About the IAPP

Eduardo Ustaran, CIPP/E

Hogan Lovells

Partner

Global co-head of the Hogan Lovells Privacy and Cybersecurity practice Eduardo Ustaran is widely recognized as one of the world's leading privacy and data protection lawyers and thought leaders. With over two decades of experience, Eduardo advises  multinationals and governments around the world on the adoption of privacy and cybersecurity strategies and policies. Eduardo has been involved in the development of the EU data protection framework and was listed by Politico as the most prepared individual in its 'GDPR power matrix'. 

Based in London, Eduardo leads a highly specialized team advising on all aspects of data protection law – from strategic issues related to the latest technological developments such as artificial intelligence and connected devices to the implementation of global 
privacy compliance programs and mechanisms to legitimize international data flows. 

Eduardo is the author of The Future of Privacy (DataGuidance, 2013), a ground-breaking book where he anticipates the key elements that organizations and privacy professionals will need to tackle to comply with the regulatory framework of the future. 

Eduardo is co-founder and editor of Data Protection Leader, a member of the panel of experts of DataGuidance, and a former member of the Board of Directors of the IAPP. Eduardo is executive editor of European Data Protection Law and Practice (IAPP, 2018), and co-author of Data Protection: A Practical Guide to UK and EU Law (OUP, 2018), Beyond Data Protection (Springer, 2013), E-Privacy and Online Data Protection (Tottel Publishing, 2007) and of the Law Society’s Data Protection Handbook (2004). Eduardo 
has lectured at the University of Cambridge on data protection as part of its Masters of Bioscience Enterprise, and regularly speaks at international conferences. 

