Submit Search
Upload
Tech Connect Live 30th May 2018 ,GDPR Summit John Ghent
•
0 likes
•
55 views
E
Events2018
Follow
How to Get Data Protection Right
Read less
Read more
Business
Report
Share
Report
Share
1 of 23
Download now
Download to read offline
Recommended
General Data Protection Regulations (GDPR): Do you understand it and are you ...
General Data Protection Regulations (GDPR): Do you understand it and are you ...
Cvent
An Overview of GDPR by Pathway Group
An Overview of GDPR by Pathway Group
The Pathway Group
GDPR Demystified
GDPR Demystified
SPIN Chennai
GDPR for dummies
GDPR for dummies
Benoît De Nayer
GDPR - Fail to Prepare, Prepare to Fail!
GDPR - Fail to Prepare, Prepare to Fail!
Fintan Swanton
Simple GDPR Overview
Simple GDPR Overview
Gydeline Ltd
General Data Protection Regulation
General Data Protection Regulation
BCC - Solutions for IBM Collaboration Software
GDPR for Dummies
GDPR for Dummies
Caroline Boscher
Recommended
General Data Protection Regulations (GDPR): Do you understand it and are you ...
General Data Protection Regulations (GDPR): Do you understand it and are you ...
Cvent
An Overview of GDPR by Pathway Group
An Overview of GDPR by Pathway Group
The Pathway Group
GDPR Demystified
GDPR Demystified
SPIN Chennai
GDPR for dummies
GDPR for dummies
Benoît De Nayer
GDPR - Fail to Prepare, Prepare to Fail!
GDPR - Fail to Prepare, Prepare to Fail!
Fintan Swanton
Simple GDPR Overview
Simple GDPR Overview
Gydeline Ltd
General Data Protection Regulation
General Data Protection Regulation
BCC - Solutions for IBM Collaboration Software
GDPR for Dummies
GDPR for Dummies
Caroline Boscher
GDPR Basics - General Data Protection Regulation
GDPR Basics - General Data Protection Regulation
Vicky Dallas
GDPR Introduction and overview
GDPR Introduction and overview
Jane Lambert
GDPR 11/1/2017
GDPR 11/1/2017
isc2-hellenic
GDPR From Implementation to Opportunity
GDPR From Implementation to Opportunity
Dean Sappey
General Data Protection Regulation (GDPR)
General Data Protection Regulation (GDPR)
Extentia Information Technology
Preparing for EU GDPR
Preparing for EU GDPR
IT Governance Ltd
Magento checklist AVG / GDPR - Algemene Verordering Gegevensbescherming
Magento checklist AVG / GDPR - Algemene Verordering Gegevensbescherming
Erwin Otten
Developer view on new EU privacy legislation (GDPR)
Developer view on new EU privacy legislation (GDPR)
Exove
Preparing for general data protection regulations (gdpr) within the hous...
Preparing for general data protection regulations (gdpr) within the hous...
Stephanie Vasey
Gdpr action plan - ISSA
Gdpr action plan - ISSA
Ulf Mattsson
GDPR Compliance: What You Need to Know Before May 2018
GDPR Compliance: What You Need to Know Before May 2018
Infosec
EU GDPR and you: requirements for marketing
EU GDPR and you: requirements for marketing
IT Governance Ltd
Findability Day 2016 - What is GDPR?
Findability Day 2016 - What is GDPR?
