Noemí is a Spanish qualified lawyer with over 19 years of Privacy experience. She started her career in top-tier Law Firms (Clifford Chance, DLA Piper, Allen & Overy) in Madrid, to then move on to being an in-house Privacy Lawyer at J&J also in Madrid, where she had a regional role. She has lived in Munich for the past 4 years, where she had a global Privacy role at Novartis and, recently, she´s relocated to London, for the role of Global Head of Data Privacy at Roofods Ltd. (Deliveroo).
Her experience within Privacy goes from regulated sectors such as the pharma world, to new technologies, AI, telecommunications, digital transformation, anonymization, etc.
She is CIPP/E certified. Also, certified by the SCCE as a Compliance professional.
Noemí speaks 6 languages, has written many articles on Privacy and is a frequent speaker at Privacy conferences internationally.
Responding effectively to data subject access requests (DSARs) can be challenging. Complex requests, especially from current or former employees, often require handling a wide range of data (often sensitive) across the enterprise.
Whether it’s wading through the review process of thousands of emails, baring the cost of external counsel, or working with IT to ensure you have all the personal data you need from various (tricky to collect / legacy / remote) data sources, employee DSARs can soon become an extremely challenging exercise to fulfil.
Join our expert panel to discuss key considerations when responding to employee DSARs and how technology can help fulfil complex requests.
Host: Steve Wright, Partner, Privacy Culture
Noemi Alonso Calvo, Senior Director, Privacy Counsel, bluebirdBio, GmbH
Bradley Tosso, Assistant Information Commissioner, Gibraltar Regulatory Authority
Filipe Lousa, ECPC-B, Director of Privacy and Compliance, Globalization Partners
It is estimated that up to 70% of an organisation’s unstructured data is redundant, obsolete and trivial, which creates enormous risk to potential cyber threats, as well as exposure to regulations such as the GDPR for non-compliance in handling and deleting data accordingly. Data you do not have cannot be breached, it isn't discoverable in litigation or investigations, and it doesn't require any efforts to store, secure, or manage effectively.
Join our expert panel for an enlightening discussion, plus essential tips and techniques to keep your house in order. We’ll cover a recap on the Data Retention requirements in the GDPR, strategies for operationalising data retention and minimisation, and practical hints and tips from our expert panel.
Host: Jennifer Riggins, Tech Marketing Consultant, Tech Storyteller, SEO Copywriter, eBranding Ninja, Freelance Marketing and Creative Services
Noemí Alonso Calvo, Senior Director, Privacy Counsel, bluebirdBio, GmbH
Glen Hymers, Head of Data Privacy and Compliance, Data Privacy and Compliance Team, CDIO Directorate, Cabinet Office
Dominic Johnstone, Information Governance Consultant, Aston Chartwell Associates