18 Years of Industry Experience

GRC, Data Privacy & Cyber Security Conference

LONDON, UK

27 MARCH 2025

08:00 AM – 05.30 PM Approx. Local Time

In-Person Participation

Virtual Participation

Queen Elizabeth II Centre,

Broad Sanctuary, Westminster, London, SW1P 3EE

Buy Delegate Pass

Sponsor the Event

KEY THEMES

Governance. Risk. Compliance. Data Privacy. Cybersecurity. Risk Management. ESG. Crisis Management. Cloud Security. Compliance & Ethics. AI & Machine Learning. Legal & Regulatory Affairs. Information Security. Third-Party Risk Management. Incident Response. Digital Transformation. Supply Chain Security. Data Governance. Threat Intelligence. Business Continuity. Fraud Prevention. Regulatory Technology (RegTech). Cyber Resilience. Privacy-by-Design. Identity & Access Management. Zero Trust Security. Cross-Border Data Transfers. Cybercrime & Fraud. AI & Automation in Compliance. Insider Threats. Digital Trust & Ethics.

Who Attends?

The GRC, Data Privacy, and Cybersecurity Conference gathers 100-150 senior-level professionals responsible for governance, risk, compliance, data protection, and cybersecurity within their organizations. The event also welcomes law firm partners and technology service providers offering cutting-edge legal and cybersecurity solutions.

Senior Leadership & Executives

Chief Legal Officer (CLO)
Chief Compliance Officer (CCO)
Chief Risk Officer (CRO)
Chief Privacy Officer (CPO)
Chief Information Security Officer (CISO)
Chief Data Officer (CDO)

Legal, Compliance & Risk Professionals

General Counsel
Head of Legal & Compliance
Risk & Compliance Director
Privacy Counsel / Data Protection Officer (DPO)
Regulatory Affairs Director
Corporate Governance Manager

Cybersecurity & IT Professionals

VP / Director of Cybersecurity
Information Security Manager
Data Protection Specialist
Cyber Risk Manager
IT Governance Manager

Technology & Solution Providers

GRC & Compliance Technology Providers
Cybersecurity & Risk Management Solution Providers
Data Privacy Technology Providers
AI & Machine Learning Experts in Legal Tech
Cloud Security & Identity Management Providers
RegTech & LegalTech Innovators

CONFERENCE HIGHLIGHTS

Global GRC, Data Privacy & Cyber Security ConfEx

A premier platform for GRC, compliance, legal, cybersecurity, and data privacy professionals, delivering expert insights, strategic networking, and cutting-edge innovations.

Key Highlights:

Expert-Led Learning & Insights

Keynotes & Panels
Case Studies & Workshops
Regulatory & Industry Reports

High-Value Networking & Collaboration

Roundtables & Peer Discussions
VIP Lounge & C-Level Meetups
Speed Networking & 1:1 Meetings

Access to Advanced GRC, Privacy & Cybersecurity Solutions

Tech Showcases & Demos
Innovation Pavilion
Meet-the-Experts

Professional Development & Accreditation

CLE/CPD Accreditation
Digital Certificate of Participation
Post-Event Learning

Join us in person or virtually for this transformative experience!

Buy Delegate Pass

Sponsor the Event

ABOUT THE SPEAKERS

Events 4 Sure & GeneralCounsel360 present a distinguished lineup of GRC, Privacy & Security leaders from global corporations. Speakers will share expert insights, strategies, and guidance on key agenda topics.

