Privacy + Security Forum 2026

Partners Heather Egan, Hannah Levin, and Ashley Lynam will be speakers at the Privacy + Security Academy’s Privacy + Security Forum taking place May 8–10 in Washington, DC.

Heather will be participating in the AI Vendor Compromise Workshop: Live Tabletop Experience. In this interactive tabletop session, participants will walk through a high‑stakes incident in which a third‑party AI vendor is compromised, allowing a threat actor to manipulate AI‑generated outputs and silently siphon sensitive data into their own infrastructure.

As the scenario unfolds, the attacker pivots into the internal network, stages data for exfiltration, and ultimately deploys ransomware across multiple systems, forcing difficult decisions about containment, recovery, and potential ransom negotiations under regulatory, contractual, and ethical pressure. The simulated crisis then spills into the public sphere, triggering press inquiries, regulatory scrutiny, and rapid‑fire social media narratives that stress‑test your organization’s legal, communications, and executive response playbooks.

Hannah and Ashley will be speaking on the panel The Next Generation of Children’s Privacy Law: What Comes Next. As regulators move beyond the Children’s Online Privacy Protection Act toward risk-based frameworks like the California Age-Appropriate Design Code Act, companies face growing uncertainty around scope, age estimation, profiling, and default settings. This panel will explore the current state of online children’s safety and privacy compliance across overlapping US laws as well as recent and upcoming enforcement and litigation trends.