Learn from the best, discuss and network

Alpine Privacy Days 2023

Data privacy update in the heart of the Swiss alps - 8 and 10 March 2023

Programme and speakers

8 march

19:00: Informal get-together at Hotel Engiadina for a little tour through Zuoz

20:00: Dinner at Hotel Engiadina. (not included in participation fee)

9 March

8:00: Registration, coffee and tea
8:30: Welcome - we start!
8:45: Keynote
"The new EU-US privacy Framework"
Alisa Vekeman, International data flows and protection at European Commission.
9:20: Workshops
Workshop 1: "The Strasbourg Effect - the global impacts of the Council of Europe's modernised Convention on Personal Data Protection"
Prof Lee Bygrave, University of Oslo.  
Workshop 2: New Swiss Federal Act on Data Protection: main innovations and challenges - a deep dive into practical and regulatory issues"
Catherine Lennman, Swiss Federal Data protection and Information Commissioner.
10:20: Round-up and coffee
11:00: Workshop: "Challenges of privacy preserving machine learning"
Leonardo Cervera-Navas, Office of the European Data Protection Supervisor (EDPS)
12:00: Lunch
14:00: Workshops
Workshop 1: "Privacy regulation. How do the rules actually work?"
Tobias Judin, The Norwegian Data Protection Authority
Workshop 2: "Should you consider getting certified? Practical aspects of the new EU-US Data Privacy Framework"
Laura De Boel, Wilson Sonsini Goodrich & Rosati
14:30: Round-up and coffee
15:00: Panel discussion: "The monetization of data"
Speakers of the day: Isabelle Landreau, Thomas Jansen, Carmen De La Cruz, Odia Kagan and Lukas Bühlmann
16:00: End of program, finger food and drinks
18:45: Meet & greet at Galerie Tschudi
20:00: Dinner at Restaurant Dorta

10 March

8:30: Coffe and tea
9:00: Keynote
"The developing European case law on the GDPR"

Christopher Docksey, EU Court of Justice and the European Court of Human Rights.
9:45: Workshops
Workshop 1: "The fine line between Profiling, Digitalisation and automated individual decision-making"
Nino Tlapak, DORDA Vienna  and Boris Inderbitzin, Swiss Federal Department of Foreign Affairs, Switzerland
Workshop 2: "So you're GDPR compliant, that don't impress me much"
Odia Kagan, Fox Rothschild LLP  
10:45: Round-up and coffee
11:15: Workshops
Workshop 1: "The use of cloud services by the public sector"
Gwendal Le Grand, European Data Protection Board (EDPB)
Workshop 2: "How to design a global privacy strategy"
Emerald De Leeuw-Goggin, Logitech
12:15: Round-up and coffee
12:45: Lunch in the winter sun
14:15: Workshops
Workshop 1: "Data protection inhouse - DPO role"
Isabelle Landreau, IDEMIA & Thomas Jansen, Heuking's Munich office
Workshop 2: "From Data Inventory to Information Governance in Cloud Services - challenges, experiences and best practice from an IT security and consulting perspective"
Umberto Annino, Microsoft
15:15: Round-up and coffee
15:45: Panel discussion, "What is the future of data privacy?"
Speakers of the day: Chris Jay Hoofnagle, Alisa Vekeman, Leonardo Cervera-Navas, Odia Kagan, Tobias Judin
16:45: End of programme
18:00: Meet-up central village square in Zuoz for walking trip form Zuoz to La Punt Village
19:00: Dinner at Krone La Punt (not included in participation fee)

Confirmed speakers

Alisa Vekeman

Alisa Vekeman is a member of the international data flows and protection unit of the European Commission. She co-lead on the modernisation of the standard contractual clauses and the adequacy talks with South Korea, and is co-leading on the draft adequacy decision on the EU-US Data Privacy Framework. Prior to joining the European Commission, Alisa worked for the EU Delegation to the Council of Europe, where she followed the negotiations on the modernised Council of Europe Convention 108. She holds degrees in law and human rights.