KEY SPEAKERS

Federico Rossi

Director, Privacy Counsel,

IHG Hotels & Resorts

Gary Brown

Chief Privacy Officer,

Westinghouse Electric Company

Giulia Carnà

Global Senior Privacy Lawyer,

ACI Worldwide

Sarah Pearce

Partner,

Huntons Andrews Kurth

Clarissa Coleman

Partner,
DAC Beachcroft LLP

Mark Keddie

Chief Privacy Officer,

SITA

Malcolm Dowden

Data Protection, Privacy and Technology Lawyer,

Pinsent Masons

Richard Milchior

Partner,

Herald

France

Norman Heckh

Partner,

Ramón y Cajal Abogados,

Spain

Kedar Deshpande

Group Privacy Officer,

Coda,

Germany

Francisco D'Souza

Senior Regional Legal Counsel, Allianz Technology,

Mark Anderson

Product Owner,

Insightful Technology

Nick Rich

Director Sale

Exterro

UK&I and Nordics & Benelux

Jim Ashton

Global Head of Data Privacy, Servify,

Spain

Eleonor Duhs

Barrister, Partner, Head of Data & Privacy,

Bates Wells LLP

Albert Agustinoy

Partner,

Cuatrecasas

Spain

Joy Van Cooten

Associate General Counsel - EMEA & APAC,

ACI Worldwide Limited

Victoria Hordern

Privacy, Data and AI Partner,

Taylor Wessing

Henry Davies

Data Protection Officer,

Birdie

Pastore Daria

Partner,

Legance,

Italy

Martina Macpherson

Head of ESG Product Strategy,

SIX Group,

Sarah Tedstone

Partner,

Fieldfisher,

Sofoklis Karapidakis

Compliance Director and DPO, Metlen Energy & Metals

Greece

Frank Vukovits

Chief Security Scientist,

Delinea

Judith Alton

Director of Risk and Compliance, EMEA,

Morgan, Lewis & Bockius UK LLP

Angeliki Tiligadi

Head of Privacy and AI Governance Officer,

Qover

Belgium

Zeslene Mao

Counsel

WilmerHale

Peter Given

Partner,

DAC Beachcroft

Dr. Nathalie Moreno

Partner, Data Protection, Cybersecurity & AI,

Kennedys

Audrey Stone

Group Data Counsel,

Zurich Cover-More,

Patrick Rappo

Partner,

Reed Smith LLP,

Karl Obayi

Corporate Counsel - eDiscovery, Forensics & Cybersecurity,

RioTinto,

Matthew Ginn

Data Protection Officer,

London Borough of Lambeth

Nicola Lishak

Director of Privacy and DPO,

Royal Mail

Rosehana Amin

Partner,

Clyde & Co

William Long

Partner,

Sidley Austin LLP

Jason Weissbein

General Counsel / CISO,

GNX

Netherlands

Bahzad Brifkani

Head of Data Protection (DPO), Notting Hill Genesis

Nafisa Feeney

Head of Legal/CCO/MLRO,

Paynt

Beatriz Ruiz-Beato

Head of Global Data Privacy,

NEC Corporation,

Spain

Jonathan McDonald

Partner,

Osborne Clarke,

Joanna Willems

Data Protection and Privacy - Of Counsel,

CMS UK,

Buy Delegate Pass

Sponsor the Event

AGENDA PROGRAM

(One on One Introductions & Meetings Format)

(08:00 AM – 05.30 PM Approx. Local Time)

Find Your Time

08:00 AM – Onwards | Conference Registration & Networking Refreshments

Kickstart the event with registration, accompanied by tea, coffee, and networking with speakers, sponsors, and fellow delegates

08:30 AM – 09:30 AM | Introductions & Peer-to-Peer Meetings

Key Focus Areas:

✅ Regulatory Compliance & AI Governance – EU AI Act, DORA, UK GDPR, NIS2
✅ Cyber Resilience & Threat Mitigation – Zero-trust security, threat intelligence, incident response
✅ Third-Party & Supply Chain Risk – Vendor risk automation, SaaS & cloud security, continuous monitoring
✅ Data Privacy & Cross-Border Compliance – GDPR, AI governance, Schrems II, data sovereignty
✅ GRC & Risk Workflow Automation – Real-time risk visibility, predictive analytics, compliance automation

Join insightful discussions, exchange ideas, and discover solutions to your most pressing challenges!

