The AI Governance & Strategy Summit – New York

Mark Jaffe is Rivian’s Chief Ethics, Compliance and Privacy Officer. He leads the Rivian ethics, compliance and privacy program which includes ethical culture, compliance oversight, privacy, and investigations. He leads a team of 16 people which includes privacy professionals, lawyers, compliance professionals, and investigators responsible for developing and implementing Rivian’s ethics, compliance and privacy programs and to investigate allegations of employee wrongdoing. Mark and his team work on issues related to privacy, information governance, cybersecurity, artificial intelligence, and data ethics.
Prior to joining Rivian, Mark was Senior Vice President for Privacy at Teleperformance, a global business process outsourcer with over 400,000 employees operating in over 80 countries. At Teleperformance, he was responsible for a team of privacy professionals building and scaling a global privacy program. While at Teleperformance, Mark spent almost two years in Singapore managing privacy issues in the Asia Pacific region. During his time at Teleperformance, he also managed privacy issues in the Americas and Europe, Middle East, and Africa and was asked to begin creating a compliance program prior to leaving the company in late 2020. Prior to joining Teleperformance, Mark spent 17 years at AT&T in global privacy roles as well as global compliance and ethics roles.
He is a frequent speaker on a variety of topics related to ethics, compliance and privacy. Mark earned his B.A., cum laude, from Duke University and his J.D., cum laude, from Northwestern University.

Kevin Fumai is an Assistant General Counsel at Oracle, where he serves as the global lead for cloud engineering and consulting and as a member of the AI Working Group.  He sits on the boards of non-profits like the IAPP, and is an executive editor for the forthcoming textbook for the AI Governance Professional certification.

Dan Kagan advises digital health, telehealth, life sciences, and healthcare technology clients on healthcare regulatory compliance and health privacy and security issues, including regulatory considerations regarding the use of artificial intelligence and machine learning within healthcare and life sciences companies.
He has particular experience representing healthcare providers, life sciences companies and digital health businesses, counseling them on a wide range of regulatory, compliance, risk management, transactional, and reimbursement issues. Among these issues are Stark and anti-kickback analyses, structuring scalable telehealth offerings directly to consumers and with third-party payors, corporate practice of medicine and fee splitting compliance, contracting, coding and billing guidance, including Medicare and Medicaid reimbursement questions and audits, compliance with state-law laboratory billing, and physician advertising questions.
Additionally, Dan regularly assists clients on compliance with HIPAA and other laws that govern the collection, use, and disclosure of medical and health information, including laws that govern the de-identification of such information, the use of health information in artificial intelligence and machine learning algorithms, the use of online tracking technologies, and special protections for mental health, substance abuse, and genetic information.

Elaine is Bell Labs Solutions, Strategic Partnerships and Technology Leadership Office Lead Counsel at Nokia. She has decades of experience working with world class scientists, inventors, and leading intellectual property professionals across the ecosystem of technology law and policy

Dania Nasser is the Senior Associate General Counsel at Canon Business Process Services. Prior to working in this role she was the Business Operations and Compliance Counsel at Ralph Lauren. Dania acquired her law degree from Yale University.

Maharaj Mukherjee, a Master Inventor emeritus from IBM has a PhD in Computer and Systems Engineering from the Rensselaer Polytechnic Institute, an MS from University at Stony Brook, and a B-Tech in Electrical Engineering from the Indian Institute of Technology at Kharagpur. He has done his PhD work with Professor George Nagy who had worked with Professor Frank Rosenblatt (the Father of Artificial Intelligence and Neural Network) for his own PhD thesis in 1950s in development of the first neural network model.

Maharaj has been working for the Bank of America in the Global Technology organization for past six and half years working in areas of natural and formal language translation, transliteration, transpilation and Digital Twins related to edge computing, metaverse, and Internet of Things.

Before joining the Bank of America, he had worked for IBM Research for twenty years. He has also been the chair of IBM’s Internet of Things Invention Development Team. He was a member of IBM’s Academy of Technology. Before that he served as a faculty at the Electrical and Electronics Communication Engineering at the Indian Institute of Technology at Kharagpur.

He has also spent a year at the Max Plank Institute of Informatics at Saarbrucken, Germany as a Humboldt fellow.