Findwise
MindMap AVG Louwers Advocaten V 4.0 (EN)
MindMap AVG Louwers Advocaten V 4.0 (EN)
Huub de Jong
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Qualsys Ltd
The Essential Guide to GDPR
The Essential Guide to GDPR
Tim Hyman LLB
Gdpr overview ciso platform presentation
Gdpr overview ciso platform presentation
Priyanka Aash
Regulation (EU) 2016_679_GDPR_Overview_June 2016
Regulation (EU) 2016_679_GDPR_Overview_June 2016
John Greenwood
GDPR-Overview
GDPR-Overview
Erica Walker
How to Manage Vendors and Third Parties to Minimize Privacy Risk
How to Manage Vendors and Third Parties to Minimize Privacy Risk
TrustArc
GDPR Overview
GDPR Overview
Trish McGinity, CCSK
An Overview of GDPR
An Overview of GDPR
The Pathway Group
More Related Content
What's hot
GDPR Basics - General Data Protection Regulation
GDPR Basics - General Data Protection Regulation
Vicky Dallas
GDPR Introduction and overview
GDPR Introduction and overview
Jane Lambert
GDPR 11/1/2017
GDPR 11/1/2017
isc2-hellenic
GDPR From Implementation to Opportunity
GDPR From Implementation to Opportunity
Dean Sappey
General Data Protection Regulation (GDPR)
General Data Protection Regulation (GDPR)
Extentia Information Technology
Preparing for EU GDPR
Preparing for EU GDPR
IT Governance Ltd
Magento checklist AVG / GDPR - Algemene Verordering Gegevensbescherming
Magento checklist AVG / GDPR - Algemene Verordering Gegevensbescherming
Erwin Otten
Developer view on new EU privacy legislation (GDPR)
Developer view on new EU privacy legislation (GDPR)
Exove
Preparing for general data protection regulations (gdpr) within the hous...
Preparing for general data protection regulations (gdpr) within the hous...
Stephanie Vasey
Gdpr action plan - ISSA
Gdpr action plan - ISSA
Ulf Mattsson
GDPR Compliance: What You Need to Know Before May 2018
GDPR Compliance: What You Need to Know Before May 2018
Infosec
EU GDPR and you: requirements for marketing
EU GDPR and you: requirements for marketing
IT Governance Ltd
Findability Day 2016 - What is GDPR?
Findability Day 2016 - What is GDPR?
Findwise
MindMap AVG Louwers Advocaten V 4.0 (EN)
MindMap AVG Louwers Advocaten V 4.0 (EN)
Huub de Jong
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Qualsys Ltd
The Essential Guide to GDPR
The Essential Guide to GDPR
Tim Hyman LLB
Gdpr overview ciso platform presentation
Gdpr overview ciso platform presentation
Priyanka Aash
Regulation (EU) 2016_679_GDPR_Overview_June 2016
Regulation (EU) 2016_679_GDPR_Overview_June 2016
John Greenwood
GDPR-Overview
GDPR-Overview
Erica Walker
How to Manage Vendors and Third Parties to Minimize Privacy Risk
How to Manage Vendors and Third Parties to Minimize Privacy Risk
TrustArc
What's hot
(20)
GDPR Basics - General Data Protection Regulation
GDPR Basics - General Data Protection Regulation
GDPR Introduction and overview
GDPR Introduction and overview
GDPR 11/1/2017
GDPR 11/1/2017
GDPR From Implementation to Opportunity
GDPR From Implementation to Opportunity
General Data Protection Regulation (GDPR)
General Data Protection Regulation (GDPR)
Preparing for EU GDPR
Preparing for EU GDPR
Magento checklist AVG / GDPR - Algemene Verordering Gegevensbescherming
Magento checklist AVG / GDPR - Algemene Verordering Gegevensbescherming
Developer view on new EU privacy legislation (GDPR)
Developer view on new EU privacy legislation (GDPR)
Preparing for general data protection regulations (gdpr) within the hous...
Preparing for general data protection regulations (gdpr) within the hous...
Gdpr action plan - ISSA
Gdpr action plan - ISSA
GDPR Compliance: What You Need to Know Before May 2018
GDPR Compliance: What You Need to Know Before May 2018
EU GDPR and you: requirements for marketing
EU GDPR and you: requirements for marketing
Findability Day 2016 - What is GDPR?
Findability Day 2016 - What is GDPR?
