Cybersecurity and Data Privacy Following the CFPB Consent Order In Re: Dwolla, Inc.: Ensuring That New Payment Offerings and Services Effectively Protect Sensitive Customer Information, Both in the U.S. and Abroad

July 29, 2016 8:00am

Ryan J. Straus
Riddell Williams P.S.

Adam T. Ettinger
Sheppard, Mullin, Richter & Hampton LLP

Kari Kelly
CEO & Founder
Ispirato Law Group

Barrie VanBrackle
Orrick, Herrington & Sutcliffe LLP

Scott Swantner
Director for Global Security
Western Union Digital

  • The CFPB’s issuance of their first cybersecurity order in the Dwolla case
  • Tokenization; EMV implementation
  • Implications arising from the Court of Justice of the European Union’s invalidation of the U.S. Safe Harbor Framework for data transfers from Europe to the United States
  • The fallout from recent major breaches
  • Data security and privacy concerns relating to transactions conducted on mobile devices
  • New and emerging privacy and data security risks associated with evolving technologies
  • How to ‘comply’ with existing conflicting privacy regulations
  • Privacy disclosures
  • Available & emerging security options
  • Enhanced data protection initiatives
  • Communication between legal and marketing
  • Assessing what data you collect, or may collect, from consumers, and how that data may be used
  • Mitigating risk of a data breach and minimizing fallout if one does occur
  • Location data and privacy considerations/
  • PCI compliance