His main areas of interest include Deep Learning and Cognitive Analytics as applied to Internet of Things, Geometric Algorithms and its applications within the fields of big data and Analytics, Block Chain and Open Ledger and its application on IOT, Smarter Planet and Internet of Everything, CAD/CAM/CAE, and Electronic Design Automation.

Maharaj Mukherjee now holds 209 US granted patents and is now recognized as one of the most prolific inventors of the world. He has been the top inventor of the Bank of America for the past two consecutive years and one of the top three inventors of the Bank of America in 2020. He is a Master Inventor Emeritus at IBM which he became after being selected as a Master Inventor three times consecutively at IBM.  He is also inducted at IBM’s Inventor Wall of Fame at the IBM East Fishkill site in New York. He holds 150 US patents and as well as 100 patents in other countries including, Germany, UK, France, Italy, China, Korea, Japan, and Brazil. One of his patents on Predictive Traffic Modeling has been chosen by IBM as one of the best twenty patents from past twenty years. Maharaj has also received the valuable patent award – that is awarded to top 1% patents in IBM every year– five times. Maharaj has mentored several new inventors who had filed patents and patent applications. Two of Maharaj’s mentees have become Master Inventors, themselves, in 2017.  Maharaj has given several invited presentations including the Keynote presentation at the Computational Intelligence and Networking (CINE-2015) Conference in January 2015 and Center-force IP Conferences.

Maharaj currently serves in the Awards Committee of Institute of Electrical and Electronics Engineers (IEEE ). He is the only voting member from USA and one of the six voting members worldwide. Hs is also in the IEEE USA Awards committee. . He also serves as the Professional Activities Chair of IEEE Region 1. He previously served as the Central Area Chair for IEEE region 1, chair of the IEEE Mid-Hudson Section, PACE chair for the IEEE Mid-Hudson Section and the Secretary for the IEEE Kharagpur Section.

Rick Marinaccio, a partner at Phillips Lytle LLP, is a seasoned technology lawyer and firm innovator, focusing on the dynamic work of artificial intelligence and other emerging technologies, and commercial contracts for a variety of transactions. He is co-leader of the firm’s Technology Industry Team, leader of its Artificial Intelligence (AI) Team and chair of the firm’s Technology and Innovation Committee. Dedicated to staying at the forefront of technological advancements, Marinaccio earned a 2023 certificate from MIT Sloan + CSAIL Artificial Intelligence: Implications for Business Strategy Program and completed the Berkeley Law AI Institute Platform. He is considered a thought leader in AI, producing firm podcasts on the topic, writing articles in various business publications, and speaking at AI- and technology-centric conferences. Marinaccio has been named an Upstate New York Super Lawyers® Rising Star. He is also an adjunct professor teaching AI and the Law at the University at Buffalo School of Law.

Best boss ever

Doug DePeppe is a Special Counsel in the Firm’s Denver office with a national practice in data rights, data protection, sports data and licensing, and cybersecurity law. He is a member of the Firm’s Privacy & Data Security, Sports Industry, and Artificial Intelligence Practice Groups.

A retired Army Judge Advocate and national security attorney, Mr. DePeppe’s military cyberlaw career began with his Army-funded Master of Laws (LLM) degree from The George Washington University Law School with a cyberlaw focus, followed by his leading the Army JAG Corps’ development of a cybersecurity law practice. He next helped develop cybersecurity law capabilities in the cybersecurity divisions at Homeland Security, including serving as the legal advisor to US-CERT. Mr. DePeppe’s cybersecurity awards and accomplishments include:

• White House 60-Day Cyberspace Policy Review, Lawyers Working Group (2009)
• Inducted into the Information Sharing Hall of Fame, ISAO Standards Organization (2018)
• Adjunct Professor and curriculum development, University of Maryland Global Campus Masters Program in Cybersecurity (2010-2020)
• Chair, Cybersecurity Working Group, Regional Consortium Coordinating Council (RC3), DHS-affiliated Coordinating Council (2013-2020)
• Working Group Chair, Information Sharing and Analysis Organization (ISAO) Standards Organization (2015-2018)
• Co-Inventor, SYSTEM AND METHOD FOR REGISTERING CLAIMS OF OWNERSHIP RIGHTS, US 20240152645 (patent-pending, published 2024)

In his cybersecurity law practice, Mr. DePeppe assists clients in data breach investigations, orchestrating the incident response and crisis management as a Breach Coach. Mr. DePeppe has assisted clients with cyberattack response services for twenty years. He is well known and respected in the field, has presented at major conferences on nearly every continent across the globe, and has published in Forbes, trade journals, and other online magazines.

