Vivienne Artz – Conference Chair

Chief Privacy Officer, Thomson Reuters

Vivienne Artz joined Thomson Reuters as the Chief Privacy Officer in November 2017, based in London, leading the global Privacy Team and overseeing global privacy strategy and practice at Thomson Reuters.

Previously, Vivienne was a Managing Director and Global Head of Privacy Legal and Head of International for the Intellectual Property and Technology Law Group at Citi in the General Counsel’s Office in London. Prior to joining Citi in 2000, Vivienne worked in private practice in London.

Vivienne chairs the International Regulatory Strategy Group Data Working Group and sits on the European Advisory Board of the International Association of Privacy Professionals (IAPP).  Until recently, Vivienne was the chair of the AFME Data Protection Working Group, engaged in the UK Finance Data Protection Working Group, and co-chair of the IAPP Knowledge Net for the United Kingdom.

Vivienne is the current President of Women in Banking and Finance, having been awarded the “Champion for Women” Award at the Women in Banking and Finance Awards for Achievement 2016.  Vivienne has many years of experience leading a broad range of diversity initiatives and groups both within firms and across sectors.

JP Buckley

Partner, Shoosmiths LLP

JP is a Partner and heads the Privacy, Data & Cyber Group at national law firm Shoosmiths LLP.

With a close understanding of the regulators’ agenda, he handles a wide range of information law work including data protection, cybersecurity, e-commerce, direct marketing, data subject access and freedom of information. In recent years he has helped a wide range of clients, including multi-national retailers, financial services institutions, and major operators in the technology, automotive, transport and airline sectors successfully audit, plan for and execute strategies to comply with relevant data laws, wherever in the world they operate.

This experience and depth of insight across multiple industries, makes him a sought-after adviser for Boards on issues including data loss prevention, cybersecurity risk assessment and audits, global data transfers, and detailed incident response planning.

A skilled and calm communicator, he advises widely on preventative strategies and the practical actions companies can take to strengthen their operational processes (particularly cross-border), as well as advising on the right steps to take in the event of a data breach or cyber attack.

JP joined Shoosmiths in May 2017, having spent over 14 years at DLA Piper.

Anastasia Fowle

Partner, Shoosmiths LLP

Anastasia is a Partner and joint head of the Privacy, Data & Cyber Group at national law firm Shoosmiths LLP.

A specialist in data protection compliance, she advises on all aspects of privacy law, with particular focus on complex marketing strategies, supply chain management and rapid response on breach and security issues. Anastasia has sector expertise in transport/automotive, retail/leisure and motorsport.

Anastasia’s broad experience of private practice and general counsel in house roles, gives her a refreshing ‘both sides of the fence’ perspective that enables her to cut through to commercial realities. Having sat on the Executive Committee Board for an F1 team, she has an acute understanding of the importance of delivering pragmatic, solution driven and commercially sensible advice.

In addition to advising on complex data protection issues she has a full hinterland of non-contentious and contentious experience including IP, commercial agreements, corporate transactions, digital media, commercial/corporate strategy (domestic and international), brand and reputation management, advertising and marketing strategies, cross border litigation and has initiated and conducted proceedings before the High Court, OHIM, FIA International Court of Appeal, UK Trade Mark Office and Nominet.

Anastasia qualified as a solicitor in 2000, working at US law firm Dorsey & Whitney (London) until her move to Shoosmiths in 2009.

Sherif Malak

Partner, Shoosmiths LLP

Sherif is a Partner in the Privacy, Data & Cyber Group at national law firm Shoosmiths LLP.

Regarded as the ‘legal guru’ in direct marketing and e-Privacy, Sherif regularly advises major corporates on their marketing strategies and tactics in the light of enhanced privacy regulation, devising effective and compliant ways to navigate access to worldwide markets, incorporating e-commerce, social media and digital marketing channels. Clients pay testament to his ability to identify and navigate pathways that deliver robust compliance for customer data, whilst respecting the distinctive ethos of their brand to its customers.


Sherif’s background is eight years as a specialist privacy, publishing and digital media lawyer, with an intricate knowledge of UK and international consumer rights law as well as practical experience of scaling up creative concepts to tap global markets. His experience includes drafting data-centric technology agreements including in relation to AdTech, IoT, APIs, social and mobile, advising on legal compliance issues in relation to Pottermore (the digital home of the Harry Potter books) and drafting and negotiating website and App development agreements. This background gives him a strong practical context for advising business on their data, in that he brings an understanding of the commercial end game.