Read more

Odia Kagan

Odia Kagan is a Partner and Chair of GDPR Compliance & International Privacy Practice at Fox Rothschild LLP, a US national law firm. Odia has advised more than 200 companies of varying industries and sizes on compliance with GDPR, the California Consumer Privacy Act (CCPA) and other US data protection laws.

With an emphasis on a pragmatic, risk based approach, Odia provides clients with practical advice on how to design and implement their products and services in a compliant manner. Odia holds 3 law degrees, 5 bar admissions and 7 privacy certifications (CIPP/US/E, CIPM, CDPO, C-GDPR/P, FIP, PLS).

Read more

Leonardo Cervera-Navas 

Leonardo Cervera-Navas is the Director of the Office of the European Data Protection Supervisor (EDPS), the Data Protection Authority of the European Union.

Law graduate of the University of Málaga and master's degree in European Law from the University of Granada (Spain). He was a fellow at Duke University in North Carolina (US) as part of the EU Fellowship Programme of the European Commission. He also holds a post-graduate diploma in HR management by Kingston University (UK). He is Member of the Malaga Academy of Sciences (correspondent in Brussels).

Leonardo joined the European Commission in 1999 and since then he has been working in the Data Protection field in the EU institutions. In 2010, he joined the EDPS, as Head of the Human Resources, Budget and Administration Unit and he was appointed Director in 2018. As Head of the Secretariat, he is a member of the Management Board of the EDPS, responsible for advising on data protection law and policy, and he is in charge of the coordination and implementation of the strategies and policies of the institution. 

Read more

Laura De Boel

Laura's practice focuses on all aspects of pan-European data protection compliance, and counselling clients in their dealings with privacy and data protection authorities. She is a frequent writer and lecturer in the field. She is a member of the editorial board of a leading Belgian privacy journal, and a member of Wilson Sonsini's global Artificial Intelligence and Machine Learning group.

Read more

Umberto Annino

Security evangelist, itinerant preacher and cybersecurity specialist at Microsoft.

Umberto has about 25 years of experience in ICT and Information Security. After training as a software developer, He specialized in IT security and data protection and worked for several years as a security officer and consultant for insurance companies, banks and financial service providers.

He works as a Compliance Technology Specialist at Microsoft, is on the board of ITDR (IT Dispute Resolution) and chairs the Cybersecurity Advisory Board of the Swiss Academy of Engineering Sciences (SATW). In addition to certifications in information security (CISSP, CISM etc.), Umberto holds privacy certifications CIPP/E, CIPT, CIPM and ISACA CDPSE.

Read more

Dr. Thomas Jansen

Dr. Thomas Jansen is a partner in Heuking's Munich office and a member of Heuking's IP, Media & Technology Practice Group.

Thomas has more than 25 years of experience as a technology transactions lawyer. He advises German and international corporate clients across diverse technology-driven industries (IT, Telecoms, Automotive & Engineering, Aerospace & Defense) on all kinds of technology-related matters, with a focus on providing strategic and pragmatic guidance in the creation, acquisition, use and commercial exploitation of technology. He also counsels clients on the intellectual property aspects of mergers, acquisitions, and financings.

Read more

Isabelle Landreau

Data Privacy Manager IDEMIA, France.

Chris Jay Hoofnagle 

Chris is Professor of Law in Residence at the University of California, Berkeley, School of Law, where he teaches cybersecurity, programming for lawyers, and torts. He is affiliated faculty with the Simons Institute for the Theory of Computing and the Center for Security in Politics, a Professor of Practice in the School of Information, and the faculty director of the Center for Long Term Cybersecurity (CLTC). An elected member of the American Law Institute, Hoofnagle is of counsel to Gunderson Dettmer LLP, serves on boards for Constella Intelligence and Palantir Technologies, and is a member of the National Academies Intelligence Science and Technology Experts Group (ISTEG).

Read more

Emerald De Leeuw-Goggin

Global head of privacy at Logitech. Forbes has named Emerald as one of 100 European female founders to follow, and she speak regularly at leading conferences such as TEDx and WomeninTech.  

