At the recent PrivSec Global event, Sonia Cheng, Senior Managing Director and EMEA Head of Information Governance & Privacy at FTI Consulting, led a panel with Ahmed Baladi, Privacy & Cybersecurity partner at Gibson, Dunn & Crutcher and Linda NiChualladh, Head of Privacy (Legal) at Citi.
The session covered the underlying risks and considerations associated with data in M&A transactions and the skills needed to brave a complex M&A data landscape.
For the last 10 years, while global M&A activity has been booming, the volume of data used by businesses has also exploded. With the advent of new technologies and advancements in digital transformation, the data universe will reach 163ZB (zeta bytes) by 2025. This increase in data combined with intensifying global data protection regulations is introducing new responsibilities and elevated risks around M&A activity. During the session, the panellists set the stage by discussing these increased risks and the implications of established and emerging data privacy laws including the GDPR, California Consumer Privacy Act, California Privacy Rights Act, Brazil’s General Data Protection Law and others.
Further complicating the issue is that operationalising privacy compliance at scale is a significant challenge for global multinational corporations. Organisations may be tempted to ‘just standardise’ on GDPR, but data protection legislation and broader legal context and cultural value systems must be considered to achieve an effective privacy programme. Understanding the kind of data being used, and critically why it is being processed, will be key to achieving alignment...
Download the full paper below.