Mr. DePeppe also assists clients with data privacy prevention and compliance. Leveraging his interdisciplinary knowledge and cybersecurity resource network, he helps clients with risk assessments, leadership and boardroom training and mentoring, third-party contract and supply-chain risk review, cyber due diligence for mergers and acquisitions, and other cyber risk advisory and services.

With his background in data rights, Mr. DePeppe also advises clients concerning name-image-likeness (NIL) protection and licensing. Universities, collectives, athletes, sports entities and associations, and sports agents have growing needs to protect NIL monetization efforts from infringing misappropriations.

While a Judge Advocate, Mr. DePeppe was a trial attorney in courts-martial for five years and became a certified capital case defense counsel. This criminal law experience aids his client advice concerning cybercrime. Additionally, Mr. DePeppe has used his litigation experience in the representation of sport sector mediations and arbitrations. In particular, he has successfully represented several soccer clubs and athletes in administrative disputes arising from the Ted Stephens Amateur Sports Act and SafeSport.

A life-long soccer player and enthusiast, Coach DePeppe also enjoys helping youth players pursue their dreams as a youth soccer coach.

Robert Hinckley is Managing Shareholder of Buchalter’s Denver office and Co-Chair of the Firm’s Litigation Group. Mr. Hinckley practices in both Colorado and California and is also a member of the Los Angeles and Orange County offices. A former prosecutor, Mr. Hinckley is an aggressive and effective trial lawyer, with first-chair experience in more than forty jury trials and more than twenty bench trials and arbitration hearings. Mr. Hinckley has litigated and tried cases in Colorado, California, Florida, Texas, Delaware and elsewhere for a diverse group of business clients ranging from Fortune 500 companies to small and medium-sized privately held companies.

Mr. Hinckley is a trusted adviser who applies practical solutions to the complex business challenges facing his clients on a daily basis. Mr. Hinckley specializes in commercial and corporate litigation, which includes prosecuting and defending all manner of contractual disputes, including partnership/LLC disputes, stockholder actions and business separations. Mr. Hinckley also commonly litigates real estate disputes, civil fraud, defamation, breach of fiduciary duty, tortious interference and other business-centered torts. Mr. Hinckley likewise has a significant employment practice on behalf of employers, to include risk management and litigation counseling as well as serving as litigation counsel in the areas of trade secrets, non-competition and non-solicitation agreements, wrongful discharge, harassment, discrimination and retaliation.

Mr. Hinckley also frequently litigates complex product contamination matters on a national and international basis on behalf of specialty insurance carriers through subrogation, related to large losses in North America, South America, Asia and Europe.

Mr. Hinckley currently serves as Vice President of the Executive Committee for the Colorado Defense Lawyers Association, the preeminent legal organization in Colorado dedicated to the defense of civil actions and the promotion of fairness and integrity in the civil justice system.

With close to two decades of experience as a prosecutor and leading regulator, including as Bureau Chief of the New York Attorney General’s Bureau of Internet and Technology, Kathleen A. McGee is a highly accomplished attorney with a unique and valuable skill set. Kathleen regularly leverages her extensive experience in the public sector by representing clients before federal, state, and local law enforcement and regulators on issues ranging from criminal and civil investigations before the DOJ, SEC, FTC, and state attorneys general, to commercial disputes and advisory matters involving technology, data commodification, cybersecurity and privacy, consumer protection issues, Artificial Intelligence, and data governance. Clients benefit from both her sophisticated grasp of technology-related criminal matters and her on-the-ground experience as a lead prosecutor in both jury and bench trials.

Kathleen’s practice includes representing established global businesses, scale-ups, and startups (including fintechs, investment groups, and governments) in multiple sectors, including ad tech, financial services, insurance tech, biotech, IoT, and retail. Kathleen’s practice covers a wide array of technology, data, and intellectual property concerns, with a focus on emerging technologies, data services, and cybersecurity.