09:30 AM – 10:10 AM | Collaborative Round Table Discussions

Leadership Transformation: Insights Shared by Veteran GRC, Data Privacy & Cyber Security Leaders

Tracing the dynamic path of leadership evolution over time
Insights from veteran executives in GRC, data privacy, and cybersecurit
Adapting leadership styles to navigate legal and security complexity
Strategies for sustainable success and innovative leadership
Real-world case studies illustrating effective leadership practices

Speakers:
Eleonor Duhs, Barrister, Partner, Head of Data & Privacy, Bates Wells LLP, UK
Mark Keddie, Chief Privacy Officer, SITA, UK

Nicola Lishak, Director of Privacy and DPO, Royal Mail, UK

Jim Ashton, Global Head of Data Privacy, Servify, Spain

Kedar Deshpande, Group Privacy Officer, Coda, Germany

10:10 AM – 10:50 AM | Collaborative Round Table Discussions

From GDPR to Post-Brexit Regulations: Adapting Compliance Strategies to Evolving Legal Landscapes

Key differences between GDPR and post-Brexit UK data privacy regulations
Challenges in harmonizing global compliance strategies with local regulations
Impact of the EU AI Act, Digital Services Act (DSA), and Data Governance Act
The role of automation in tracking and managing regulatory changes
Compliance strategies for DORA and NIS2 Directive in financial institutions

Speakers:

Mark Anderson, Product Owner, Insightful Technology, UK

Henry Davies, Data Protection Officer, Birdie, UK

Peter Given, Partner, DAC Beachcroft, UK

Jonathan McDonald, Partner, Osborne Clarke, UK

Joanna Willems, Data Protection and Privacy - Of Counsel, CMS UK, UK

10:50 AM – 11:10 AM | Product Demonstration

Streamline Your Workflow with Automated Data Mapping

Speaker: Nick Rich, Director Sale, Exterro, UK&I and Nordics & Benelux

Sponsored By:

11:20 AM – 11:40 AM | Refreshments & Peer-to-Peer Meetings

Enjoy a tea break while networking and engaging in peer-to-peer discussions

11:40 AM – 12:20 PM | Collaborative Round Table Discussions

AI, Big Data, and Privacy: Navigating Ethical and Regulatory Challenges

Regulatory compliance for AI-based data processing under GDPR
Ethical challenges in AI-driven decision-making and predictive analytics
Transparency and accountability in AI model governance
Addressing data bias and fairness in AI algorithms
The intersection of AI and cybersecurity: Ensuring data integrity and privacy
Ensuring compliance with EU SCCs, UK-US Data Bridge, and Data Transfer Impact Assessments

Speakers:

Bahzad Brifkani, Head of Data Protection (DPO), Notting Hill Genesis, UK

Dr. Nathalie Moreno, Partner, Data Protection, Cybersecurity & AI, Kennedys, UK

Angeliki Tiligadi, Head of Privacy and AI Governance Officer, Qover, Belgium

Giulia Carnà, Global Senior Privacy Lawyer, ACI Worldwide, UK

Victoria Hordern, Privacy, Data and AI Partner, Taylor Wessing, UK

Clarissa Coleman, Partner, DAC Beachcroft LLP, UK

Audrey Stone, Group Data Counsel, Zurich Cover-More, UK

Norman Heckh, Partner, Ramón y Cajal Abogados, Spain

12:20 PM – 12:30 PM | Exclusive Case Study Presentation

(A service provider showcases innovative solutions addressing key industry challenges aligned with the conference theme)

12:30 PM – 01:30 PM | Peer-to-Peer Meetings

Key Focus Areas:
✅ Regulatory Compliance & AI Governance – EU AI Act, DORA, UK GDPR, NIS2
✅ Cyber Resilience & Threat Mitigation – Zero-trust security, threat intelligence, incident response
✅ Third-Party & Supply Chain Risk – Vendor risk automation, SaaS & cloud security, continuous monitoring
✅ Data Privacy & Cross-Border Compliance – GDPR, AI governance, Schrems II, data sovereignty
✅ GRC & Risk Workflow Automation – Real-time risk visibility, predictive analytics, compliance automation

Join insightful discussions, exchange ideas, and discover solutions to your most pressing challenges!