She is a privacy and data protection specialist as well as an award-winning entrepreneur, speaker and lecturer.

Read more

Dr. Gwendal Le Grand

Dr. Gwendal Le Grand is the deputy head of Secretariat of the European Data Protection Board (EDPB),
which he joined in October 2021. The EDPB Secretariat is in charge of providing legal support for the drafting of EDPB documents, IT solutions to ensure transparent communications between all the European national data protection authorities, handling EDPB media relations, as well as organizing all EDPB meetings. He is particularly involved in the Coordinated Enforcement Framework (CEF), and the Support Pool of Experts (SPE) which aim to assist national supervisory authorities in the framework of
their investigations and enforcement activities of significant common interest. He was previously the Deputy Secretary-General at the French data protection authority CNIL (Commission Nationale de l'Informatique et des Libertés), and was also the coordinator of the technology expert subgroup of the EDPB. He started his career in academia as an associate professor in networking and security. Gwendal received his PhD in computer science from the University of Paris 6 in July 2001.

Read more

Catherine Lennman  

Catherine Lennman holds an LLM degree in European Integration from the Saarland University (Germany) and a lic. iur. from the University of Lausanne (Switzerland). She has been working for the Swiss Federal Data Protection and Information Commissioner (FDPIC) since September 2010, covering legal aspects of data protection in various subject matters, such as writing of data protection opinions in legislative procedures, assisting data subjects as well as Swiss federal authorities in data protection issues and conducting data protection inspections. 

Since 2017 she is Delegate International Relations and Francophonie. She represents the FDPIC at several international working groups (e.g. GPA, AFAPDP, Spring conference). She is the president of the Working Group on the Role of Personal Data Protection in International Development Aid, International Humanitarian Aid and Crisis Management set up by the Global Privacy Assembly. Since October 2022, she is vice-president of the AFAPDP.

Read more

Chris Docksey

Christopher Docksey lectures and publishes on data protection, the GDPR and the case law of the EU Court of Justice and the European Court of Human Rights. In October 2019 he gave the keynote on accountability at the 41st ICDPPC.
He is the Honorary Director General at the EDPS, a Member of the Guernsey Data Protection Authority, and a Member of the Advisory Board of the European Centre on Privacy and Cybersecurity (ECPC) at Maastricht University. He is also an editor of the OUP Commentary on the GDPR, together with Christopher Kuner and Lee Bygrave.


Nino Tlapak

Partner and data protection expert at DORDA, Vienna. He advises large multinationals on data protection, IT outsourcing and infrastructure projects, cloud computing and cyber security. 

Nino is well known for his data protection activities and also functions as coordinator of DORDA's data protection unit.

Tobias Judin

Head of international affairs at the Norwegian Data Protection Authority. Tobias is Norway's top-level representative to the European Data Protection Board, and also the responsible for cross-border cases and cases regarding international transfers at Datatilsynet. An experienced speaker that knows how Datatilsynet reason and reacts.

Read more

Lee Andrew Bygrave

Lee A. Bygrave is professor at the Department of Private Law, University of Oslo. He is currently Director of the Norwegian Research Center for Computers and Law.

He is additionally an academic affiliate of the Centre for Health, Law and Emerging Technologies (HeLEX) at the University of Oxford, and research associate (formerly founding co-director) of the Cyberspace Law and Policy Centre (now 'Community') at the University of New South Wales, Sydney.

Read more

Boris Inderbitzin 

Boris currently works as a legal and technology policy advisor at the Directorate of International Law of the Federal Department of Foreign Affairs. In this role, he regularly represent Switzerland as an expert in the Swiss delegation in multilateral processes, such as currently in the Committee on Artificial Intelligence of the Council of Europe.

Read more

Barbara Chlopcik 

Barbara is deputy head of the international department at the Austrian Data Protection Authority, where she is responsible for cross-border cases and international cooperation. She was part of the European Data Protection Board Chair Coordination for three years and recently contributed as an expert in the Albanian Twinning project on data protection law.