Steve Holt

Partner, Head of EMEIA Financial Services Information Security Practice, EY

Background

  • Partner leading our Financial Services IT Risk and Assurance practice. He has more than 20 years experience in IT audit, IT risk, IT internal audit, information security, IT regulatory and data projects.
  • He is a Chartered Accountant, Certified Information Systems Auditor (CISA), a PRINCE 2 Practitioner, member of the IAPP and holds the ISEB certificate in Data Protection.

Experience

  • Led a number of data privacy and data leakage reviews at financial services clients to assess compliance with the Data Protection Act 1998 and PRA/FCA expectations.
  • Steve has expertise in PRA/FCA IT regulatory requirements over the last 15 years. He has experience of leading technology aspects of S166 Skilled Persons Reviews, completing systems authorisation forms and advising clients on PRA/FCA consultation policies impacting IT (e.g. Cyber questionnaire).
  • Steve leads globally our services around supplier risk management. He has presented to a number of FS clients and regulators on the topic of IT operational risk, data privacy and supplier risk management.
  • Steve has been involved in helping scope and assess the technology and data aspects of client money and payment systems.

Jonathan Kewley

Senior Associate, Clifford Chance

Jonathan is an technology lawyer based in London, with a specialist focus on data privacy and cyber security projects. He has acted for some of the world’s largest technology and financial services companies and governmental organisations on critical cyber security and data issues, including GDPR implementation. Jonathan regularly advises on highly technical data-driven mandates, including artificial intelligence, blockchain, fintech and internet of things.

Paul McCormack

Senior Legal Counsel, Global Data Privacy, Digital and Cyber, HSBC

Paul McCormack is a Senior Legal Counsel, Global Data Privacy & Digital within HSBC’s Group Legal team. Paul has responsibility for advising the Bank on global data privacy, cyber and digital risks, including external government and industry policy / liaison in the context of information sharing, and providing support to the Bank’s 4 global businesses (with specific focus on HSBC’s Retail Bank and Private Bank businesses). Paul has been leading on preparation and implementation of GDPR for HSBC.

Paul joined HSBC from DLA Piper’s London office in April 2014, where he worked as an Associate within DLA’s data privacy, technology and outsourcing team focusing on global data protection, cyber security and technology related matters.

Paul is a regular speaker on data protection, digital and cyber security related issues. He has published a number of articles and journals, including acting as the co-Chair of the legal and regulatory working group for the Open Banking Working Group, and Chair of FS-ISAC’s Cyber Working Group.

Brice Schwey

Senior Privacy & Data Protection Manager, RSA

For the past 7 years, I have been specialising in Privacy and Data Protection, and I have worked in the Internet, Telecom and Insurance industries.

I have advised in the areas of Online Advertising, and Behavioural Analytics at Oracle Maxymiser, a global software company.

Then I developed my skills at Telefonica Digital on a wide range of subjects, such as Geo-Location and Big Data Analytics, Biometrics, Mobile Apps and privacy technologies.

Currently, I provide legal and regulatory support at RSA Insurance with a focus on the preparation for the General Data Protection Regulation.

Matthew Whalley

Director, Legal Risk, EY

Background

  • Matt is a Director within the UK FSO Legal team. He has extensive experience delivering large and small, high-profile projects within the Financial Services sector.
  • He founded the UK’s first legal risk practice at Berwin Leighton Paisner and is former Head of Legal Operations at HSBC Group Management Office Legal.

Experience

  • Privacy Risk Control Framework for UK High Street Bank: Designed and implemented a GDPR compliant Privacy Risk Control Framework, including privacy risk taxonomy, target design control environment and control testing matrix.
  • Deep-dive Privacy Risk Assessment in advance of FCA license application: Led a risk based review of data protection exposure for a UK challenger bank, in advance of application to FCA for license.
  • Legal risk assessment for leading global insurer: Designed and implemented EMEA legal risk framework. Led the first legal risk identification and assessment exercise for UK business lines: Property Casualty, Life and General Lines. Control assessment and augmentation plan.
  • Company Secretariat Operating Model: Review current and target Op Model for CoSec department in advance of listing. Model action plan to achieve required Operational state.
  • First global legal risk framework for global bank: Designed and implemented first global legal risk framework across 53 jurisdictions and four global business lines: Global Banking and Markets, Insurance, Retail Banking Wealth Management, Commercial Banking, and Corporate functions.

Peter Wright

Managing Director, DigitalLawUK

Peter Wright is a Solicitor and leading expert in Data Protection, Cybersecurity and Social Media Law.  As Managing Director of DigitalLawUK, he advises clients from across the UK, Europe, Middle East and North America and has a strong following in the creative and digital sector. Clients include professional services firms, financial services and international retailers.