MindMap AVG Louwers Advocaten V 4.0 (EN)
MindMap AVG Louwers Advocaten V 4.0 (EN)
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
The Essential Guide to GDPR
The Essential Guide to GDPR
Gdpr overview ciso platform presentation
Gdpr overview ciso platform presentation
Regulation (EU) 2016_679_GDPR_Overview_June 2016
Regulation (EU) 2016_679_GDPR_Overview_June 2016
GDPR-Overview
GDPR-Overview
How to Manage Vendors and Third Parties to Minimize Privacy Risk
How to Manage Vendors and Third Parties to Minimize Privacy Risk
Similar to Tech Connect Live 30th May 2018 ,GDPR Summit John Ghent
GDPR Overview
GDPR Overview
Trish McGinity, CCSK
An Overview of GDPR
An Overview of GDPR
The Pathway Group
"Legal tips and compliance requirements" - Anastasia Botsi, ICT Legal
"Legal tips and compliance requirements" - Anastasia Botsi, ICT Legal
Cyber Watching
Cyber safe lambeth | GDPR taster
Cyber safe lambeth | GDPR taster
The Integrate Agency CIC
Niall Rooney FD Event 05.09.19
Niall Rooney FD Event 05.09.19
Niall Rooney
GDPR and Personal Data Transfers 1.1.pdf
GDPR and Personal Data Transfers 1.1.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
Employee Monitoring and Privacy.pdf
Employee Monitoring and Privacy.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
Revising policies and procedures under the new EU GDPR
Revising policies and procedures under the new EU GDPR
IT Governance Ltd
GDPR Summary
GDPR Summary
Martyn Ripley
Why GDPR Must Be an Integral Part of Your GRC Framework
Why GDPR Must Be an Integral Part of Your GRC Framework
PECB
GDPR Enforcement is here. Are you ready?
GDPR Enforcement is here. Are you ready?
SecurityScorecard
The GDPR’s impact on your business and preparing for compliance
The GDPR’s impact on your business and preparing for compliance
IT Governance Ltd
GDPR
GDPR
Gopi PD
CyNation - 7 things you should know about EU-GDPR
CyNation - 7 things you should know about EU-GDPR
Shadi A. Razak
GDPR 101
GDPR 101
Anubhav Dhiman
GDPR: The Regulator's Perspective, Peter Brown, ICO
GDPR: The Regulator's Perspective, Peter Brown, ICO
BCS Data Management Specialist Group
Accountability under the GDPR: What does it mean for Boards & Senior Management?
Accountability under the GDPR: What does it mean for Boards & Senior Management?
IT Governance Ltd
CyNation: 7 Things You Should Know about EU GDPR
CyNation: 7 Things You Should Know about EU GDPR
Iryna Chekanava
Board Priorities for GDPR Implementation
Board Priorities for GDPR Implementation
Joseph V. Moreno
EU General Data Protection Regulation - Update 2017
EU General Data Protection Regulation - Update 2017
Cliff Ashcroft
Similar to Tech Connect Live 30th May 2018 ,GDPR Summit John Ghent
(20)
GDPR Overview
GDPR Overview
An Overview of GDPR
An Overview of GDPR
"Legal tips and compliance requirements" - Anastasia Botsi, ICT Legal
"Legal tips and compliance requirements" - Anastasia Botsi, ICT Legal
Cyber safe lambeth | GDPR taster
Cyber safe lambeth | GDPR taster
Niall Rooney FD Event 05.09.19
Niall Rooney FD Event 05.09.19
GDPR and Personal Data Transfers 1.1.pdf
GDPR and Personal Data Transfers 1.1.pdf
Employee Monitoring and Privacy.pdf
Employee Monitoring and Privacy.pdf
Revising policies and procedures under the new EU GDPR
Revising policies and procedures under the new EU GDPR
GDPR Summary
GDPR Summary
Why GDPR Must Be an Integral Part of Your GRC Framework
Why GDPR Must Be an Integral Part of Your GRC Framework
GDPR Enforcement is here. Are you ready?
GDPR Enforcement is here. Are you ready?