Michael is a patent attorney with an engineering background, specializing in intellectual property (IP) counseling and global patent portfolio management. He has successfully secured over 1,500 US patents and hundreds internationally across diverse technological fields, such as computer systems, software applications, microelectronics, telecommunications, cybersecurity, cloud computing, financial technologies (such as blockchain and cryptocurrency), and artificial intelligence (AI) and machine learning (ML). In addition to patent prosecution, Michael represents clients in patent trials and post-grant proceedings, provides expert patent opinions, and offers strategic counsel in IP transactions.

Michael leads a team of patent attorneys and agents who have successfully secured over 200 US patents for AI/ML-related technologies, with hundreds more applications pending. He regularly speaks and publishes on patenting AI and software technologies in the US.

Ryan Logan is a special counsel in S&C’s General Practice Group and a member of the Firm’s Privacy, Cybersecurity Group and Intellectual Property & Technology Transactions Groups. His practice focuses on complex, cross-border data privacy and cyber breach matters, including compliance with state, federal and international privacy laws, regulations and requirements. These include the California Consumer Privacy Act (CCPA), Texas Data Privacy and Security Act and other state and local privacy laws, EU General Data Protection Regulation (GDPR), New York Department of Financial Services’ Cybersecurity Regulation, Gramm-Leach-Bliley Act (GLB), Children’s Online Privacy Protection Act, Health Insurance Portability and Accountability Act of 1996 (HIPAA), Fair Credit Reporting Act (FCRA) and CAN-SPAM. Ryan also advises clients on all facets of data breach preparedness, response and remediation, including regulatory investigations; and develops records management policies and retention schedules.

Ryan has represented clients in financial services, pharmaceutical manufacturing, healthcare, life sciences, artificial intelligence, technology, automotive production, industrial services, energy, and consumer and retail. His deep knowledge of clients’ businesses and the evolving privacy landscape enables him to effectively guide clients through any privacy or cybersecurity issue. His experience includes advising on privacy and security issues in connection with mergers, acquisitions and joint ventures; developing privacy policies and procedures; providing product and strategic counseling on privacy and data analytics; developing cross-border data transfer compliance strategies; negotiating data processing agreements; advising on employee privacy issues; and assisting clients with responding to regulatory investigations, potential litigation or monitoring programs.

Ryan is a member of the International Association of Privacy Professionals.

Matt co-leads the AI Group at ArentFox Schiff LLP. With a focus on technology transactions and a background inhouse at Hewlett Packard Enterprise, he routinely assists clients navigating the adoption, development and deployment of new technologies, including AI applications and systems.

Sarah is the Head of Dorsey’s New York Trademark Group and the firm’s Creative Industries Industry Group. With over 20 years’ experience, she protects, enforces, and exploits intellectual property assets for clients across diverse sectors, including creative industries, tech, finance, and consumer products. Her expertise spans corporate and commercial agreements, brand registration (U.S. and international), licensing, dispute resolution (including TTAB proceedings), and cross-border transactions (U.S.-Canada). Sarah is a contributor to Dorsey’s award-winning IP blog, TheTMCA.com, and is admitted to practice in both New York and Ontario, Canada.

Andrea Walker-Modu is Senior Corporate Counsel at Bristol Myers Squibb, where she advises on global privacy and data protection matters, including AI-driven employee and digital health initiatives. She also monitors, advises on and supports the implementation of emerging privacy legislation in the U.S., Canada, and Latin America. Prior to joining Bristol Myers Squibb, she served as Senior Director for Privacy at Celgene and previously worked at Citibank as a Senior Director of the Corporate Compliance Group, focusing on international privacy issues. Andrea co-chairs the International Pharmaceutical & Medical Device Privacy Consortium’s Latin America Roundtable and is an active participant in its U.S. and AI Working Groups. She earned a B.A. from Princeton University, a J.D. from George Washington University, and an LL.M. from Seton Hall University, and she holds CIPP/US and CIPP/M certifications from the International Association of Privacy Professionals.

