GDPR takes effect on May 25, 2018. The document provides an overview of GDPR including its history, key definitions, what it covers, and what it means for businesses. It discusses areas like consent, data breaches, subject rights, and accountability. A readiness checklist is also included covering things like conducting a data audit and having a data protection officer. Some misconceptions about GDPR are addressed, such as there being a grace period or that it only affects EU organizations.
General Data Protection Regulation: what do you need to do to get prepared? -...IISPEastMids
At our Spring East Midlands Cyber Security event on the Impact of the General Data Protection Regulation, Helena Wootton looks at the things you need to do to get prepared for the new data protection regulation.
http://qonex.com/east-midlands-cyber-security-forum/
New General Data Protection Regulation (Agnes Andersson Hammarstrand)Nordic APIs
This is a session given by Agnes Andersson Hammarstrand at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.
Description:
This spring a new EU General Data Protection Regulation was adopted to replace the current personal data legislations. Companies that break the rules risk fines of up to 4 % of the worldwide group turnover. The new regulations entail a large number of news that all companies should be informed about. Among other things, IT systems need to be adapted to privacy under the principles of privacy by design.
Agnes Hammarstrand, partner at Delphi Law firm and expert within IT and online provides an introduction to the new regulations and what you need to do.
Have you missed the deadline with your GDPR preparedness?
If you're struggling to get caught up with compliance, this short presentation can help you focus on the key things you'll need to consider and do.
Read more at our blog post here: https://privacypolicies.com/blog/prepare-gdpr/
Be careful what you wish for: the great Data Protection law reform - Lilian E...IISPEastMids
At our Spring East Midlands Cyber Security event on the Impact of the General Data Protection Regulation, Lilian Edwards looked at the basics on what you need to know about the new regulation.
http://qonex.com/east-midlands-cyber-security-forum/
General Data Protection Regulation: what do you need to do to get prepared? -...IISPEastMids
At our Spring East Midlands Cyber Security event on the Impact of the General Data Protection Regulation, Helena Wootton looks at the things you need to do to get prepared for the new data protection regulation.
http://qonex.com/east-midlands-cyber-security-forum/
New General Data Protection Regulation (Agnes Andersson Hammarstrand)Nordic APIs
This is a session given by Agnes Andersson Hammarstrand at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.
Description:
This spring a new EU General Data Protection Regulation was adopted to replace the current personal data legislations. Companies that break the rules risk fines of up to 4 % of the worldwide group turnover. The new regulations entail a large number of news that all companies should be informed about. Among other things, IT systems need to be adapted to privacy under the principles of privacy by design.
Agnes Hammarstrand, partner at Delphi Law firm and expert within IT and online provides an introduction to the new regulations and what you need to do.
Have you missed the deadline with your GDPR preparedness?
If you're struggling to get caught up with compliance, this short presentation can help you focus on the key things you'll need to consider and do.
Read more at our blog post here: https://privacypolicies.com/blog/prepare-gdpr/
Be careful what you wish for: the great Data Protection law reform - Lilian E...IISPEastMids
At our Spring East Midlands Cyber Security event on the Impact of the General Data Protection Regulation, Lilian Edwards looked at the basics on what you need to know about the new regulation.
http://qonex.com/east-midlands-cyber-security-forum/
On 14/4/2016 EU Data Privacy had been approved the regulation which is, nowadays, mandatory. However companies have 2 years to carry out its suitability before receiving an economic penalty for not having completed it - deadline: 25/05/2016
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...Qualsys Ltd
Preparing for the new General Data Protection Regulation? Here is a presentation to help you to engage your employees with their new information security requirements. In this ppt presentation, you will find out: why GDPR, steps to manage compliance, important information security facts and some of the key articles.
This webinar gives an overview of:
- The regulation landscape
- Territorial scope
- Remedies, liabilities and penalties
- Privacy notices
- The right of data subject
- Consent
- Data processing
- Profiling or "automated individual decision-making"
- International marketing and data transfers
A recording of this webinar is available here:
https://www.youtube.com/watch?v=Vr_CT24v2iI
General Data Protection Regulation (GDPR) is taking effect in May 2018
What does GDPR actually mean for organizations and data?
What's in Scope?
When must organizations be ready?