Contributions by Eduardo Ustaran

• Brexit is Coming—Are You Ready?
  Speaker at IAPP Data Protection Intensive UK 2019
• Brexit – A data protection action plan
  Privacy Perspectives
• Deciphering ‘Legitimate Interests’: Actual Enforcement Cases & Tested Solutions
  Moderator at IAPP Europe Data Protection Congress 2018
• Brexit: What Do I Need to Do Now? Ask the Brexperts!
  Speaker at IAPP Europe Data Protection Congress 2018
• European Data Protection
  Author
• EDPB's common sense approach to the GDPR's territorial scope
  Privacy Perspectives
• Brexit and data protection: Laying the odds
  Privacy Perspectives
• Making Sense of the UK: Privacy, Brexit and More
  Speaker at IAPP Europe Data Protection Intensive 2018
• Keeping Up with EU Privacy: Never-Ending Drama
  Speaker at Global Privacy Summit 2018
• Privacy in 2018: Expect the unexpected
  Privacy Perspectives
• Keeping Up with EU Privacy: Never-Ending Drama
  Speaker at IAPP Europe Data Protection Congress 2017
• Legitimate Intelligence in Transparent Democracies
  Speaker at IAPP Europe Data Protection Congress 2017
• GDPR Bootcamp
  Speaker at IAPP Europe Data Protection Congress 2017
• UK's draft GDPR implementation law, the starting point
  Privacy Tracker
• So We Have Brexit: What Now for Data Protection?
  Speaker at Global Privacy Summit 2017
• Despite Brexit, the UK will never be far away from the data protection front
  Privacy Perspectives
• Keeping Up with EU Privacy: Never-Ending Drama
  Speaker at IAPP Europe Data Protection Intensive 2017
• GDPR Bootcamp
  Speaker at IAPP Europe Data Protection Intensive 2017
• GDPR Bootcamp
  Speaker at IAPP Europe Data Protection Congress 2016
• Key Concepts
  Speaker at GDPR Comprehensive: London
• Legitimate Bases For Processing
  Speaker at GDPR Comprehensive: London
• So We Have Brexit: What Now for Data Protection?
  Speaker at Privacy. Security. Risk. 2016
• Untying the global dataflows mess
  Privacy Perspectives
• GDPR: Processors in the Firing Line
  Speaker at IAPP Europe Data Protection Intensive 2016
• GDPR Bootcamp
  Speaker at IAPP Europe Data Protection Intensive 2016
• Privacy Shield: The bigger picture
  Privacy Perspectives
• Why Europe’s New Privacy Reg Is a Business-Critical Issue
  Privacy Perspectives
• European Data Protection through a Global Lens
  Speaker at IAPP Europe Data Protection Congress 2015
• Safe Harbor Postmortem: Schrems Reflects
  Speaker at IAPP Europe Data Protection Congress 2015
• Why Silicon Valley Should Care About the UK Investigatory Powers Bill
  Privacy Perspectives
• A New Turn in the Safe Harbor Roller Coaster
  Privacy Perspectives
• With EU Privacy Reform, the Marathon Is In Its Final Stretch
  Privacy Perspectives
• Making Privacy-driven Innovation Possible
  Speaker at IAPP Europe Data Protection Intensive 2015
• Dispatch from the Mobile World Congress: Mobile Is the New Frontier for Privacy
  Privacy Perspectives
• Guest Commentary From Eduardo Ustaran, CIPP/E
  Europe Data Protection Digest
• New EU Data Protection Law in 2015? Decisiveness, Flexibility and Direction Are the Answer
  Privacy Tracker
• One in a Billion?Max Schrems v. Facebook
  Speaker at IAPP Europe Data Protection Congress 2014
• Reflections from Mauritius for Privacy Pros
  Privacy Perspectives
• Regulatory Enforcement: Updates from North America and the EU
  Speaker at IAPP Privacy Academy 2014
• Cookie Consent—What's Changed?
  Privacy Perspectives
• Five Reasons To Do BCRs Now
  Privacy Perspectives
• The Scary World of Nonstop Data Collection
  Speaker at IAPP Europe Data Protection Intensive 2014
• Safe Harbor: American Pie or Eaton Mess?
  Speaker at IAPP Europe Data Protection Intensive 2014
• An Honest Recap on Safe Harbor
  Privacy Perspectives
• For Privacy Pros: A Look At Your Job Tomorrow
  Privacy Perspectives
• The Privacy Pro's Guide to the Internet of Things
  Privacy Perspectives
• How Will Obama's NSA Plans Impact European Data Protection Requirements?
  Privacy Perspectives
• Shutting Europe Down Is Not the Way To Defend Privacy
  Privacy Perspectives
• Yes, Consent Is Dead. Further, Continuing To Give It A Central Role Is Dangerous
  Privacy Perspectives
• The Plain Truth About Safe Harbor
  Privacy Perspectives
• What Next for the EU Regulation?
  Privacy Perspectives
• Regulating Technology or Behaviour?
  Privacy Perspectives
• The Impact of PRISM on International Data Flows
  Privacy Perspectives
• Speaker at IAPP Global Privacy Summit 2013
• Speaker at IAPP Global Privacy Summit 2013
• The Internet of Things and a Balanced Approach to Regulatory Intervention
  Privacy Perspectives
• Speaker at IAPP Global Privacy Summit 2005
• Speaker at IAPP Data Protection Intensive 2012
• Speaker at IAPP Global Privacy Summit 2012
• Speaker at IAPP Data Protection Congress 2011
• Speaker at IAPP Global Privacy Summit 2011
• Speaker at IAPP Data Protection Congress 2010
• UK: Information Commissioner seeks EU legislative changes
  The Privacy Advisor
• UK: Consultation on data sharing launched
  The Privacy Advisor
• EU sues the UK over privacy failings
  The Privacy Advisor
• Speaker at IAPP Global Privacy Summit 2009
• Speaker at IAPP Global Privacy Summit 2008
• Speaker at IAPP Academy 2009
• Speaker at IAPP Global Privacy Summit 2010
• Speaker at IAPP Global Privacy Summit 2004
• The Privacy Dividend Report
  The Privacy Advisor
• Criminal case against BT being considered
  The Privacy Advisor
• Parliament Committee issues privacy recommendations
  The Privacy Advisor
• Code planned for airport scanners
  The Privacy Advisor
• Report data breaches or face tougher sanctions
  The Privacy Advisor
• Up to £500,000 fines for serious breaches
  The Privacy Advisor
• Speaker at Privacy Academy 2013
• Speaker at Global Privacy Summit 2014
• Making Sense of the UK: Privacy, Brexit and More
  Speaker at IAPP Europe Data Protection Intensive 2018