01:00 PM – 02:00 PM | Lunch Break & Informal Networking

Enjoy a networking lunch with speakers, sponsors, and fellow delegates

02:00 PM – 02:40 PM | Collaborative Round Table Discussions

Countering Advanced Cyber Threats: Building Resilience Against Ransomware Attacks

Emerging trends in ransomware attacks in the UK
Cyber threat intelligence: Building proactive defense mechanisms
Role of public-private partnerships in mitigating cybersecurity risks
Using AI and machine learning to detect and prevent advanced threats
Tackling ransomware, AI-powered cyber threats, and zero-day vulnerabilities

Speakers:
Federico Rossi, Director, Privacy Counsel, IHG Hotels & Resorts, UK
Sarah Pearce, Partner, Huntons Andrews Kurth, UK

Malcolm Dowden, Data Protection, Privacy and Technology Lawyer, Pinsent Masons, UK

02:40 PM – 03:30 PM | Collaborative Round Table Discussions

ESG Compliance and GRC Integration: Bridging Sustainability with Governance and Risk

Mapping ESG objectives to GRC frameworks for better integration
Addressing cybersecurity risks in ESG reporting and data collection
Understanding Corporate Sustainability Reporting Directive (CSRD) and CSDDD
Compliance with emerging ESG regulations in the UK and EU
Leveraging data analytics for accurate ESG performance measurement
Managing stakeholder expectations in ESG governance and compliance

Speakers:

Judith Alton, Director of Risk and Compliance, EMEA, Morgan, Lewis & Bockius UK LLP, UK

Zeslene Mao, Counsel, WilmerHale, UK

Pastore Daria, Partner, Legance, Italy

Patrick Rappo, Partner, Reed Smith LLP, UK

Martina Macpherson, Head of ESG Product Strategy, SIX Group, UK

Sofoklis Karapidakis, Compliance Director and DPO, Metlen Energy & Metals, Greece

03:30 PM – 04:10 PM | Collaborative Round Table Discussions

GRC in the Digital Age: Navigating Compliance, Risk, and Governance in Emerging Technologies

Balancing Innovation with Risk and Compliance in cloud adoption and hybrid work environments
Integrating Risk Management Frameworks into digital transformation initiatives
Governance and Oversight Challenges in rapid technology deployment, IoT, Blockchain, and Quantum Computing
Regulatory Implications of emerging technologies, including the EU AI Act, UK AI regulation, and blockchain compliance
Zero Trust Security Strategies for remote workforce protection and data security
Leveraging AI and Automation in GRC processes to enhance compliance and risk mitigation
Governance Frameworks for edge computing, 5G, and BYOD policies in regulated industries

Speakers:

Nafisa Feeney, Head of Legal/CCO/MLRO, Paynt, UK
Beatriz Ruiz-Beato, Head of Global Data Privacy, NEC Corporation, Spain

04:10 PM – 04:40 PM | Peer-to-Peer Meetings

Key Focus Areas:

✅ Regulatory Compliance & AI Governance – EU AI Act, DORA, UK GDPR, NIS2

✅ Cyber Resilience & Threat Mitigation – Zero-trust security, threat intelligence, incident response

✅ Third-Party & Supply Chain Risk – Vendor risk automation, SaaS & cloud security, continuous monitoring

✅ Data Privacy & Cross-Border Compliance – GDPR, AI governance, Schrems II, data sovereignty

✅ GRC & Risk Workflow Automation – Real-time risk visibility, predictive analytics, compliance automation

Join insightful discussions, exchange ideas, and discover solutions to your most pressing challenges!

04:40 PM – 04:50 PM | Refreshments & Peer-to-Peer Meetings

Enjoy a tea break while networking and engaging in peer-to-peer discussions

04:50 PM – 05:30 PM | Collaborative Round Table Discussions

Incident Response and Crisis Management: Lessons from Recent Breaches

Compliance with GDPR, NIS2, and DORA incident response requirements
From crisis to control: Implementing lessons from recent breaches in incident response
Effective incident response tactics: Insights gained from recent breach scenarios
Lessons learned: Enhancing incident response plans from recent breaches
The role of threat intelligence, SOC modernization, and AI in cyber defense
Strengthening crisis management: Applying insights from recent breaches in incident response strategies
Navigating Negligence in Data Breach Scenarios

Speakers:

Gary Brown, Chief Privacy Officer, Westinghouse Electric Company, UK
Rosehana Amin, Partner, Clyde & Co, UK

Matthew Ginn, Data Protection Officer, London Borough of Lambeth, UK

Karl Obayi, Corporate Counsel - eDiscovery, Forensics & Cybersecurity, RioTinto, UK

Sarah Tedstone, Partner, Fieldfisher, UK

05:30 PM – 05:40 PM

Thank You & Closing Remarks

A heartfelt thank you to all speakers, sponsors, and delegates for their invaluable support and participation

*Program and Timings are subject to change without notice.

