PROGRAMME AND SPEAKERS


Our program for the upcoming Alpine Privacy Days is almost complete, offering a range of sessions packed with the latest insights and enriching experiences.

Get ready for another inspiring and informative event!


2 March 2025

Arrival
19:00: Informal get-together at Hotel Crusch Alva for a little tour through Zuoz

20:00: Dinner at Hotel Crusch Alva (*)

(*) Please note that the informal get-together dinners on Sunday and Wednesday are not included in the conference fee and must be paid in advance through the ticketing process. It is important to ensure that you have purchased the tickets for the informal get-together dinners on Sunday and Wednesday evenings as well.


3 March 2025

8:00: Registration, coffee and tea

8:30: Welcome – WE START!
8:45: Keynote: “Privacy Priorities of the EU Commission & the ECJ”
Herke Kranenborg, Member of the Legal Service of the European Commission & Professor in European Privacy and Data Protection Law at Maastricht University, Belgium

9:45: Workshops
Workshop 1: “AI Regulation – a critical comment”
Florent Thouvenin, Professor of Information and Communications Law, The Faculty of Law of the University of Zurich, Switzerland
Workshop 2: “Managing Global Data Breaches”
Kate Brader, Partner at FTI and Head of Crisis, UK
10:45: Round-up and coffee break

11:15: Workshops
Workshop 1: Mastering Unstructured Data – Mitigating AI Risks in Organizational Files”
Juha Sallinen, Entrepreneur & Consultant, GDPR Tech

Workshop 2: “Privacy, AI and the US administration – what to expect?”
Jason Johnson, Partner & CHS Managing Director at Crowell & Moring, USA
Rafi Azim Khan, Partner & Head of Digital Law – Global co-Chair Ad & Media Law at Crowell & Moring, USA & UK
12:15: Round-up

12:45: Lunch in the winter sun

14:15: Workshops
Workshop 1: “Synthetic Data and Anonymisation”
Christer Berg Johannesen, Department manager for Managed Security Services (MSS) and Team Lead for Digital Forensics and Incident Response (DFIR) at Conscia, Norway

Workshop 2: DORA, NIS & Cyberresilience”
Nino Tlapak, Partner at DORDA Rechtsanwälte, Austria
Albin Buchmann, Head of Legal at Erste Digital, Austria
15:15: Round-up and coffee break

15:45: Panel discussion “Global Panel on AI & Privacy Governance”
Host: Michael Will, President of Bavarian Data Protection Authority for the Private Sector, Germany
      • Azmul Haque, Founder & Managing Director at Collyer Law, Singapore
      • Odia Kagan, Partner and Chair of GDPR Compliance & International Privacy at Fox Rothschild, USA
      • Vikram Jeet Singh, Partner and Head of Technology, Media and Communications at BTG Advaya, India
      • David Tang, Partner at Han Kun Law Offices, China
      • Gabriel Voisin, Privacy & Data Protection Partner at Bird & Bird, UK

16:45: End of Program

Transport to St. Moritz for Dinner
A bus has been organized for your convenience to and from St. Moritz.
Choose your preferred pickup station.

18:00: Departure from the Lyceum – please gather at the conference location entrance
18:05: Additional pickup – Zuoz Train Station

18:30: Arrival in St. Moritz for Dinner at Restaurant Chesa Veglia Pizzeria Heuboden
Via Veglia 2, 7500 St. Moritz

Return journey to Zuoz
23:30: Please meet at Badrutt’s Palace entrance for the bus ride back to Zuoz Train Station.

4 March 2025

8:30: Registration, coffee and tea

9:00: Keynote: “Data Act & GDPR”
Boris Paal, Chair for Law and Regulation of the Digital Transformation, TUM School of Social Sciences and Technology (SOT), Department of Governance, Technische Universität München (TUM), Germany

10:00: Workshops
Workshop 1: “GenAI: use of Personal Data for training AI systems”
Gabriel Voisin, Privacy & Data Protection Partner at Bird & Bird, UK

Workshop 2: “Latest developments in Neuroscience and Neuroprivacy”
Marcello Ienca, Professor in Ethics of Artificial Intelligence and Neuroscience at Technical University of Munich, Group Leader at École polytechnique fédérale de Lausanne, Co-founder and Editor in Chief of Scienza Live, Germany
11:00: Round-up and coffee break