Daniel Ilan’s practice focuses on intellectual property, cybersecurity and privacy, as well as artificial intelligence. He has significant experience in representing leading technology companies and other multinational corporations and private equity firms in technology-related issues, including AI, arising in transactional contexts, particularly transactions involving licensing or acquisition of or investment in cutting-edge technologies. He also regularly advises companies on diverse AI, IP, privacy and cybersecurity issues, both for strategic planning and day-to-day compliance. Daniel is an industry thought leader and regularly writes and speaks about AI issues and the IP, privacy and data security implications of generative AI. He is a member of the Advisory Board of The Federmann Cyber Security Research Center – Cyber-Law Program at The Hebrew University of Jerusalem.

Briana Thomas serves as Senior Design Program Manager at Adobe, driving innovation within the Lightroom and Photoshop AI Design teams. With a distinguished career dedicated to revolutionizing design and team dynamics within major tech enterprises, she brings profound expertise in scaling operations and fostering creativity. A recent alumni of Parsons School of Design, where she earned a Master’s in Strategic Design and Management, Briana exemplifies leadership that seamlessly integrates theoretical insights with practical application and transformative outcomes.
Her passion lies in tackling crucial issues like algorithmic bias and redefining the representation of marginalized communities in the future landscape of digital products. Briana invites engagement on these critical topics, aiming to shape a more inclusive and forward-thinking approach to design.

Javed Ramjohn is a senior staff privacy engineer at Google, where he currently leads the privacy team for Google’s User Protection organization. User Protection is Google’s central counter abuse team, which focuses on building infrastructure and capabilities to solve issues in areas like account & device integrity, malware analysis, threat intelligence, content safety, and child safety. Javed has led multiple teams covering technical product reviews, consultations, privacy strategy, and product privacy policy.

Previously, he led Google’s ads privacy team for 6 years, covering Google Ads, Google Analytics, Google Surveys, Google Feedback, Google Customer Support, Google Shopping, Google Domains, Google Lens, Google My Business, Google Ads Sales, and Trust & Safety. He led efforts at Google on retention enforcement processes and infrastructure solutions, developed data pseudonymization standards, provided privacy expertise on regulatory efforts like the EU Digital Markets Act, presented to external parties like the U.K. Competition and Market Authority, and aided in how privacy practices are communicated to advertisers.

Javed contributed to privacy design efforts and strategy across topics like ads profiling, ads measurement, user-facing transparency & control, data sharing with advertisers, ads safety and abuse efforts, location tracking, privacy-preserving alternatives to user-level tracking, internal data governance topics like encryption, access, and retention, as well as leading privacy efforts on ads ML/AI systems. His time on ads culminated in completing ~4,000 privacy reviews and consultations, as well as publishing 40+ internal policies, guidelines, and risk assessments on topics like data retention, pseudonymization, survey/leadform collection, enabling privacy preserving handling of multiple identifiers, ads personalization, and ads measurement.

Outside of his core work, Javed has also presented privacy topics and conducted training sessions at internal summits and conferences for Google’s privacy teams. He mentors new privacy engineers and privacy enthusiasts at Google as well as outside of work.

Javed did his undergraduate studies at Carnegie Mellon University in Information Systems, with an additional major in policy and management. He also finished his masters in privacy engineering at CMU.

Drawing upon decades of experience as a trial lawyer and trusted counselor, Fran Green counsels global clients on navigating the complexities of workforce management, cybersecurity, and data privacy laws, as well as the opportunities and legal risks presented by the design and deployment of artificial intelligence (AI) in consumer tools and within the employment life cycle. She advises clients in a broad range of industries, including finance, retail, manufacturing, and consumer goods.

Frances M. Green has a LL.M. in Cybersecurity and Data Privacy and is globally certified as an Artificial Intelligence Governance Professional by The International Association of Privacy Professionals (IAPP).

Catherine M. Quinlan served as Vice President, AI Ethics for IBM within the Office of Privacy and Responsible Technology until August 2024. In that role she managed the work of IBM’s AI Ethics Board, a multi-disciplinary team responsible for the governance and decision-making process for AI and emerging tech ethics policies and practices. In this role, Catherine also oversaw the AI ethics use case review process and helped IBM prepare for new and emerging AI regulation.

Catherine served as the IBM Director of the Notre Dame-IBM Technology Ethics Lab until January 2025. The Lab was established in 2020 as a partnership between the University of Notre Dame and IBM to promote broad-based, far-reaching interdisciplinary research, thought and policy leadership in artificial intelligence and other technology ethics.

