Drafting and Negotiating Data Processing Agreements Amid Expanding Privacy, Security, and AI Laws

Melissa Krasnow | VLP Law Group LLP

Melissa Krasnow is a Partner at VLP Law Group LLP and is recognized in Chambers in Global Privacy & Data Security and USA – Nationwide Privacy & Data Security: Cybersecurity and USA – Nationwide Privacy & Data Security: Privacy in 2025. Melissa advises companies on incident response, tabletop exercises, and crisis management, security programs and agreements, insurance policy matters, artificial intelligence, privacy and cyber and artificial intelligence governance, privacy policies and terms, data security addenda, data processing agreements, business associate agreements, merger and acquisitions, federal and state artificial intelligence, privacy, and data security laws and artificial intelligence and big data. She counsels companies on HIPAA, FERPA, financial services regulatory laws, state laws (including the California Privacy Rights Act (CPRA)), and the European Union (EU) General Data Protection Regulation (GDPR).

Kenneth K. Dort | Faegre Drinker Biddle & Reath LLP

Kenneth Dort is a preeminent resource on mission-critical data security issues and is consulted often for immediate counsel on high-stakes data breaches, as well as for guidance and strategy on the privacy and other legal implications of new technologies. Ken is a recognized adviser to clients around the world on data security and privacy practices and compliance needs arising under federal, state, provincial and international laws and industry standards. He also is a powerful litigator in the courtroom, a deft negotiator with regulators and a valued counselor on software development and integration.

Over his 30-year career, Ken has focused on the ways that law and regulation frame the development of new technology. He is engaged by some of the world’s largest companies to stem and mitigate major data breaches, including those involving credit card information and employee, customer and patient data. He is called on frequently to create or improve data security and privacy protocols for highly sensitive information, devices and mobile applications. Ken continually monitors the regulatory landscape of artificial intelligence to guide clients on staying in compliance and protecting their assets and data while avoiding risks.

I. GDPR | 1:00pm – 1:30pm

II. PIPEDA | 1:30pm – 2:00pm

Break | 2:00pm – 2:10pm

III. State consumer privacy laws | 2:10pm – 2:20pm

IV. State data security laws | 2:20pm – 2:30pm

V. State artificial intelligence laws | 2:30pm – 2:40pm