11:30: Panel discussion Secondary Use of Health Data”
Host: Efstathia (Efi) Gkika, Deputy General Counsel, Global Chief Privacy Officer, Baxter International, Switzerland
      • Jonathan Green, Director, Privacy Analytics, Europe, IQVIA, UK
      •
Antonios Roussos, Head of Global E&C Data Privacy & Group DPO at Astellas Pharma Inc, Greece
      • Daniela Will, Data Protection Officer and Head of the Data Protection Unit, Munich clinic gGmbH, Germany

12:30: Lunch in the winter sun

14:00: Workshops
Workshop 1: “Transparency & Dark Patterns”
Stephan Winklbauer, Attorney at Law, Partner at aringer herbst winklbauer, Austria
Workshop 2: “The governance and enforcement of the GDPR”
Christopher Docksey, Hon. Director General, EDPS, Belgium

15:00: Round-up and coffee break

15:30: Panel discussion with National Regulators “Enforcement trends and priorities”
Host: Michael Will, President of Bavarian Data Protection Authority for the Private Sector, Germany
      • Guido Scorza, Member of the Board of the Italian Data Protection Authority, Italy
      • Christian Pertl, National and International Special Affaires, Austrian Data Protection Authority, Austria

16:30: End of Program

Transport to Susch for Dinner
A bus has been organized for your convenience to and from Susch.
Choose your preferred pickup station.

17:30: Departure from the Lyceum – please gather at the conference location entrance
17:35: Additional pickup – Zuoz Train Station

18:00: Arrival in Susch for meet & greet at Muzeum Susch – enjoy art, chat and bubbles
Enjoy an aperitif while immersing yourself in art during an exclusive guided tour of the museum.
Sur Punt 78, 7542 Susch

19:00: Dinner at Muzeum Susch
Following the tour, enjoy a delightful dinner in the unique setting of the museum.
Sur Punt 78, 7542 Susch

Return journey to Zuoz
22:00: Please meet at Muzeum Susch entrance for the bus ride back to Zuoz Train Station.

(*) Please note that the informal get-together dinners on Sunday and Wednesday are not included in the conference fee and must be paid in advance through the ticketing process. It is important to ensure that you have purchased the tickets for the informal get-together dinners on Sunday and Wednesday evenings as well.


Interactive sessions designed for engagement

Each conference day starts with an insightful keynote, setting the stage for a series of dynamic workshops. Choose from two parallel sessions each tailored to foster deep dives into specialized topics. Our workshops are intentionally designed for smaller groups to ensure active participation and direct interaction with experts. Every workshop session wraps up with a comprehensive round-up, where speakers summarize key discussions and insights.

Beyond the sessions: Experience Alpine Privacy Days

Alpine Privacy Days is more than a conference; it’s an immersive experience. Surrounded by the serene landscape of Zuoz, the event is complemented by an exquisite social program. From networking dinners to guided tours, each aspect is crafted to enhance your stay and provide ample opportunities for informal discussions and relaxation.

Meet our esteemed speakers

At Alpine Privacy Days, engage with leading experts who are shaping the future of privacy and data protection. Our lineup includes distinguished speakers offering their expertise and unique insights. These experts will provide you with the latest updates and trends in privacy laws, AI, cybersecurity and more, enriching your knowledge and expanding your professional network.


SPEAKERS OF THE NEXT EDITION 2025

This section will be updated shortly. For the full list of confirmed speakers, please refer to the program above.

 

Christer Berg Johannesen

Department manager for Managed Security Services (MSS) and Team Lead for Digital Forensics and Incident Response (DFIR) at Conscia, Norway

More to come soon

More on Christer

Kate Brader

Partner at FTI and Head of Crisis, UK

Kate is a crisis communication and crisis management specialist with deep expertise and experience in managing high profile live incidents. She is based in our London office where she set up and heads the Crisis Practice, a team of professionals dedicated to crisis preparedness and response.

