What Now? European Court of Justice Invalidates U.S.-EU Safe Harbor Accord: 10 Practical Ideas in 60 Minutes

Registration is no longer available for this webinar.


Sign up today for an entire year of unlimited access to relevant, timely professional learning courses, including webinars, eLearning courses and OnDemand offerings, and keep your professional credits up to date. All for just $399.

Learn more about the subscription!



Registration is now closed – an OnDemand verison of this webinar will be available for registration on October 20 , 2015. 


With last week’s landmark opinion, thousands of U.S. companies and their outside counsel are  scrambling to conduct business as usual while trying to make sense of the impact of this landmark decision on their businesses.

The ECJ’s invalidation of U.S.-EU Safe Harbor will significantly disrupt global data flows across every U.S. business with interests in the EU as the ruling adds layers of complexity to understanding jurisdiction over various types of personal data and IT operations.   Learn the practical ramifications and critical next steps for law firms and multinational corporations in the wake of the fallout from this decision.

Join us for this 60-minute webinar, where experts advising companies grappling with the repeal of Safe Harbor outline five key takeaways to minimize compliance and enforcement risks in light of this seismic decision.

Educational Objectives:

Register now for this complimentary webinar and you will:

• Understand how Model Contracts and Intra-Group Agreements may reveal any data transfer or access gaps and see what longer term solutions may be considered.

• See how the Review of Data Flows and Prioritizing Remediation can help you ensure data transfer and storage solutions are in place -- or can be rerouted -- to minimize risks.

• Conduct Contract Analysis to pinpoint potential breaches based on the recent ECJ opinion and review data transfer pathways to identify data solutions that meet compliance standards.

• Consider EU Country-by-Country Leeway to identify where servers in the EU are located and ascertain where national authorities have less stringency.

• Initiate Outreach to DPAs and Monitor Consumer Complaints to build relationships and update procedures to minimize costly and time-consuming enforcement actions.


To access the webinar, please use the following instructions:

1. A few minutes before the start time of the webinar, please go to https://learning.bna.com.
2. You will be asked to login.  Please enter your username and password (the one you used to register for the webinar) and click “GO”.
3.You will then be taken to your personalized classroom.  On the left hand side you will see a grey tool bar. Please click on “my classroom”.
4. There, you will be able to click “play” for the webinar(s) that you have purchased.
5. The webinar will not be accessible until the date and time of the webinar.

e webinar.



James “Jim” Koenig is of counsel in the Privacy and Cybersecurity practice at Paul Hastings and is based in the firm’s New York office.Mr. Koenig provides a full range of privacy, cybersecurity and data management regulatory, compliance, investigatory, and counseling legal services, specializing in global privacy compliance; security/cybersecurity and breach response; new data uses relating to the cloud, data analytics (“Big Data”), mobile platforms, digital marketing, social media, de-identification and the Internet of Things, and regulatory investigations and enforcement actions or class-action litigations relating to privacy and data collection, use, retention, and cybersecurity practices.

Mr. Koenig has a business, technology, and legal background and is a recognized authority on privacy, cybersecurity, and data management issues affecting consumer finance, healthcare, telecommunications, and direct and interactive marketing. Mr. Koenig has worked with an array of domestic and international clients on projects involving more than 125 countries. Over the last five years, he has represented clients in the financial services, retail, pharmaceutical/healthcare, cable, telecommunications, car rental, airline, social media, technology, and manufacturing industries, including 35% of the companies currently in the Fortune 100.

Drawing on his experience and reputation with regulators, Mr. Koenig regularly advises companies on compliance practices and through regulatory investigations. His work has included serving as the lead subject matter expert designing compliance and business solutions in a number of the recent high-profile U.S. Federal Trade Commission (FTC) and U.S. Department of Health and Human Services’ Office of Civil Rights (OCR) enforcement proceedings involving social media, mobile, and healthcare companies. Recently, he also served as an expert to the OCR in connection with the agency’s efforts to modify the HIPAA compliance protocols and enforcement procedures, and served as an expert to the Consumer Financial Protection Bureau (CFPB) regarding de-identification of sensitive information. Mr. Koenig also acted as an expert on behalf of the FTC in several landmark cases relating to email privacy and secu¬rity enforcements.

Prior to joining Paul Hastings, Mr. Koenig built and led leading global privacy, cybersecurity/incident response, and data management practices at two global consulting firms and was a co-founder of the International Association of Privacy Professionals (IAPP). Mr. Koenig has also previously held senior marketing, management, and legal positions at QVC, MaMaMedia.com (an internet start-up focusing on children’s education), and another international law firm. He is also a named inventor or co-inventor on six patent applications relating to security and privacy-enhancing technologies.


Hugo Teufel III is Privacy Counsel for Raytheon Company. As part of the Global Business
Services (GBS) legal team, Teufel handles all aspects of privacy and data protection compliance globally within the company. Raytheon Company (NYSE:RTN), with 2014 sales
of $23 billion and 61,000 employees worldwide, is a technology and innovation leader specializing in defense, security, and civil markets throughout the world. Raytheon is headquartered in Waltham, Massachusetts.

In public service, Teufel served at the Department of Homeland Security (DHS) as its Chief Privacy Officer, the first such statutorily mandated position in the federal government. Teufel’s responsibilities as the department’s second Chief Privacy Officer included assuring that the technologies used to protect the United States sustain privacy protections relating to the use, collection, and disclosure of personal information; assuring compliance with fair information practices, as set out in the Privacy Act of 1974; conducting privacy impact assessments of proposed programs; evaluating legislative and regulatory proposals involving collection, use, and disclosure of personal information by the Federal Government;and preparing an annual report to Congress on DHS.

In the private sector, Teufel was a privacy co-lead in PricewaterhouseCoopers’ Advisory practice, where he advised commercial, federal and international clients on privacy and data protection issues.Teufel also practiced government contracts law at the law firms of Hall & Evans, LLP, and McKenna & Cuneo, LLP. Teufel began his legal career in Washington, D.C., clerking for the Honorable Loren A. Smith, Chief Judge, U.S. Court of Federal Claims.

Teufel majored in Economics, and minored in German, at Metropolitan State University of
Denver. He received his Juris Doctorate from the Washington College of Law at the American University, and his Master of Arts in National Security and Strategic Studies from the U.S. NavalWar College. He holds certifications from the International Association of Privacy Professionals.


Pedro Pavón serves as Senior Corporate Counsel for Oracle Corporation in Reston, Virginia. He is on the company’s Cloud and Ad-tech Legal Team and advises executives on commercial, data security, and information privacy risk. Prior to joining Oracle, he practiced law at a national law firm where he advised global companies on information security and data governance, cyber security, data privacy, social media law, and general corporate matters. Before entering private practice, he was counsel to the Assistant Attorney General of the United States at the Department of Justice in Washington, D.C.; attorney advisor and program manager at the U.S. Department of Energy in Washington, D.C.; and attorney advisor at the Department of Justice in Miami, Florida.