Buy Delegate Pass

Buy Delegate Pass

Physical Participation

Virtual Participation

Physical Conference Delegate Pass and Pricing Details

Corporate In-house Professionals*

Early Bird

Standard

GBP 499

GBP 699

(USD 635)

(USD 890)

NA

Buy Now

Law Firm
Professionals^

Early Bird

Standard

GBP 699

GBP 899

(USD 1145)

(USD 890)

NA

Buy Now

Tech Vendors/ Consultants/ Service Providers*^

Early Bird

Standard

GBP 999

GBP 1199

(USD 1270)

(USD 1525)

NA

Buy Now

Conference & Exhibition Pass

Yes (01)

Networking Tea and Luncheon Pass

Yes

Networking with Speakers, Key Participants, and Exhibitors

Yes

Opportunity to Participate in the Q&A Session

Yes

Introductions & Peer-to-Peer Meetings

Yes

Available on Sponsorship Basis

Community Engagement Opportunities

Yes

Scenario-Based Learning and Case Study Presentations

Yes

Digital Certificate of Participation

Yes

Post-Event Session Recordings

Yes

Earn CLE/CPD Credits for Professional Development

Yes

No

Access to Educational Materials and Gift

Yes

* Corporate In-house Professionals: Open only to in-house corporate professionals. Vendor-affiliated individuals are not eligible.
^Law Firm & Academia Professionals: Open to law firm partners, attorneys, legal consultants, researchers, paralegals, and legal tech experts.
*^ Tech Vendors & Service Providers: Must register under this category if offering services or tech solutions to buyers.
For speakership, meetings, or group discounts, fill out this form or email info@events4sure.com for assistance.

Virtual Pass

Virtual Participation Pass

Virtual Pass – Benefits & Value Proposition

Single Event Virtual Pass
(Access this hybrid event with live sessions and interactive discussions)

GBP 299

(USD 385)

Buy Now

✅ Full Event Access
✅ On-Demand Content
✅ Exclusive Insights
✅ Virtual Networking
✅ Interactive Q&A
✅ Cost-Effective & Flexible
✅ Access to Event Resources
✅ Recognition & Certification

Annual Virtual Pass
(Access to all 25+ hybrid events worldwide)

GBP 999

(USD 1270)

Buy Now

✅ Full Event Access
✅ On-Demand Content
✅ Exclusive Insights
✅ Virtual Networking
✅ Interactive Q&A
✅ Cost-Effective & Flexible
✅ Access to Event Resources
✅ Recognition & Certification

Experience Our Physical Conferences

Hybrid Conference Execution Unveiled

TESTIMONIALS

"The conference was an outstanding experience for me. It was impeccably organized, ran seamlessly, and took place in a perfect setting. The seminars led by industry experts were exceptional, offering valuable insights. The sponsors contributed fascinating resources that were both interesting and beneficial. Overall, it was a remarkable event that left a lasting impression."

Dr. Jacqueline Laing

Barrister, High Court of Australia, Solicitor, England & Wales

"This was a fantastic event. I had the opportunity to meet a lot of people, including privacy experts and professionals from the legal services industry. I am looking forward to meeting even more people at upcoming events."

Matthew Tullet

Legal Solution Specialist,
Thomson Reuters

"The event was truly enjoyable, featuring unique and beneficial elements, such as round tables that fostered organic conversations. It provided an excellent networking opportunity, allowing attendees to connect and engage in meaningful discussions."

Mattias Aggeler

Partner - Computer Forensics,
Swiss FTS AG