Prior to joining FTI Consulting, Kate developed and lead the ‘Live Response’ service offering and capability at Deloitte. This saw her coordinating a 24/7 internal and external communications response to the Maersk Not-Petya incident. She joined Deloitte as part of the acquisition of her firm Regester Larkin, where she established and ran its Americas business, based in Houston, TX. She joined FTI to establish its Cybersecurity practice, and from there went onto set up its Crisis Management and Crisis Communication practice.

Kate’s work has included working with multiple companies responding to the NotPetya cyber-attack; major outages for suppliers to one of the UK’s biggest government agencies and high profile attacks on law firms.

She also spends her time working on issues that include physical health and safety events, non-financial misconduct, difficult market exits, etc., and brings her experience of this across all sectors to bear on her work in Cyber.

Kate is passionate about principles based, strategic resilience planning to prepare companies to respond to the unexpected and frequently runs exercises that challenge multiple teams in multiple geographies.

More on Kate

Efstathia (Efi) Gkika

Deputy General Counsel, Global Chief Privacy Officer, Baxter International, Switzerland

Efi Gkika is the Deputy General Counsel andGlobal Chief Privacy Officer of Baxter International.  She is working for Baxter for the last nine years.  Efi started her career with an international law firm of one of the Big Four.  For the last sixteen years she is dedicated in the pharma/medical devices sector in Legal/Compliance and Data Privacy roles.  Since 2018, as member of the Privacy Office of Baxter, Efi has been acting as a strategic partner for regional and global stakeholders supporting both privacy compliance, digital transformation, digital health and connected care. She currently holds the position of the Chair of MedTech Europe Privacy Committee. Efi studied law in the University of Athens in Greece and holds an LLM from the Université libre de Bruxelles in European Law and an LLM from the Economic University of Athens in International Business Taxation.

More on Efi

Jonathan Green

Director, Privacy Analytics, Europe, IQVIA, UK

As lawyer with 30 years post qualification experience, Jonathan has worked across diverse healthcare settings as a Regulatory Lawyer.

Jonathan is an experienced and accredited Project and Programme Manager. Jonathan is currently the Programme Director of the Privacy Enhancing Technology collaboration with the UK National Health Service Federated Data Platform.

Jonathan joined IQVIA’s Privacy Analytics team in 2024, having been Director of Programme Management for the UK Government’s National COVID19 Infection Survey.

Jonathan is actively collaborating with Governments and Healthcare Providers across Europe, Middle East and Africa to support the development of emerging their data transformation solutions; enabling them to achieve the careful balance between maintaining public trust and the security of the patient’s data, with maximising the full value of the data for its intended use.

More on Jonathan

Azmul Haque

Founder & Managing Director at Collyer Law, Singapore

Azmul is a tri-qualified lawyer, admitted to practice law in England, India, and Singapore. Over the last 22 years, Azmul has developed particular expertise in complex, cross-border corporate transactions (mergers, acquisitions and divestitures, joint ventures and strategic alliances, private equity, venture and angel financing), commercial contracts involving technology-related matters (SAAS, PAAS, outsourcing, franchising and licensing) and regulatory matters in a range of areas that impact business (corporate governance, securities & futures regulations, data protection, crypto-currency regulation) and evaluating innovative business models disrupting traditional industries.

Azmul has worked extensively with MNC and Asian corporations, family-owned businesses, and high-net worth individuals. His geographical experience spans South Asia, particularly the India-Singapore corridor, ASEAN and the Middle East. He has lived and worked in Mumbai, Singapore and London.

He has been rated as a leading practitioner for the TMT sector, and focusses currently on clients in emerging technology, particularly FinTech, Digital Health, AdTech, and BlockChain. Prior to founding Collyer Law, Azmul was Consultant Partner at Olswang, and Partner with Shook Lin & Bok. He has also worked with Silver Circle firm, Berwin Leighton Paisner and WongPartnership.

More on Azmul

Odia Kagan

Partner and Chair of GDPR Compliance & International Privacy at Fox Rothschild, USA

Odia Kagan is Partner and Chair of GDPR Compliance & International Privacy at Fox Rothschild LLP. Odia combines her in-depth knowledge of privacy and data security regulations and best practices, both domestic and international, with her keen understanding of emerging and information technologies to provide clients with practical advice on how to design and implement their products and services, consummate their M&A transactions and engage third-party vendors in the United States and abroad.

