About the IAPP

Eduardo Ustaran, CIPP/E

Hogan Lovells

Partner

Global co-head of the Hogan Lovells Privacy and Cybersecurity practice Eduardo Ustaran is widely recognized as one of the world's leading privacy and data protection lawyers and thought leaders. With over two decades of experience, Eduardo advises  multinationals and governments around the world on the adoption of privacy and cybersecurity strategies and policies. Eduardo has been involved in the development of the EU data protection framework and was listed by Politico as the most prepared individual in its 'GDPR power matrix'. 

Based in London, Eduardo leads a highly specialized team advising on all aspects of data protection law – from strategic issues related to the latest technological developments such as artificial intelligence and connected devices to the implementation of global 
privacy compliance programs and mechanisms to legitimize international data flows. 

Eduardo is the author of The Future of Privacy (DataGuidance, 2013), a ground-breaking book where he anticipates the key elements that organizations and privacy professionals will need to tackle to comply with the regulatory framework of the future. 

Eduardo is co-founder and editor of Data Protection Leader, a member of the panel of experts of DataGuidance, and a former member of the Board of Directors of the IAPP. Eduardo is executive editor of European Data Protection Law and Practice (IAPP, 2018), and co-author of Data Protection: A Practical Guide to UK and EU Law (OUP, 2018), Beyond Data Protection (Springer, 2013), E-Privacy and Online Data Protection (Tottel Publishing, 2007) and of the Law Society’s Data Protection Handbook (2004). Eduardo 
has lectured at the University of Cambridge on data protection as part of its Masters of Bioscience Enterprise, and regularly speaks at international conferences. 

Contributions by Eduardo Ustaran

• EU Privacy Law, But Not as You Know It
  Speaker at IAPP Data Protection Intensive: UK 2020
• Don’t forget about the GDPR in 2020
  Speaker at Northwest Arkansas KnowledgeNet: January 28, 2020
• Data Transfer Mechanisms: Where Do We Go From Here?
  Speaker at IAPP Europe Data Protection Congress 2019
• Cookie Consent: What 'Good' Looks Like
  Speaker at IAPP Europe Data Protection Congress 2019
• EU Privacy Law, But Not as You Know It
  Speaker at IAPP Europe Data Protection Congress 2019
• GDPR – A new age for data protection
  Privacy Perspectives
• Binding Corporate Rules—Gold Standard Within Reach
  Speaker at Global Privacy Summit 2019
• European Data Protection, Second Edition
  Author
• Brexit is Coming—Are You Ready?
  Speaker at IAPP Data Protection Intensive: UK 2019
• Brexit – A data protection action plan
  Privacy Perspectives
• Brexit: What Do I Need to Do Now? Ask the Brexperts!
  Speaker at IAPP Europe Data Protection Congress 2018
• Deciphering ‘Legitimate Interests’: Actual Enforcement Cases & Tested Solutions
  Moderator at IAPP Europe Data Protection Congress 2018
• European Data Protection
  Author
• EDPB's common sense approach to the GDPR's territorial scope
  Privacy Perspectives
• Brexit and data protection: Laying the odds
  Privacy Perspectives
• European Data Protection, Second Edition
  