Article 15: Right of Access
Article 16: Right of Correction
Article 17: Right to be forgotten
Article 20: Right of Portability
Article 21: Right to object
Article 8: Children under 16
Article 24: Responsibility of the controller
Article 28: Data processor
Article 32: Technical measures
An overview of GDPR data privacy and the impact on traditional information security practices, which was presented at SecureWorld Dallas, October, 2017
An overview of the principles of GDPR and some tips to implement it in your organization. I would be more than happy to share my views with stakeholders in your company.
Be careful what you wish for! How the GDPR even now it has been finalised may not solve the key problems of rthe tech community of what is personal data and what is anonymised/pseudonymous.
With GDPR coming into effect, we can see a lot of changes in the privacy policies of companies doing business online. The presentation is a description of GDPR and its implications in India and worldwide. The main aim of the presentation is to identify the key issues of data privacy and the rights available to the consumer who's data is to be shared.
n this webinar, GDPR expert, Richard Hogg, answers the following questions:
What will the GDPR mean for my organization?
Where do I start on the journey to compliance?
What tools and technology are available to help?
Attendees: Operations, Finance, Compliance, Governance, IT
https://www.integro.com/recorded-webinar/nov-17-2016-gdpr
On 14/4/2016 EU Data Privacy had been approved the regulation which is, nowadays, mandatory. However companies have 2 years to carry out its suitability before receiving an economic penalty for not having completed it - deadline: 25/05/2016
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...Qualsys Ltd
Preparing for the new General Data Protection Regulation? Here is a presentation to help you to engage your employees with their new information security requirements. In this ppt presentation, you will find out: why GDPR, steps to manage compliance, important information security facts and some of the key articles.
This webinar gives an overview of:
- The regulation landscape
- Territorial scope
- Remedies, liabilities and penalties
- Privacy notices
- The right of data subject
- Consent
- Data processing
- Profiling or "automated individual decision-making"
- International marketing and data transfers
A recording of this webinar is available here:
https://www.youtube.com/watch?v=Vr_CT24v2iI
General Data Protection Regulation (GDPR) is taking effect in May 2018
What does GDPR actually mean for organizations and data?
What's in Scope?
When must organizations be ready?
Article 15: Right of Access
Article 16: Right of Correction
Article 17: Right to be forgotten
Article 20: Right of Portability
Article 21: Right to object
Article 8: Children under 16
Article 24: Responsibility of the controller
Article 28: Data processor
Article 32: Technical measures
An overview of GDPR data privacy and the impact on traditional information security practices, which was presented at SecureWorld Dallas, October, 2017
An overview of the principles of GDPR and some tips to implement it in your organization. I would be more than happy to share my views with stakeholders in your company.
Be careful what you wish for! How the GDPR even now it has been finalised may not solve the key problems of rthe tech community of what is personal data and what is anonymised/pseudonymous.
With GDPR coming into effect, we can see a lot of changes in the privacy policies of companies doing business online. The presentation is a description of GDPR and its implications in India and worldwide. The main aim of the presentation is to identify the key issues of data privacy and the rights available to the consumer who's data is to be shared.
n this webinar, GDPR expert, Richard Hogg, answers the following questions:
What will the GDPR mean for my organization?
Where do I start on the journey to compliance?
What tools and technology are available to help?
Attendees: Operations, Finance, Compliance, Governance, IT
https://www.integro.com/recorded-webinar/nov-17-2016-gdpr
6 Lesson GDPR Booklet from Varonis to help stay get compliant and stay compliant.
-Locate your sensitive data
-Prevent data breaches
-Rapidly alert to suspicious behavior
-Build long-term data Security
Are you ready for the General Data Protection Regulation?
VILT has compiled this Frequently Asked Questions document. Read about what it is and how we can help.
General Data Protection Regulation (GDPR) - Moving from confusion to readinessOmo Osagiede
This GDPR primer highlights key aspects of the new EU regulation regarding the protection of EU citizens data. It also presents a basic approach and key activities for GDPR preparedness. Useful as a discussion starter with senior management.
EU GDPR Lesson 1 - What is the GDPR? Why do we need it?
EU GDPR Lesson 2 - Data Protection by Design and by Default
EU GDPR Lesson 3 - The Right To Be Forgotten
EU GDPR Lesson 4 - Who Does the EU GDPR Apply?