Over the past few years, Odia has assisted more than 80 companies, from U.S.-based multinationals to startups, on their path to compliance with the EU General Data Protection Regulation (GDPR). She leverages her transactional experience leading M&A and tech transactions as well as her ability to break down complex concepts into easy-to-understand action items to provide effective, ongoing counsel to clients in their day-to-day operations.

Odia is certified as a Privacy Law Specialist (PLS) and  Fellow of Information Privacy (FIP) by the International Association of Privacy Professionals (IAPP), designations that demonstrate significant achievements in and comprehensive knowledge of privacy and data protection law. She has also been certified by IAPP as a Certified Information Privacy Manager (CIPM) and a Certified Information Privacy Professional in the laws of the United States – private sector (CIPP/US), the laws of the European Union (CIPP/E) and by the PECB as a Certified Data Protection Officer (CDPO).

More on Odia

Herke Kranenborg

Member of the Legal Service of the European Commission & Professor in European Privacy and Data Protection Law at Maastricht University, Belgium

Prof. Herke Kranenborg is a member of the Legal Service of the European Commission, working mainly in the field of privacy and data protection. In that role he advises the Commission and its departments in these areas and represents the Commission in litigation before the EU Court of Justice in Luxembourg. He has represented the Commission in close to 150 cases before the EU Court of Justice concerning data protection.

In addition, Herke Kranenborg holds a chair as professor in European Data Protection and Privacy Law at Maastricht University, situated in the Maastricht Centre for European Law (MCEL) and the European Centre on Privacy and Cybersecurity (ECPC).

Previously, Herke Kranenborg worked at the office of the European Data Protection Supervisor, and was affiliated senior researcher at the Institute for European Law of the K.U. Leuven.

More on Herke

Boris Paal

Chair for Law and Regulation of the Digital Transformation, TUM School of Social Sciences and Technology (SOT), Department of Governance, Technische Universität München (TUM), Germany

Professor Dr. Boris P. Paal, M.Jur. (Oxford) is a fully qualified lawyer and Full Professor (with tenure), holding the Chair for Law and Regulation of the Digital Transformation at the Technical University of Munich (TUM), School of Social Sciences and Technology, Department of Governance (www.gov.sot.tum.de/lrd).

Professor Paal’s research and teaching focus on the implications and regulatory issues of digital transformation, particularly concerning the digital and data economy, as well as the legal framework for cutting-edge technologies such as artificial intelligence and quantum computing.

In October 2023, Professor Paal was appointed a professor of excellence at the TUM. He previously held chairs and, as director, headed institutes for data, media, and information law at the University of Freiburg (2009-2021) and the University of Leipzig (2021-2023). Professor Paal also served as Dean in Freiburg (2016-2018) and founded award-winning study programs (i.e., Pro Bono Legal Clinics and Legal Tech). From 2020-2023, he was active on the bench as a judge at the Hamburg District Court (IP- and IT Law).

Professor Paal has more than 25 years of experience in academia. He is the editor and author of leading commentaries and ground-breaking publications on all areas of the law and regulation of the digital transformation. As an accomplished legal scholar, he is responsible for more than 200 publications, including leading books on Information, Media, and Data (Protection) Law.

Professor Paal provides legal expertise in various settings to public and private institutions; inter alia, he is a member of several advisory boards and serves as an expert to the EU Commission, German Parliament, Humboldt Foundation, Leibniz Institute for Media Research, EUMETSAT. Research stays and guest lectureships took him to international universities of excellence, e.g., Cambridge (UK), Harvard, New York (Columbia, Fordham, NYU), Oxford (UK), Seoul (SNU), Stanford, and Yale.

More on Boris

Antonios Roussos

Head of Global E&C Data Privacy & Group DPO at Astellas Pharma Inc, Greece

Antonios Roussos is the Head of Global E&C Data Privacy and the Group Data Protection Officer for Astellas Pharma Inc., a Japanese life sciences company. Antonios leads a group of privacy professionals who are responsible for the design and implementation of Astellas Privacy Program globally. Antonios has studied Law in Greece and United Kingdom and has worked on various legal and ethics & compliance roles in the life sciences sector and beyond.

