but not limited to negotiations with European, UK, US, Chinese and Japanese data protection supervisory authorities. As a Japanese lawyer, he regularly advises various clients on Japan’s Act on the Protection of Personal Information (APPI), taking into account his paralleled ongoing practical experiences with the EU General Data Protection Regulation (GDPR), UK GDPR, US California Consumer Privacy Act (CCPA) / Consumer Privacy Rights Act (CPRA), and China’s Personal Information Protection Law (PIPL).

As a former Brussels resident between 2013 and 2020, he has practiced European data protection laws, i.e., both EU member states’ data protection laws under the EU Data Protection Directive of 1995 and EU GDPR as a member of major law firms’ Brussels Offices. He has successfully represented numerous clients over the years in obtaining European data protection supervisory authorities’ approvals of EU Binding Corporate Rules (BCRs) for Controllers and Processors under the EU GDPR, following each of the European Data Protection Board (EDPB)’s opinions on the respective authorities’ draft approval decisions for those BCRs. Furthermore, he represents clients in their applications for approval of UK BCRs under the UK GDPR to the UK Information Commissioner’s Office (ICO). He has also assisted clients in preparing for UK’s International Data Transfer Agreement, a new data transfer mechanism.

Since the adoption of the US CCPA in 2018, followed by the CCPA Regulation issued by the California Attorney General, Take has advised several major companies on their CCPA compliance projects. He has also assisted clients in updating their CCPA compliance mechanism in line with the CPRA. In addition, he has been closely following legislative activities of US federal privacy bills, including COPRA (Consumer Online Privacy Rights Act), SAFE Data Act, ADPPA (American Data Protection and Privacy Act) in the US Congress, as well as US Federal Trade Commission (FTC)’s rulemaking efforts on privacy and data security.

Take has assisted a number of clients in complying with China’s data-related laws, including the PIPL, Data Security Law, and Cybersecurity Law. His ongoing work includes helping clients carry out personal information protection impact assessment under the PIPL, preparing PIPL-compliant consent forms, personal information entrustment addendums, data transfer agreements (SCCs), guidance on data protection management systems, internal security rules, privacy policies, data subject rights request manuals, personal information breach response manuals, and handling large data mapping projects in bilingual languages in collaboration with major Chinese law firms.

Outside of direct dealings with clients, Take has also been invited as a speaker at various data protection-related events organized by data protection supervisory authorities. In October 2021, he was invited to speak at the “Global Privacy Assembly 2021 Mexico,” in which he participated as a panelist in “Panel IV: The Challenge of Compliance: The Perspective of Data Protection Officers.”

Take received an LL.B. degree from Keio University, Faculty of Law in 2004; an LL.M. degree from the University of Chicago Law School in 2012; and an MJur degree from the University of Oxford, Faculty of Law (Pembroke College) in 2013.

Wojciech Wiewiorowski

European Data Protection Supervisor, EDPS

Before his appointment, he served as Assistant European Data Protection Supervisor from 2014 to 2019 and as Inspector General for the Protection of Personal Data at the Polish Data Protection Authority, a position which he had held since 2010. He was also Vice Chair of the Working Party Article 29 Group.

Dr. Gabriela Zanfir-Fortuna

Vice President for Global Privacy, FPF

Dr. Gabriela Zanfir-Fortuna is the Vice President for Global Privacy at the Future of Privacy Forum, where she leads the work on Global privacy developments and counsels on EU data protection law and policy, working with all FPF’s offices and partners around the world. She created and curates FPF’s Global Privacy blog series.

Gabriela currently serves as a member of the Reference Panel of the Global Privacy Assembly, and she is also a member of the Executive Committee of the ACM FAccT (Fairness, Accountability and Transparency) Conference, since 2021. She is a member of the European Digital Media Observatory (EDMO) Working Group on Access to Platform Data, working on the creation of a Code of Conduct on access to platform data under Art. 40 of the GDPR.

As a data protection and privacy law expert, Gabriela recently testified for the FTC on data portability and for the European Parliament’s LIBE Committee on the EU’s proposed Data Governance Act.

Prior to moving to the US in 2016, she worked for the European Data Protection Supervisor in Brussels, being part of the team that advised the EU legislator on the GDPR during its legislative process. She dealt with both enforcement and policy matters, was a member of the EDPS litigation team appearing before the Court of Justice of the EU, as well as actively participated in the work of the Article 29 Working Party. She worked on the assessments of both the draft EU-US Privacy Shield and the draft EU-US Umbrella Agreement during her time at the EDPS and the Article 29 Working Party.

She previously served as a Program Chair (Law) for the ACM FAccT 2020 and as a member of the Program Advisory Committee for the ICDPPC 2019 Conference in Tirana. She was also a member of the Program Committee of PLSC Europe, CPDP – academic track, ACM – AIES 2020, and the ENISA Annual Privacy Forum. She served as a Project Scientist supporting the IoT Privacy Infrastructure Project within the Institute for Software Research of Carnegie Mellon University (2019 – 2020).

Gabriela holds a PhD in law (2013, University of Craiova) with a thesis on the rights of the data subject from the perspective of their adjudication in civil law and an LLM in Human Rights (2010), after obtaining her law degree at the same university (2009). She is also an associated researcher with the Law, Science, Technology and Society Center at Vrije Universiteit Brussel.

Gabriela is a contributor-author to ‘The EU General Data Protection Regulation – A Commentary‘, edited by C. Kuner, C. Docksey and L.A. Bygrave, Oxford University Press, 2020 (on Articles 13, 14, 15, 21 and 82). She is also the author of the volume ‘Protecția Datelor Personale. Drepturile Persoanei Vizate‘, C.H. Beck, Bucharest, 2015.

Judge Bertrand du Marias

Commissioner , Commission Nationale de l'Informatique et des Libertés (CNIL)

Born on 25 April 1964 in Lyon, Judge Bertrand du MARAIS is a graduate of ESSEC Graduate School of Management and an alumnus of the National Administration School (“Ecole Nationale d’Administration”, “Liberté Egalité Fraternité 1989” graduating class).

Having joined the French Council of State (“Conseil d’Etat”) in 1989, he is State Counselor (“Conseiller d’Etat”) since 2006. In the Advisory branch of Conseil d’Etat, he is currently a member of the Environment and Network Industry Section (Section des Travaux Publics) and deals more specifically with environmental transition, Public Procurement and Energy and Transport.

He has joined CNIL, the French Data Protection Agency, in February 2019 and is more specifically in charge of International Affairs, e-Privacy and Competition Co-regulation. He is a member of the CNIL sanction board.

In parallel to his career as a judge at the French Council of State or as a Senior Civil Servant within French and international administrations, he is the author of articles and books relating to public utility law, market regulation law as well as information and communication technologies, and more generally on interactions between Law and Economics. His textbook “Public Law of economic regulation” (Paris, Presses de Sciences-Poet Dalloz, 2004) has been awarded the Charles Dupin Prize by the French Academy of Social and Political Sciences (Académie des sciences morales et politiques). He chairs the Think Tank FIDES (Forum on the Interaction between Law, Economics and Society www.fides.institute).