The GDPR’s impact on your business and preparing for compliance
The GDPR’s impact on your business and preparing for compliance
GDPR
GDPR
CyNation - 7 things you should know about EU-GDPR
CyNation - 7 things you should know about EU-GDPR
GDPR 101
GDPR 101
GDPR: The Regulator's Perspective, Peter Brown, ICO
GDPR: The Regulator's Perspective, Peter Brown, ICO
Accountability under the GDPR: What does it mean for Boards & Senior Management?
Accountability under the GDPR: What does it mean for Boards & Senior Management?
CyNation: 7 Things You Should Know about EU GDPR
CyNation: 7 Things You Should Know about EU GDPR
Board Priorities for GDPR Implementation
Board Priorities for GDPR Implementation
EU General Data Protection Regulation - Update 2017
EU General Data Protection Regulation - Update 2017
Recently uploaded
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...
Lviv Startup Club
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
Seo
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service Available
Dipal Arora
0183760ssssssssssssssssssssssssssss00101011 (27).pdf
0183760ssssssssssssssssssssssssssss00101011 (27).pdf
Renandantas16
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Century
rwgiffor
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Abortion pills in Kuwait Cytotec pills in Kuwait
Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...
Roland Driesen
Forklift Operations: Safety through Cartoons
Forklift Operations: Safety through Cartoons
Forklift Trucks in Minnesota
Grateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdf
Paul Menig
7.pdf This presentation captures many uses and the significance of the number...
7.pdf This presentation captures many uses and the significance of the number...
Paul Menig
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
amitlee9823
Regression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear Regression
Ravindra Nath Shukla
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
NZSG
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
ritikaroy0888
Pharma Works Profile of Karan Communications
Pharma Works Profile of Karan Communications
karancommunications
Call Girls in Gomti Nagar - 7388211116 - With room Service
Call Girls in Gomti Nagar - 7388211116 - With room Service
discovermytutordmt
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
rajveerescorts2022
Organizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
Seta Wicaksana
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
Any kyc Account
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...
anilsa9823
Recently uploaded
(20)
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service Available
0183760ssssssssssssssssssssssssssss00101011 (27).pdf
0183760ssssssssssssssssssssssssssss00101011 (27).pdf
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Century
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...
Forklift Operations: Safety through Cartoons
Forklift Operations: Safety through Cartoons
Grateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdf
7.pdf This presentation captures many uses and the significance of the number...
7.pdf This presentation captures many uses and the significance of the number...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Regression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear Regression
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
Pharma Works Profile of Karan Communications
Pharma Works Profile of Karan Communications
Call Girls in Gomti Nagar - 7388211116 - With room Service
Call Girls in Gomti Nagar - 7388211116 - With room Service
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
Organizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...
Tech Connect Live 30th May 2018 ,GDPR Summit John Ghent
1.
How to Get
Data Protection Right John Ghent CEO, Sytorus
2.
Agenda • General Data
Protection Regulation (GDPR) • What is it? • How it effects you? • The plan • What do I need to do? • How do I prepare?
3.
Data is the
new oil
4.
1956
5.
6.
What’s next?
7.
It’s not going
to slow down...
8.
9.
GDPR
10.
1. Acquire 2. Purpose 3.
Minimise 4. Quality 5. Retention
11.
1. Acquire 2. Purpose 3.
Minimise 4. Quality 5. Retention 6. Secure
12.
1. Acquire 2. Purpose 3.
Minimise 4. Quality 5. Retention 6. Secure 7. Accountable
13.
14.
Demonstrate compliance Mandatory logs Privacy by design Privacy by default Privacy
Impact Assessment Data Protection Officer
15.
16.
16 © Sytorus Ltd. Components
of a plan
17.
What does a
good plan look like ▪ Company structure ▪ DPO ▪ DP Champions ▪ Tools ▪ Platform ▪ Demonstrate compliance ▪ Establish a baseline ▪ What are my risks? ▪ Training ▪ DPO ▪ Onsite ▪ Online 17 © Sytorus Ltd.