• Making Sense of the UK: Privacy, Brexit and More
  Speaker at IAPP Europe Data Protection Intensive 2018
• Keeping Up with EU Privacy: Never-Ending Drama
  Speaker at Global Privacy Summit 2018
• Privacy in 2018: Expect the unexpected
  Privacy Perspectives
• Legitimate Intelligence in Transparent Democracies
  Speaker at IAPP Europe Data Protection Congress 2017
• Keeping Up with EU Privacy: Never-Ending Drama
  Speaker at IAPP Europe Data Protection Congress 2017
• GDPR Bootcamp
  Speaker at IAPP Europe Data Protection Congress 2017
• Introducing GDPR: A Primer for Asian Professionals
  Speaker at Hong Kong KnowledgeNet: 27 September 2017
• UK's draft GDPR implementation law, the starting point
  Privacy Tracker
• So We Have Brexit: What Now for Data Protection?
  Speaker at Global Privacy Summit 2017
• Despite Brexit, the UK will never be far away from the data protection front
  Privacy Perspectives
• Keeping Up with EU Privacy: Never-Ending Drama
  Speaker at IAPP Europe Data Protection Intensive 2017
• GDPR Bootcamp Sold out!
  Speaker at IAPP Europe Data Protection Intensive 2017
• GDPR Bootcamp
  Speaker at IAPP Europe Data Protection Congress 2016
• Key Concepts
  Speaker at GDPR Comprehensive: London
• Legitimate Bases For Processing
  Speaker at GDPR Comprehensive: London
• So We Have Brexit: What Now for Data Protection?
  Speaker at Privacy. Security. Risk. 2016
• Untying the global dataflows mess
  Privacy Perspectives
• GDPR: Processors in the Firing Line
  Speaker at IAPP Europe Data Protection Intensive 2016
• GDPR Bootcamp
  Speaker at IAPP Europe Data Protection Intensive 2016
• Privacy Shield: The bigger picture
  Privacy Perspectives
• Special Joint Meeting: Mexico City and South Florida
  Speaker at Mexico City, Mexico KnowledgeNet: December 17, 2015
• Special Joint Meeting: Mexico City and South Florida
  Speaker at South Florida KnowledgeNet: December 17, 2015
• Why Europe’s New Privacy Reg Is a Business-Critical Issue
  Privacy Perspectives
• European Data Protection through a Global Lens
  Speaker at IAPP Europe Data Protection Congress 2015
• Why Silicon Valley Should Care About the UK Investigatory Powers Bill
  Privacy Perspectives
• Safe Harbor Postmortem: Schrems Reflects
  Speaker at IAPP Europe Data Protection Congress 2015
• A New Turn in the Safe Harbor Roller Coaster
  Privacy Perspectives
• With EU Privacy Reform, the Marathon Is In Its Final Stretch
  Privacy Perspectives
• Making Privacy-driven Innovation Possible
  Speaker at IAPP Europe Data Protection Intensive 2015
• Dispatch from the Mobile World Congress: Mobile Is the New Frontier for Privacy
  Privacy Perspectives
• Guest Commentary From Eduardo Ustaran, CIPP/E
  Europe Data Protection Digest
• New EU Data Protection Law in 2015? Decisiveness, Flexibility and Direction Are the Answer
  Privacy Tracker
• Reflections from Mauritius for Privacy Pros
  Privacy Perspectives
• Cookie Consent—What's Changed?
  Privacy Perspectives
• Five Reasons To Do BCRs Now
  Privacy Perspectives
• An Honest Recap on Safe Harbor
  Privacy Perspectives
• For Privacy Pros: A Look At Your Job Tomorrow
  Privacy Perspectives
• The Privacy Pro's Guide to the Internet of Things
  Privacy Perspectives
• How Will Obama's NSA Plans Impact European Data Protection Requirements?
  Privacy Perspectives
• Shutting Europe Down Is Not the Way To Defend Privacy
  Privacy Perspectives
• Yes, Consent Is Dead. Further, Continuing To Give It A Central Role Is Dangerous
  Privacy Perspectives
• The Plain Truth About Safe Harbor
  Privacy Perspectives
• What Next for the EU Regulation?
  Privacy Perspectives
• Regulating Technology or Behaviour?
  Privacy Perspectives
• The Impact of PRISM on International Data Flows
  Privacy Perspectives
• The Internet of Things and a Balanced Approach to Regulatory Intervention
  Privacy Perspectives
• UK: Information Commissioner seeks EU legislative changes
  The Privacy Advisor
• UK: Consultation on data sharing launched
  The Privacy Advisor
• EU sues the UK over privacy failings
  The Privacy Advisor
• Parliament Committee issues privacy recommendations
  The Privacy Advisor
• The Privacy Dividend Report
  The Privacy Advisor
• Criminal case against BT being considered
  The Privacy Advisor
• Code planned for airport scanners
  The Privacy Advisor
• Up to £500,000 fines for serious breaches
  The Privacy Advisor
• Report data breaches or face tougher sanctions
  The Privacy Advisor