She is also part of the World Economic Forum AI Governance Alliance – Resilient Governance and Regulation working group and contributed to two World Economic Forum AI Governance Alliance briefing papers released during Davos 2024: “Unlocking Value from Generative AI: Guidance for Responsible Transformation and Generative AI Governance: Shaping a Collective Global Future” and she contributed to “Governance in the Age of Generative AI: A 360° Approach for Resilient Policy and Regulation” released by the World Economic Forum in October 2024. Catherine was also co-author of “The Enterprise Guide to AI Governance” released by the IBM Institute for Business Value in October 2024. In late 2023, Catherine was named by the World Economic Forum as a Firestarter at the World Economic Forum Global AI Summit, San Francisco, CA.

During her tenure at IBM, Catherine has served in a variety of positions within IBM’s Legal & Regulatory Affairs organization. Catherine is currently the Legal M&A Integration Executive for IBM Technology, advising on the integration of strategic IBM acquisitions, including IBM’s $6.4 billion acquisition of HashiCorp.

From January 2023 to January 2025, she served as President of the Westchester/Southern CT Chapter of the Association of Corporate Counsel.

Catherine is a member of the New York State Bar, is admitted to the Supreme Court of the United States of America and the United States District Court for the Southern District of New York.

Corey M. Dennis is Chief Privacy Officer & Assistant General Counsel at Legend Biotech, based in Somerset, NJ. In this role, he is responsible for leading the global privacy, cybersecurity, and AI legal programs at the company. Mr. Dennis previously served as Senior Director & US Privacy Officer at Sanofi, a global pharmaceutical company of 90,000+ employees, and as Senior Director & Counsel at Eli Lilly, focusing on privacy, cybersecurity, and AI legal matters.

Mr. Dennis is a frequent speaker at global privacy and cybersecurity events. He is certified in US and EU privacy (CIPP/US, CIPP/EU), healthcare compliance (CHC), and cybersecurity (CC). He is a graduate of the University of Massachusetts Amherst (summa cum laude) and Suffolk University Law School (cum laude), where he served on the Law Review.

Michel Paradis is a Partner in Steptoe LLP’s New York office, and a seasoned litigator with extensive expertise in appellate litigation, technology law, and international and national security law. With a doctorate from Oxford University in computational linguistics, where he did pioneering work on large language models, Michel provides real, actionable insights into the legal risks and opportunities presented by the revolutionary advance of artificial intelligence. Michel has a unique talent for explaining the law to those whose priority is technology, and the technology to those whose priority is the law. He has advised technology companies ranging from industry giants to innovative start-ups, and companies across all sectors, which are now grappling with what AI means for their industry.

A trial and appellate lawyer who concentrates his practice on cybersecurity and insurance coverage, Kevin has extensive experience litigating data-security matters, data-breach class actions, and complex insurance-coverage disputes. He has served as both lead settlement and trial counsel in highly sensitive business cases. Kevin also advises clients on insurance-policy drafting and underwriting issues.

As co-chair of Barclay Damon’s Data Security & Technology Practice Area, Kevin represents businesses facing first- and third-party losses due to data breaches, service interruptions, theft, and other cyber threats. In addition to representing his clients in litigation, he counsels them on contract drafting and insurance coverage for cyber risks.

Kevin is the host of Cyber Sip™, the Barclay Damon’s award-winning cybersecurity podcast.

Christine Walker is a shareholder at Fowler White who litigates and advises clients on legal strategy, risk management, and dispute avoidance in connection with emerging technologies. With a certification in AI Governance and Ethics, Christine counsels companies on the responsible implementation of artificial intelligence, helping them navigate complex issues related to transparency, accountability, and compliance. Her litigation background informs her approach—she anticipates how AI-related decisions could play out in a courtroom and guides clients in building governance frameworks that reduce liability and withstand legal scrutiny. Christine focuses on identifying potential risks before they escalate, crafting practical policies that align with evolving regulatory standards while supporting innovation. Her ability to assess issues through a litigator’s lens makes her a trusted advisor for organizations integrating AI across their operations. Christine regularly speaks on AI governance, ethical deployment, and the legal implications of AI in business.