EU GDPR Lesson 5 - What Happens if I Don’t Comply with the EU GDPR?
EU GDPR Lesson 6 - Next Steps - How to Get There?
Over the past few years of monitoring the development of the EU General Data Protection Regulation (GDPR) and its effects on technology, we’ve distilled the parts of the regulation that most affect your business into this practical guide.
Operational impact of gdpr finance industries in the caribbeanEquiGov Institute
A brief outline of the challenges that could be face by financial institutions with the implementation of the GDPR and recommendations to mitigate them
The engaging white paper delivers the core facts you need to understand the fundamental nature of the GDPR regulations and what it means for your business and the management of its data.
The Countdown is on: Key Things to Know About the GDPRCase IQ
The EU’s General Data Protection Regulation (GDPR) comes into effect on May 25th. This powerful legislation strengthens data privacy laws in Europe and has implications for companies all over the world that store, process or transfer the information of the EU’s citizens.
Failure to comply with the regulation can expose a company to fines based on global revenue and reputation damage, yet many companies are struggling to comply in time.
Join information security expert and CEO/Founder of AsTech Consulting, Greg Reber, as he walks participants through a plan for GDPR compliance.
Impact of GDPR on Data Collection and ProcessingPromptCloud
This presentation covers how GDPR will impact various aspects of user data collection and processing along with the way to achieve compliance with the regulations.
Accpac to QuickBooks Conversion Navigating the Transition with Online Account...PaulBryant58
This article provides a comprehensive guide on how to
effectively manage the convert Accpac to QuickBooks , with a particular focus on utilizing online accounting services to streamline the process.
Putting the SPARK into Virtual Training.pptxCynthia Clay
This 60-minute webinar, sponsored by Adobe, was delivered for the Training Mag Network. It explored the five elements of SPARK: Storytelling, Purpose, Action, Relationships, and Kudos. Knowing how to tell a well-structured story is key to building long-term memory. Stating a clear purpose that doesn't take away from the discovery learning process is critical. Ensuring that people move from theory to practical application is imperative. Creating strong social learning is the key to commitment and engagement. Validating and affirming participants' comments is the way to create a positive learning environment.
RMD24 | Retail media: hoe zet je dit in als je geen AH of Unilever bent? Heid...BBPMedia1
Grote partijen zijn al een tijdje onderweg met retail media. Ondertussen worden in dit domein ook de kansen zichtbaar voor andere spelers in de markt. Maar met die kansen ontstaan ook vragen: Zelf retail media worden of erop adverteren? In welke fase van de funnel past het en hoe integreer je het in een mediaplan? Wat is nu precies het verschil met marketplaces en Programmatic ads? In dit half uur beslechten we de dilemma's en krijg je antwoorden op wanneer het voor jou tijd is om de volgende stap te zetten.
Unveiling the Secrets How Does Generative AI Work.pdfSam H
At its core, generative artificial intelligence relies on the concept of generative models, which serve as engines that churn out entirely new data resembling their training data. It is like a sculptor who has studied so many forms found in nature and then uses this knowledge to create sculptures from his imagination that have never been seen before anywhere else. If taken to cyberspace, gans work almost the same way.
Taurus Zodiac Sign_ Personality Traits and Sign Dates.pptxmy Pandit
Explore the world of the Taurus zodiac sign. Learn about their stability, determination, and appreciation for beauty. Discover how Taureans' grounded nature and hardworking mindset define their unique personality.
Skye Residences | Extended Stay Residences Near Toronto Airportmarketingjdass
Experience unparalleled EXTENDED STAY and comfort at Skye Residences located just minutes from Toronto Airport. Discover sophisticated accommodations tailored for discerning travelers.