More on  Antonios

Juha Sallinen

Entrepreneur & Consultant, GDPR Tech

Juha Sallinen is a privacy and compliance expert with extensive experience in consulting, training and leading data privacy projects across Finland, Scandinavia and Europe. As the founder of GDPR Tech, Juha has been guiding SME and enterprise clients since 2016. His expertise spans privacy management, compliance maturity, and unstructured data assessments for local and global customers. Juha’s career includes roles such as Senior Principal Evangelist at Veritas Technologies and Enterprise Architect at Wipro, with a background in software engineering and an EMBA from TAMK Tampere.

More on Juha

Guido Scorza

Member of the Board of the Italian Data Protection Authority, Italy

Guido Scorza: lawyer, journalist, adjunct professor of new technology law and privacy, he is currently member of the Board of the Italian Data Protection Authority (Garante per la protezione dei dati personali).

He was responsible for national and European legal affairs for the digital transformation team, legal advisor to the Minister for Innovation, deputy representative of the Italian government at the Government Advisory Board of ICANN (Internet Corporation for Assigned Names and Numbers), and member of the policy subgroup of the ad hoc Committee on Artificial Intelligence Regulation of the Council of Europe. He has always been involved in law and new technologies, both as a lawyer and in his public positions. He teaches at several universities. Guido Scorza is author of books: “Intelligenza artificiale. L’impatto sulle nostre vite, diritti e libertà” with Alessandro Longo (Mondadori); “La privacy spiegata semplice ai più giovani (e ai loro genitori)” with Michela Massimi (Mondadori); Processi al Futuro” (Egea);  “Internet, i nostri diritti” with Anna Masera (Laterza); “La privacy degli Ultimi” with Eduardo Meligrana (Rubbettino); “Neuroverso” (Mondadori).

More on Guido

Florent Thouvenin

Professor of Information and Communications Law, The Faculty of Law of the University of Zurich, Switzerland

Florent Thouvenin is Professor of Information and Communications Law at the Faculty of Law of the University of Zurich. Among other things, he is Chairman of the Steering Committee of the Center for Information Technology, Society, and Law (ITSL) at the University of Zurich and President of the Swiss Forum for Communications Law (SF-FS). In his research, he deals with legal issues relating to digitalisation, with a focus on copyright and data protection law. A particular focus is currently on the development of a Swiss legal framework for the use of Artificial Intelligence (AI) and on fundamental questions of data (protection) law.

More on Florent

Nino Tlapak

Partner at DORDA Rechtsanwälte GmbH, Austria

Nino Tlapak joined DORDA’s IT and Data Protection team in 2013 and is a partner since 2021. He focuses on data protection and IT-security law. Further areas of practice include e-commerce and outsourcing. Nino is well known for his data protection activities and also functions as coordinator of DORDA’s data protection unit. In addition, Nino regularly publishes articles in the field of data protection and holds lectures at the Danube-University Krems (Data Protection and Privacy – certified program), the technical colleges FH Technikum Wien and FH Campus Wien as well as the IT-Law LL.M. postgraduate program of the University of Vienna.

Nino studied law at the University of Vienna (Mag iur 2012) and completed the postgraduate programme “Information and Media Law” (LL.M. 2013).

More on Nino

Gabriel Voisin

Privacy & Data Protection Partner at Bird & Bird, UK

As a partner at Bird & Bird in the London-based international Privacy & Data Protection practice, Gabriel Voisin advises companies on a range of international data and privacy compliance projects, including the implementation of global data management strategies, international data transfers and data compliance issues such as the General Data Protection Regulation (GDPR) or the ePrivacy directive. Gabriel Voisin is also a member of the firm’s global (i) Executive Committee (ExCom) and (ii) Diversity & Inclusion leadership group.

He has robust experience of advising clients on guarding against and mitigating potential cybersecurity intrusions and computer breach events for a broad range of major multinationals. Gabriel Voisin regularly coordinates global notification advice for various companies who have suffered data breaches and can support your company needs in these situations.

He assists AI providers and corporate clients willing to embed AI technologies in their own products and services. His deep understanding of AI technologies, such as machine learning and natural language processing, empowers me to navigate the intricate legal landscape with agility and precision.

