ESPC Annual Meeting
Date: September 11, 2012
Location: Morrison & Foerster, LLP
2000 Pennsylvania Avenue, NW
Washington, DC 20006
9:00 am - 9:30 am - Keynote #1
The Ever-Changing Privacy Landscape and the Role of the Privacy Professional, by J. Trevor Hughes, CIPP, President and CEO, International Association of Privacy Professionals
9:30 am - 10:15 am
Session Title: Important Global Privacy Updates for ESPs
Rick Buck, CIPP, Head of Privacy, GSI/eBay
J. Trevor Hughes, CIPP, President and CEO, International Association of Privacy Professionals
Compliance with legislative and self-regulatory standards is increasingly complex, with varying, and changing, laws and self-regulatory regimes around the world. This session will review the current status and projected changes on the myriad of privacy-related issues globally, focusing on the most important ones for ESPs.
10:15 am - 11:00 am
Session Title: Cloud Services: Discussing the Implications of Global Privacy Laws on Cloud Providers
Sweeney Williams, Privacy Manager, Eloqua
Navigating the litany of privacy regulations and controls around the world can be a daunting task for any company. For companies that provide cloud platforms, the task becomes significantly more difficult. Datacenter and staffing locations must be considered in relation to EU transfer regulations; data security must be built into systems to ensure complete separation of client data; breach notification laws must be considered for multiple entities; and contracts must take into account controller/processor relationships as they apply to the client, the provider, and subprocessors for each party. This discussion will address a number of items to consider when providing a cloud-based service to clients located around the world. Attendees will leave the session with a strong understanding of the challenges associated with cloud computing in a world where differing views on privacy govern local laws.
11:00 am - 11:30 am - Coffee Break and Networking
11:30 am - 12:15 pm
Session Title: Do-Not-Track: What It Is, Where It Stands, and What It Means for Your Company
James Campbell, CIPP, Managing Director, Digital Policy Group
Shane Wiley, CIPP, Vice President of Privacy and Data Governance, Yahoo!
Steven Vine, General Counsel and Chief Privacy Officer, PulsePoint
Do-Not-Track remains one of the hottest privacy topics of the year. The White House, Federal Trade Commission, advocates, browser developers, and even industry insiders have all come out in support of "DNT." Unfortunately, there is little agreement or understanding of what DNT really means. Who wants it? What will it really do? What are the issues? How does it affect ME? In this session, we will review the origins of DNT, summarize how browsers and other technical vendors are responding to the call for DNT, review industry efforts to formalize a technical and policy spec in the W3C, discuss the likely outcomes, and discuss what DNT may mean for ESPs, mobile and social messaging, and online advertising.
12:15 pm - 1:00 pm - Keynote #2
Email Marketing Business Trends and Outlook, by Ryan Phelan, Vice President of Strategic Services, BlueHornet
1:00 pm - 2:00 pm - Lunch
2:00 pm - 2:45 pm
Session Title: Mobile Messaging Compliance Primer
Alex Krylov, CIPP, Compliance Analyst Lead, Experian
Our mobile devices are our most personal inboxes. And they are expensive inboxes. We pay a premium for every message, minute, and megabyte we use in our daily lives. The last thing we want as consumers is to pay for things we neither want nor need. When comparing the fundamental differences between abuse in the email space and abuse in the mobile space, we find that an email spammer's goal is to get into your inbox, and a mobile scammer's goal is to get onto your phone bill. The goal of this session is to describe the nature and goals of the mobile industry's self-regulatory efforts to date. We will examine the history of abuse in the mobile messaging space and discuss the development of MMA Consumer Best Practices and the CTIA's Monitoring and Enforcement framework. Attendees will come away with a fundamental understanding of disclosure, consent, and privacy practices advocated by the MMA and enforced by major U.S. wireless carriers.
2:45 pm - 3:30 pm
Session Title: The ESPC Information Security Best Practices - What Do They Mean to Your Business in Practical Terms?
Andy Kindred, Security Analyst, Acxiom
Dennis Dayman, Chief Security and Privacy Officer, Eloqua
Late last year the ESPC released its "Information Security Best Practices," which describe the information security principles that ESPC members believe are appropriate for companies in the email service provider industry. The ESPC believes that strong information security practices are essential to maintain trust in, and the viability of, the email ecosystem and to encourage the industry to adopt them. In this session, we will provide guidance to address the intent of the document, implementation strategies, and real-world issues that tend to come up for IT professionals in a dynamic ESP environment. We also will articulate what it would take to reasonably demonstrate to an auditor or a regulator that your company is in compliance with the best practices and with general FTC data security standards.
3:30 pm - 4:00 pm - Coffee Break and Networking
4:00 pm - 4:45 pm
Session Title: "Not on the List:" Staying in the Inbox and off the Blacklist
Spencer Kollas, Director of Global Deliverability Services, Experian/CheetahMail
Just when you thought deliverability was becoming easier, along came engagement filtering and ISPs' increasing use of blacklists like Spamhaus. This session will focus on techniques you can implement today and tools to help you stay in the Inbox and avoid blacklists. Should you confirm all of your new non-transactional subscribers? What about eliminating e-appends or third party affiliates? Should you be behaviorally targeting inactive recipients differently than engaged ones? Hear how you can improve ROI by staying in the Inbox.
4:45 pm - 5:30 pm
Session Title: The Nature of International ISP Relationships and How to Nurture Them
Andrew Bonar, Worldwide Director of Deliverability, EmailVision
No email is effective if it does not arrive successfully in your recipients' inboxes. Nurturing relationships with ISPs in China, Russia, Regional Europe, and further afield can be challenging. Large-scale deliverability remains a challenge for even the most reputable ESP, and when crossing borders, the hazards increase. Language barriers, local sensitivities, "exotic feedback loops," and regional blacklists – these are among the many critical issues that organizations must be prepared to confront and address to avoid crippling results. In this session, Andrew Bonar will share his experience and offer advice on overcoming the challenges of international email deliverability issues. He will discuss approaches to developing and nurturing relationships with ISPs in China, Russia, Regional Europe, and further afield and share insights on the additional resources and approaches that will help you ensure that your messages arrive at their destinations.
5:30 pm - 6:30 pm - Reception
Full Agenda | Short-form Agenda