Website Link :
https://skyeresidences.com/
https://skyeresidences.com/about-us/
https://skyeresidences.com/gallery/
https://skyeresidences.com/rooms/
https://skyeresidences.com/near-by-attractions/
https://skyeresidences.com/commute/
https://skyeresidences.com/contact/
https://skyeresidences.com/queen-suite-with-sofa-bed/
https://skyeresidences.com/queen-suite-with-sofa-bed-and-balcony/
https://skyeresidences.com/queen-suite-with-sofa-bed-accessible/
https://skyeresidences.com/2-bedroom-deluxe-queen-suite-with-sofa-bed/
https://skyeresidences.com/2-bedroom-deluxe-king-queen-suite-with-sofa-bed/
https://skyeresidences.com/2-bedroom-deluxe-queen-suite-with-sofa-bed-accessible/
#Skye Residences Etobicoke, #Skye Residences Near Toronto Airport, #Skye Residences Toronto, #Skye Hotel Toronto, #Skye Hotel Near Toronto Airport, #Hotel Near Toronto Airport, #Near Toronto Airport Accommodation, #Suites Near Toronto Airport, #Etobicoke Suites Near Airport, #Hotel Near Toronto Pearson International Airport, #Toronto Airport Suite Rentals, #Pearson Airport Hotel Suites
[Note: This is a partial preview. To download this presentation, visit:
https://www.oeconsulting.com.sg/training-presentations]
Sustainability has become an increasingly critical topic as the world recognizes the need to protect our planet and its resources for future generations. Sustainability means meeting our current needs without compromising the ability of future generations to meet theirs. It involves long-term planning and consideration of the consequences of our actions. The goal is to create strategies that ensure the long-term viability of People, Planet, and Profit.
Leading companies such as Nike, Toyota, and Siemens are prioritizing sustainable innovation in their business models, setting an example for others to follow. In this Sustainability training presentation, you will learn key concepts, principles, and practices of sustainability applicable across industries. This training aims to create awareness and educate employees, senior executives, consultants, and other key stakeholders, including investors, policymakers, and supply chain partners, on the importance and implementation of sustainability.
LEARNING OBJECTIVES
1. Develop a comprehensive understanding of the fundamental principles and concepts that form the foundation of sustainability within corporate environments.
2. Explore the sustainability implementation model, focusing on effective measures and reporting strategies to track and communicate sustainability efforts.
3. Identify and define best practices and critical success factors essential for achieving sustainability goals within organizations.
CONTENTS
1. Introduction and Key Concepts of Sustainability
2. Principles and Practices of Sustainability
3. Measures and Reporting in Sustainability
4. Sustainability Implementation & Best Practices
To download the complete presentation, visit: https://www.oeconsulting.com.sg/training-presentations
RMD24 | Debunking the non-endemic revenue myth Marvin Vacquier Droop | First ...BBPMedia1
Marvin neemt je in deze presentatie mee in de voordelen van non-endemic advertising op retail media netwerken. Hij brengt ook de uitdagingen in beeld die de markt op dit moment heeft op het gebied van retail media voor niet-leveranciers.
Retail media wordt gezien als het nieuwe advertising-medium en ook mediabureaus richten massaal retail media-afdelingen op. Merken die niet in de betreffende winkel liggen staan ook nog niet in de rij om op de retail media netwerken te adverteren. Marvin belicht de uitdagingen die er zijn om echt aansluiting te vinden op die markt van non-endemic advertising.
3.0 Project 2_ Developing My Brand Identity Kit.pptxtanyjahb
A personal brand exploration presentation summarizes an individual's unique qualities and goals, covering strengths, values, passions, and target audience. It helps individuals understand what makes them stand out, their desired image, and how they aim to achieve it.
What is the TDS Return Filing Due Date for FY 2024-25.pdfseoforlegalpillers
It is crucial for the taxpayers to understand about the TDS Return Filing Due Date, so that they can fulfill your TDS obligations efficiently. Taxpayers can avoid penalties by sticking to the deadlines and by accurate filing of TDS. Timely filing of TDS will make sure about the availability of tax credits. You can also seek the professional guidance of experts like Legal Pillers for timely filing of the TDS Return.
Cracking the Workplace Discipline Code Main.pptxWorkforce Group
Cultivating and maintaining discipline within teams is a critical differentiator for successful organisations.
Forward-thinking leaders and business managers understand the impact that discipline has on organisational success. A disciplined workforce operates with clarity, focus, and a shared understanding of expectations, ultimately driving better results, optimising productivity, and facilitating seamless collaboration.
Although discipline is not a one-size-fits-all approach, it can help create a work environment that encourages personal growth and accountability rather than solely relying on punitive measures.
