WEB CONFERENCE

Personal data as dual-use technology: Privacy professionals face new export controls

Published: 26 Jan. 2026

Register now
Broadcast date: 19 February 2026
Time: 09:00–10:00 PST, 12:00–13:00 EST, 18:00–19:00 CET

A growing number of U.S. legal initiatives now treat personal data as a “dual-use” technology—an asset that can be exploited not only for commercial purposes but also for intelligence and national security operations.

This webinar introduces privacy professionals to the national security logic behind this shift and what it means for compliance teams. It provides a practical overview of the expanding U.S. export-control and national security framework, including the Bulk Data Rule, which adds DOJ to the list of U.S. privacy regulators. The session highlights compliance challenges such as broad definitions of “covered persons,” “data brokerage,” and “bulk” thresholds, including application even where data is anonymized or encrypted.

Key takeaways:

  • Why personal data is being reclassified as “dual-use” technology.
  • How export controls and sanctions logic now intersect with privacy.
  • New compliance integration of privacy, cybersecurity, and national security teams.

Eligible CPEs: AIGP, CIPP/A, CIPP/C, CIPP/E, CIPP/US, CIPM and CIPT.

1.0 CPE credits

Contributors:

Nigel Cory

Director, Crowell Global Advisors

Samm Sacks

Cyber Policy Fellow, New America; Senior Fellow, Yale Law School's Paul Tsai China Center

Peter Swire

Professor Georgia Tech & Senior Counsel, Alston & Bird LLP

CIPP/US

Tags:

Data securityLaw and regulationU.S. federal regulation
WEB CONFERENCE

Personal data as dual-use technology: Privacy professionals face new export controls

Published: 26 Jan. 2026

Register now

Contributors:

Nigel Cory

Director, Crowell Global Advisors

Samm Sacks

Cyber Policy Fellow, New America; Senior Fellow, Yale Law School's Paul Tsai China Center

Peter Swire

Professor Georgia Tech & Senior Counsel, Alston & Bird LLP

CIPP/US

Broadcast date: 19 February 2026
Time: 09:00–10:00 PST, 12:00–13:00 EST, 18:00–19:00 CET

A growing number of U.S. legal initiatives now treat personal data as a “dual-use” technology—an asset that can be exploited not only for commercial purposes but also for intelligence and national security operations.

This webinar introduces privacy professionals to the national security logic behind this shift and what it means for compliance teams. It provides a practical overview of the expanding U.S. export-control and national security framework, including the Bulk Data Rule, which adds DOJ to the list of U.S. privacy regulators. The session highlights compliance challenges such as broad definitions of “covered persons,” “data brokerage,” and “bulk” thresholds, including application even where data is anonymized or encrypted.

Key takeaways:

  • Why personal data is being reclassified as “dual-use” technology.
  • How export controls and sanctions logic now intersect with privacy.
  • New compliance integration of privacy, cybersecurity, and national security teams.

Eligible CPEs: AIGP, CIPP/A, CIPP/C, CIPP/E, CIPP/US, CIPM and CIPT.

1.0 CPE credits

Tags:

Data securityLaw and regulationU.S. federal regulation

Related resources

IAPP Global Legislative Predictions 2026

RESOURCE ARTICLE

Data Governance Act: Mapping the Interplays with the GDPR

INFOGRAPHIC

AI Governance Vendor Report 2026

REPORT

US State Privacy Legislation Tracker

TOOLS AND TRACKERS