The DPO Universales: Crossing Borders on a Bumpy Road

  • Panel
  • Class Room
  • Thursday 22.05 — 16:00 - 17:15

Organising Institution

DPO Track by Uber

Belgium

  • Academic 1
  • Business 4
  • Policy 1
The legal provisions and the practical implementation of the role of the Data Protection Officer (DPO) differ between different continents or countries. Even within the same jurisdiction, we observe different interpretations of the data protection rules. This panel explores the challenges that DPOs face when functioning in different jurisdictions with different interpretations of their roles, responsibilities, safeguards and liability. What does it mean for a DPO if their degree of independence is more guaranteed in one country than in another? How do multinationals deal with the differences in national legislation regarding personal liability and dismissal protection? And how do these variations influence the positioning of the DPO within the governance structures of organizations, such as in the ‘Three Lines of Defence’ model? In addition, the panel highlights how the DPO function differs globally – not only within the EU, but also beyond – and how companies (including their stakeholders) and supervisory authorities deal with these differences.

Questions to be answered

  1. How do legal definitions and practical implementations of the DPO role differ across countries and even within the same jurisdiction?
  2. What challenges do DPOs face due to varying interpretations of their independence, responsibilities, safeguards, and liability?
  3. How do DPO's in multinational organizations manage inconsistencies regarding personal liability and dismissal protection, and how does this impact the DPO’s role?
  4. In what ways does the DPO function vary globally, and how do companies and supervisory authorities adapt to these differences within and beyond the EU?

Moderator

Carolien Michielsen

Stibbe - Belgium

Carolien Michielsen is a Senior Associate at Stibbe Brussels, specialising in privacy, data protection, digital services, and telecommunications law. She advises clients on complex regulatory, transactional, and litigation matters involving emerging technologies, including cybersecurity, AI, and cloud sourcing. Carolien holds master’s degrees in Law and in IP/ICT Law from KU Leuven.

Speaker

Renato Leite Montero

e& - United Arab Emirates

Renato Leite Monteiro is the Vice President of Privacy, Data Protection and AI at e& and the founder of Data Privacy Brazil. He is also a Fellow at the Oxford Internet Institute (OII). Renato is the Former Global Head of Privacy of X, and also acts as a Professor of Law. He holds a LL.M. from New York University (NYU) and the National University of Singapore (NUS), and he obtained a PhD in Law from the University of São Paulo (USP).

Speaker

Helena Koning

Mastercard - Belgium

Inclusive leader focused on collaboration & execution; pragmatic and optimistic personality; excellent communicator. Architect of strategic data driven change. Seasoned attorney with deep experience in European law, data protection & data governance, banking and administrative law. Experienced litigator in contract law, consumer law, competition law, IP and administrative law. Strong international experience and network (e.g., European Commission, OECD, World Bank). Appreciated speaker and coach.

Speaker

Isabelle Vereecken

European Data Protection Board - Belgium

Head of the EDPB Secretariat, which offers analytical, administrative and logistical support to the European Data Protection Board. The EDPB’s goal is to ensure a consistent application and enforcement of data protection law across the European Economic Area, EEA. Over 20 years of experience in the field of data protection, at national and EU level, in the public and academic sector, I lead a team of 45+ highly skilled data protection lawyers, technologists, communication and administrative staff.