Gabriel Voisin is frequently involved in data protection related investigations or litigations before data protection authorities (e.g. Information Commissioner’s Office (ICO), Commission Nationale de l’Informatique et des Libertés (CNIL)) or courts. This works involves the monitoring of privacy related actions from individuals, companies or non-for-profit organisations.

Clients include cutting edge technology organisations, retail and consumer, luxury brands, life science and financial service institutions.

More on Gabriel

Michael Will

President of Bavarian Data Protection Authority for the Private Sector, Germany

Michael Will has been appointed President of the State Office for Data Protection Supervision for a period of five years as of February 1, 2020. He was born in Kronach in 1968, is married and the father of one child.

After studying law in Würzburg and completing his legal clerkship in Bamberg, he began his professional career as an administrative lawyer in the service of the Free State of Bavaria in 1995. After moving to the Supreme Building Authority in the Bavarian State Ministry of the Interior in 1997 and to the Bavarian State Chancellery in 2000, Michael Will took over as Head of the Department for Public Safety and Order in the Landshut District Office in 2002. In 2006, he returned to the Bavarian State Ministry of the Interior as an advisor in the field of road law at the Supreme Construction Authority.

In 2009, Michael Will was appointed head of the “Data Protection” department at the Bavarian State Ministry of the Interior for Sport and Integration. He also held the office of official data protection officer there and was a member of the Bavarian State Parliament’s Data Protection Commission. On behalf of the Bundesrat, he accompanied the entire negotiations of a EU-Council Working Party (DAPIX) on the EU General Data Protection Regulation (GDPR) from 2012 to 2015 and also performed the duties of the country observer in the committee pursuant to Article 93 of the GDPR, which is involved, for example, in the adoption of adequacy decisions by the European Commission.

More on Michael

Stephan Winklbauer

Attorney at Law, Partner at aringer herbst winklbauer, Austria

Stephan Winklbauer is an attorney-at-law and partner at the law firm Aringer Herbst Winklbauer Rechtsanwälte in Vienna, Austria. He is an expert in IT law and data protection law. In IT law, his main areas of expertise are software, outsourcing and IT project contract law. In data protection law, he advises companies on introducing new processing activities (including AI applications) and implementing data protection impact assessments and proceedings with the authorities (e.g., fine proceedings).

More on Stephan

Zhihua (David) Tang

Partner at Han Kun Law Offices, China

Mr. Tang is Partner at Han Kun Law Offices in China. Mr. Tang’s extensive professional experience includes positions with government authorities and international and local law firms. Prior to joining Han Kun, Mr. Tang was a partner at a leading Chinese firm and had also practiced in the China practice groups of three pre-eminent international law firms. Mr. Tang has been consecutively ranked as one of the leading PRC Corporate and M&A lawyers by legal ranking organizations such as Chambers & Partners, Asialaw Profiles, and The Legal 500. He has also been appointed as an extramural graduate student advisor by Fudan University School of Law and East China University of Political Science and Law. Mr. Tang’s primary practice areas are general corporate and commercial, foreign direct investment, and cross-border mergers and acquisitions. Mr. Tang has been advising numerous Fortune 500 Global and other multinational and foreign companies on their investments, acquisitions and daily business operations since he started his professional career. Mr. Tang advises large and medium sized Chinese companies on doing business in overseas markets, particularly in assisting with Chinese companies’ outbound direct investments and mergers and acquisitions. Mr. Tang also focuses on corporate compliance and data protection. He regularly advises clients on their China operations in connection with compliance policies and guidelines, internal compliance reviews, audits, and government investigations involving commercial bribery and other regulatory compliance matters. He also conducts internal investigations for clients, including those concerning vendors and company employee conflicts of interest, self-dealing, PRC anti-bribery rules, the UK Bribery Act (2010) and the US Foreign Corrupt Practices Act. Mr. Tang regularly counsels clients on compliance matters relating to cybersecurity and data and personal information protection, assists clients in establishing data compliance systems, applying governmental procedure for cross-border data transfer, and investigating and managing data incident crises. The clients which Mr. Tang represents come from a wide variety of industry sectors such as advertisement, aircraft, automotive, clean energy, FMCG, food and beverage, hospitality, life sciences, logistics, petrochemical, power, retail, and TMT.

More on David