He delivers legal briefings for clients and the industry, including the Direct Marketing Association, and has lectured on publishing law to masters students at University College London. He is a member of the Society for Computers & Law and recent work includes handling a data security breach for a high street and e-commerce retailer.

Sherif trained with a US firm in London between 2007 and 2009. He moved to boutique publishing and digital media specialists Laurence Kaye Solicitors in 2010 before joining Shoosmiths in 2013.

Nirvana Farhadi

Global Head, Financial Services RegTech, Risk & Regulatory Compliance Affairs, Hitachi

As the Global Head, Financial Services RegTech, Risk & Regulatory Compliance Affairs, for Hitachi, Nirvana is the business owner and strategic leader for Hitachi’s Financial Services RegTech business. A thought leader and pioneer in the Financial Services RegTech sector, she is a global compliance, operations and risk expert across multiple FS sector Regs and jurisdictions.

Claire Robson LLM

Head of Governance Legal and Compliance, Great Ormond Street Hospital Children’s Charity

Yukiko Lorenzo

Senior Managing Counsel Privacy and Data Protection, Mastercard

Yukiko Lorenzo is Senior Counsel, Privacy and Data Protection at Mastercard. She is responsible for privacy matters related to Mastercard’s Processing Business in all regions and other business lines. Prior to joining Mastercard, Yukiko worked as privacy counsel for a global bank in London, director for international business planning at an international credit reference agency in Chicago and policy analyst for law firms in Washington, D.C. Yukiko is qualified as a solicitor in England and Wales.

Helen Woollett

Group Compliance Counsel & Data Protection Officer, The Body Shop

Andrew Cox

Head of Data Privacy, SNC-Lavalin

Natalie Salunke

Vice President & Head of Legal – Europe, FLEETCOR Technologies Inc.

Natalie is the Head of Legal for Fleetcor, a global provider of specialised payment products and services to commercial fleets, major oil companies and petroleum marketers. She is a member of the UK and European management teams and plays a strategic role in advising the business on a variety of legal matters and strategic developments across the UK, Europe, Asia and Australasia. Prior to her role at Fleetcor, Natalie carried out similar roles for the US’s largest car rental company, Enterprise Rent-A-Car, and for US-listed cloud software provider, NetSuite (now part of Oracle), and was Group Head of Legal and Company Secretary of Venda, a UK-based eCommerce SaaS provider. In these roles she has been responsible for all company legal matters including adopting an advisory role in relation to the group’s shareholders, board of directors and executive management. Her three year tenure at Venda subsequently culminated in her leading the successful sale of the business to NetSuite and had her preparing the business for an IPO, advising on various fundraising rounds and debt restructurings, and working on key commercial projects for the business. Natalie became Head of Legal at Venda at the age of 27. Before then, she worked in Travelex’s legal team based in London, having trained at international city law firm, Taylor Wessing.

Johanna Pimentel Sanchez

Executive Director, EMEA Privacy Counsel, JPMorgan

Johanna Pimentel is currently an Executive Director and the EMEA privacy counsel for J. P. Morgan. Prior to joining J.P Morgan in 2013 she has held similar roles at Ericcson, Western Union and Orange. She has been focusing on Privacy for over 10 years, with broad experience concerning large multinationals in the areas of IT and Telecoms, E-commerce, Mobile, Mobile payments and financial sector on both B2C and B2B offerings. Johanna is participant on Data Protection Groups at AFME, BBA and CBI, as well as a Data Protection and London Committees of the Society for Computers and the Law.

Ian Evans

Managing Director, EMEA, OneTrust

Nigel Houlden

Head of Technology Policy, ICO

Evie Kyriakides

Chief Data Protection Officer and Global Digital, Privacy and Security, Associate General Counsel , Mars Incorporated

Richard Merrygold

Director of Group Data Protection, Homeserve

An experienced Data Protection practitioner, Richard has spent the last 9 years working across healthcare, pharmaceutical, technology and financial service sectors. A firm believer in engaging on an operational level in addition to key stakeholders in Compliance and Legal he takes pride in building sustainable privacy frameworks, providing real-world, workable solutions to a wide range of privacy related challenges.

Richard is currently Group Director of Data Protection and DPO for HomeServe plc and is responsible for privacy compliance across the UK and European businesses, he is also a regular speaker and commentator on data protection and privacy matters.

Catie Sheret

General Counsel and Company Secretary , Cambridge University Press

Naomi Springate

Group Security Director, Lloyds Banking Group

Steve Wright

Data Protection & Information Security Officer, John Lewis Partnership