In this deck, you will learn the significance of workplace discipline for organisational success. You’ll also learn
• Four (4) workplace discipline methods you should consider
• The best and most practical approach to implementing workplace discipline.
• Three (3) key tips to maintain a disciplined workplace.
Discover the innovative and creative projects that highlight my journey throu...dylandmeas
Discover the innovative and creative projects that highlight my journey through Full Sail University. Below, you’ll find a collection of my work showcasing my skills and expertise in digital marketing, event planning, and media production.
Buy Verified PayPal Account | Buy Google 5 Star Reviewsusawebmarket
Buy Verified PayPal Account
Looking to buy verified PayPal accounts? Discover 7 expert tips for safely purchasing a verified PayPal account in 2024. Ensure security and reliability for your transactions.
PayPal Services Features-
🟢 Email Access
🟢 Bank Added
🟢 Card Verified
🟢 Full SSN Provided
🟢 Phone Number Access
🟢 Driving License Copy
🟢 Fasted Delivery
Client Satisfaction is Our First priority. Our services is very appropriate to buy. We assume that the first-rate way to purchase our offerings is to order on the website. If you have any worry in our cooperation usually You can order us on Skype or Telegram.
24/7 Hours Reply/Please Contact
usawebmarketEmail: support@usawebmarket.com
Skype: usawebmarket
Telegram: @usawebmarket
WhatsApp: +1(218) 203-5951
USA WEB MARKET is the Best Verified PayPal, Payoneer, Cash App, Skrill, Neteller, Stripe Account and SEO, SMM Service provider.100%Satisfection granted.100% replacement Granted.
Memorandum Of Association Constitution of Company.pptseri bangash
www.seribangash.com
A Memorandum of Association (MOA) is a legal document that outlines the fundamental principles and objectives upon which a company operates. It serves as the company's charter or constitution and defines the scope of its activities. Here's a detailed note on the MOA:
Contents of Memorandum of Association:
Name Clause: This clause states the name of the company, which should end with words like "Limited" or "Ltd." for a public limited company and "Private Limited" or "Pvt. Ltd." for a private limited company.
https://seribangash.com/article-of-association-is-legal-doc-of-company/
Registered Office Clause: It specifies the location where the company's registered office is situated. This office is where all official communications and notices are sent.
Objective Clause: This clause delineates the main objectives for which the company is formed. It's important to define these objectives clearly, as the company cannot undertake activities beyond those mentioned in this clause.
www.seribangash.com
Liability Clause: It outlines the extent of liability of the company's members. In the case of companies limited by shares, the liability of members is limited to the amount unpaid on their shares. For companies limited by guarantee, members' liability is limited to the amount they undertake to contribute if the company is wound up.
https://seribangash.com/promotors-is-person-conceived-formation-company/
Capital Clause: This clause specifies the authorized capital of the company, i.e., the maximum amount of share capital the company is authorized to issue. It also mentions the division of this capital into shares and their respective nominal value.
Association Clause: It simply states that the subscribers wish to form a company and agree to become members of it, in accordance with the terms of the MOA.
Importance of Memorandum of Association:
Legal Requirement: The MOA is a legal requirement for the formation of a company. It must be filed with the Registrar of Companies during the incorporation process.
Constitutional Document: It serves as the company's constitutional document, defining its scope, powers, and limitations.
Protection of Members: It protects the interests of the company's members by clearly defining the objectives and limiting their liability.
External Communication: It provides clarity to external parties, such as investors, creditors, and regulatory authorities, regarding the company's objectives and powers.
https://seribangash.com/difference-public-and-private-company-law/
Binding Authority: The company and its members are bound by the provisions of the MOA. Any action taken beyond its scope may be considered ultra vires (beyond the powers) of the company and therefore void.
Amendment of MOA:
While the MOA lays down the company's fundamental principles, it is not entirely immutable. It can be amended, but only under specific circumstances and in compliance with legal procedures. Amendments typically require shareholder
2. GDPR: Are you ready?
77%
#ReadyForGDPR 2
Feel ready for
compliance
Companies
aware of GDPR
34%
3. History of GDPR
#ReadyForGDPR 3
Post WWII, concerns about protection
of human rights.
1950, EU Convention on Human
Rights (ECHR) introduces privacy.