18.
Logging of Processing
Activities (Article 30) 18 © Sytorus Ltd. That record should contain, for example, ▪ The name and contact details of the Controller ▪ The purposes of the processing ▪ A description of the categories of Data Subjects ▪ The categories of recipients ▪ Transfers of personal data to a third
19.
Risk Rating 19 © Sytorus
Ltd. Score Likelihood Impact 1 Never happened and unlikely to ever happen Low to no DP related impact (brand, operational, commercial) 2 Has happened but very rarely Minor Impact, easily resolved 3 Happens from time to time Significant impact to company brand and could trigger a user complaint or investigation. 4 Happens frequently but not continuously May trigger a breach notification process and damaging to company brand, could result in penalties and likely an investigation 5 Happening continuously Should trigger a breach notification process and severely damaging to company brand. Will trigger an investigation from the and likely fines.
20.
Demonstrate Compliance 20 © Sytorus
Ltd. ▪ Processing Activity Log ▪ Risk Log & proof of mitigation (for example, training) ▪ Incident log ▪ Breach log ▪ Privacy Impact Assessment ▪ Subject Access Request Log
21.
Thanks You Questions? 21 © Sytorus
Ltd.
22.
Appendix - Fines
– Article 83 Category A Administrative fines of up to €10 million, or up to 2% of the total worldwide annual turnover of the preceding financial year (whichever is higher) for infringements relating to: Article 8 - Conditions applicable to child's consent in relation to information society services Article 11 - Processing not requiring identification Article 25 - Data protection by design and by default Article 26 - Joint controllers Article 27 - Representatives of controllers not established in the Union Article 28 - Failure to have a Processor contract in place Article 29 - Processing under the authority of the controller and processor Article 30 - Failure to log data processing activities 22 © Sytorus Ltd. Article 31 - Failure to co-operate with the supervisory authority Article 32 - Failure to ensure the security of processing or integrity of the personal data Article 33 - Failure to notify a personal data breach to the Supervisory Authority Article 34 - Communication of a personal data breach to the data subject Article 35 - Failure to conduct an impact assessment Article 36 - Failure to conduct prior consultation with the supervisory authority Article 37 - Failure to designate a data protection officer if required to do so Article 38 - Position of the data protection officer Article 39 - Tasks of the data protection officer Article 42 - Failure to abide by standards relevant to formal Certification Article 43 - Failure to abide by requirements of approved Certification bodies
23.
Appendix - Fines
– Article 83 Category B Administrative Fines of up to €20 million, or up to 4% of the total worldwide annual turnover of the preceding financial year (whichever is higher) for infringements relating to: Article 5 - Principles relating to the processing of personal data Article 6 - Lawfulness of processing Article 7 - Conditions for consent Article 9 - Processing of special categories of personal data Article 12 - Transparent information, communication and modalities for exercising the rights of the data subject Article 13 - Information to be provided where personal data are collected from the data subject Article 14 - Information to be provided where personal data have not been obtained from the data subject Article 15 - Right of access by the data subject Article 16 - Right to rectification Article 17 - Right to erasure (‘right to be forgotten’) Article 18 - Right to restriction of processing 23 © Sytorus Ltd. Article 19 - Notification obligation regarding rectification or erasure of personal data or restriction of processing Article 20 - Right to data portability Article 21 - Right to object Article 22 - Automated individual decision making, including profiling Article 44 - General principle for transfers Article 45 - Transfers on the basis of an adequacy decision Article 46 - Transfers subject to appropriate safeguards Article 47 - Binding corporate rules Article 48 - Transfers or disclosures not authorised by Union law Article 49 - Derogations for specific situations Article 85 - Processing and freedom of expression and information Article 86 - Processing and public access to official documents Article 87 - Processing of the national identification number Article 88 - Processing in the context of employment Article 89 - Safeguards and derogations relating to processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes Article 90 - Obligations of secrecy Article 91 - Existing data protection rules of churches and religious associations
Download now