Shortlisted in the 2016 Law Society Excellence Awards, DigitalLawUK is the only specialist law firm in the UK to provide advice solely on Data Protection, Cybersecurity, Social Media Law and E – Commerce, advising corporate clients on the conduct of their business online. Through the innovative use of a smartphone Apps, a Podcast, social media and interacive training & education, DigitalLawUK has pioneered the use of technology to market and deliver legal services to its clients.

Prior to opening DigitalLawUK in 2014, Peter Wright advised HM Government on Data Protection and Freedom of Information Act matters. He is presently Chair of the Law Society’s Technology & Law Reference Group and is the Law Society Council Member for Yorkshire.

A sought-after speaker, Peter Wright has led seminars or spoken at numerous Conferences and events including the British Legal Technology Forum, the European Legal Cyber Security Forum, the London Law Expo, the Policy-UK Forum, the International Festival of Business and Chambers of Commerce. He regularly  speaks at events for the Law Society and also for practitioner groups; including the Commerce and Industry Group, the Risk and Compliance Conference,  the Law Management Section and the Sole Practitioners Group. He has also presented for Local Law Societies including Sheffield, Manchester, Exeter and Leeds. He has presented internationally for the European Young Bar Association, the American Bar Association, Hardwiring Freedom at Internet Days 2015 and at CPDP Computers, Privacy & Data Protection Brussels Conference 2017.

Peter is author of the Law Society Cyber Security Toolkit published in 2016 and hosts the DigitalLawUK podcast.

You can follow Peter on Twitter at @DigitalLawUK and follow his blog at www.DigitalLawUK.com. You can also download the DigitalLawUK App free for the iPhone.

Stuart Corrigall – Advisory Board

Director and Head of Product Structuring in EMEA, BlackRock

Stuart Corrigall, BlackRock, Director and Head of Product Structuring in EMEA. Product Structuring is responsible for providing regulatory and strategic advice in relation to the structuring and range management of all BlackRock and iShares funds in EMEA, across the UK, Ireland, Luxembourg and Switzerland.

Stuart is a qualified solicitor. He spent a decade in private practice before joining BlackRock from international law firm Eversheds. Stuart has also worked at KPMG and spent secondments with M&G Investments and offshore law firm Mourant Ozannes. Stuart is a UCITS and AIF product structuring and regulatory expert and has advised industry groups, regulators, ESMA and the European Commission on various asset management matters and is a regular speaker at industry conferences.

Stuart holds a Law LLB (Hons) degree from the University of Reading and a LPC Diploma from The College of Law. He qualified as a solicitor in 2003 and is a member of the Law Society of England and Wales.

Richard Gardiner – Advisory Board

Head of Public and Regulatory Affairs, Federation of European Securities Exchanges (FESE)

Richard Gardiner was appointed Head of Public and Regulatory Affairs at the Federation of European Securities Exchanges (FESE) in March 2015. Richard is currently responsible for coordinating and strengthening political and public support for FESE’s work on the key issues and priorities. As the the European lobbying organisation of exchanges, FESE ensures that the exchange industry retains a strong voice and positive representation.

Previous to this role, he was the Head Equities & Derivatives at the Federation of European Securities Exchanges (FESE) since January 2014, where he was responsible for coordinating the work of the FESE Equities & Derivatives Committees which focus on the technical work with regard to all legislative proposals covering these asset classes (e.g. MiFID/R, Market Abuse Regulation, Benchmarks, among others). Richard joined FESE in 2010 as Junior Policy Officer from which he was promoted to Policy Adviser in January 2011.

An Irish national, Richard holds a degree in International Arts from University of Dublin (UCD) and a master degree in Political Communication from Dublin City University (DCU). He speaks English and French.

Roland Nattrass – Advisory Board

Senior Manager Global & European Regulatory Developments, HSBC Holdings

Roland is a Senior Manager at HSBC Group HQ advising on global and extra-territorial regulatory developments. Roland has been extensively involved in HSBC’s implementation programme for the Individual Accountability Regime. Roland is a senior financial services regulatory lawyer with 15 years experience advising banks, broker-dealers, investment managers and hedge funds on regulatory strategy, implementing regulatory developments, compliance and enforcement matters. Prior to HSBC he worked at Societe Generale, in private practice and at the Australian regulator.

Amanda Pinto QC – Advisory Board

Barrister, 33 Chancery Lane

Tim Waller – Advisory Board

Deputy General Counsel, Paysafe

James Witt – Advisory Board

Managing Director & Managing Counsel, BNY Mellon Investment Management

James is a managing director in BNY Mellon’s investment management legal department.  He is responsible for the European legal functions of a sub-investment grade investment manager, the EMEA investment management wholesale distribution business and a Luxembourg AIFM.  His practice covers anticipating and adapting his client’s businesses to regulatory change, strategic advisory matters, structuring products, contracting and commercial matters in the investment management arena.  He has been with BNY Mellon since 2010.  James qualified as a solicitor in 2002 and, prior to joining BNY Mellon, worked in private practice specialising in investment management, regulatory matters, capital markets and securitisation.