IAPP Privacy. Security. Risk. + AI Governance Global 2026

SEATTLE

6-9 October

Back to conference agenda

Calling an Auditable: California’s New Cybersecurity Audits and Risk Assessments

Thursday, 8 Oct.

16:00 - 17:00 EDT

Beginner level

BREAKOUT SESSIONCYBERSECURITY LAWDATA SECURITYFRAMEWORKS AND STANDARDSLAW AND REGULATIONREGULATORY GUIDANCEU.S. STATE REGULATIONFINANCE AND BANKINGTECHNOLOGYRETAIL

Confused about California’s new cybersecurity audits and risk assessment regulations? Join this deep dive presentation into these regulations, which are coming into effect in 2026 and 2027. Assess the applicability to your business, the specific requirements, and implementation timeline. Get practical tips and pragmatic legal advice with an in-house perspective from two former chief privacy officers and a current in-house privacy and data security leader on what you need to do now to be prepared.

What you will learn:

  • Whether or not your business requires a cybersecurity audit.
  • If so, who can do it and what must it cover. 
  • What you need to do now to prepare.

Moderator and speakers

headshot of Sam Castic

Sam Castic

AIGP, CIPP/US, CIPM, FIP, PLS

Partner

Hintze Law

generic profile silhouette

Susan Koeppen

CIPP/US

FLEX Attorney

FLEX by Fenwick

generic profile silhouette

Jacob Sirotkin

Director, Privacy Legal

lululemon