Fighting Fire with Fire: How to Manage Incendiary Third-Party Risks
Thursday October 5th, 2023
2:00 p.m. to 3:00 p.m.
Ryan Smyth, Managing Director, FTI Consulting
Jim Gregoire, Director, Rivian
Christi Perri, Senior Manager, Office of Privacy, Toyota North America
With the continued reliance on SaaS and cloud-based tools, third-party risk has the potential to spread like wildfire at a company without critical safeguards in place. Risks such as insufficiently trained personnel, overly broad access (physical and logical), and indefinite data retention following the end of the vendor’s service provision need to be managed through clear requirements, comprehensive due diligence, and effective contracts. Recent changes in the privacy world, such as the explosion of generative AI, the broadening of terminology such as data selling/sharing, and the introduction of new state privacy laws, threaten to pour fuel on this fire. In this session, we will discuss the new and changing risks associated with the use of vendors, affiliates, and partners resulting from recent developments in the privacy space and offer recommendations on equally hot and effective measures to identify, track, and meaningfully mitigate these risks.
What you will learn:
- Better understanding of the emerging privacy risks related to third-party data sharing.
- Practical advice to enhance your company’s third-party risk management program.