1981, EU Treaty 108
– Eight principles for protecting personal data
Convention for the Protection of Individuals with regard to Automatic
Processing of Personal Data
– Different Member States implemented their own laws to reflect this.
1998, all Member States transpose into law (e.g. UK’s DPA1998):
– Inconsistent protection of individual rights,
– Uneven organisational playing field.
2016, EU GDPR approved, becomes law
two years from publication.
1998, Human Rights Act (HRA 1998) – Article 8 ‘right to privacy’.
90% of the worlds data was created in the past 2 years
1950 1981 1998 2016
5. A few basic definitions
EU Directive is a legal act of the European Union, which requires member states to achieve a
particular result without dictating the means of achieving that result. It can be distinguished from
Regulations which are self-executing and do not require any implementing measures. The Directive
leaves member states with a certain amount of leeway as to the exact rules to be adopted.
Personal data
“any information relating to an identifiable person who can be directly or indirectly
identified in particular by reference to an identifier”
Special categories of personal data specifically including genetic and biometric data when
processed to uniquely identify an individual – used to known as “sensitive data”.
#ReadyForGDPR 5
7. What does GDPR cover?
#ReadyForGDPR 7
Personal Rights
The right to be informed.
The right of access.
The right to rectification.
The right to erasure.
The right to restrict processing.
The right to data portability.
The right to object.
Rights in relation to automated
decision making and profiling.
Boundaries &
Scope
Details the scope of what is covered
by GDPR.
Details the geographical boundaries
of GDPR
Responsibilities
Outlines the responsibilities of
both Controllers & Processors.
9. Key areas.
#ReadyForGDPR 9
Responsibility and
accountability
Consent
Pseudonymization
Data breaches Right to erase – “The
right to be forgotten”
Data portability
Records of
processing
activities
10. Accountability
#ReadyForGDPR 10
Article 5: Principles – personal data shall be:
1 Processed lawfully, fairly and in a transparent manner
2 Collected for specified, explicit and legitimate purposes
3 Adequate, relevant and limited to what is necessary
4 Accurate and, where necessary, kept up to date
5 Retained only for as long as necessary
6 Processed in an appropriate manner to maintain security
Accountability
11. Consent
#ReadyForGDPR 11
Unbundled
Should be separate from other T&CS
need to include an example e.g.
purchase can’t be refused if consent
isn’t given.
Active opt-in
Pre-ticked boxes are no
longer valid.
Named
3rd Parties listed.
Freely given
Not pressured into it.
Documented
List of when consent was given.
Easy to withdraw
As easy to withdraw as it is to give.
13. Data breaches
#ReadyForGDPR 13
Prepare
• Stop it before it happens
Protect
• Identify personal data
• Encrypt
• Enable only right people to access
• Patch systems, install AV and
anti-malware protection
Detect
• Evaluate existing technologies
• Identify vulnerabilities
• Monitor
• Test
Respond
• Mitigate the impact
• Report it
14. Data portability
The data subject shall have the right to receive the
personal data concerning him or her, which he or she
has provided to a controller, in a structured,
commonly used and machine-readable format and
have the right to transmit those data to another
controller without hindrance from the controller to
which the personal data have been provided...
#ReadyForGDPR 14
– EU GDPR Chapter 3, Article 20 &1.
15. What if you don’t comply?
• Fines and penalties
• Four per cent of your global annual turnover or €20m is
a large price to pay for direct breaches of the GDPR
principles, but even a minor breach is likely to cost you
2% or €10m at the bare minimum
• Legal action
• As long as businesses can demonstrate a sound and
practicable intent to enforce data security practices,
they should not be fearful of new data protection
regulations and European Union (EU)/ICO mega fines
• Keep working towards compliance once the deadline
has passed
#ReadyForGDPR 15
17. Preparation check-list
Conduct an audit of what data you hold
and where
Privacy information and policies
Processes for data breaches
Review consent process
Data Protection Officer
Employee Data
#ReadyForGDPR 17
18. Brexit
• Life after Brexit – Do we care?
• What is adequacy assessment and does
it help?
• Binding contractual agreements
#ReadyForGDPR 18
19. DPB (Data Protection Bill)
• The existing UK data protection laws have become increasingly
unwieldy, having been first introduced in 1998 – 10 years before
Apple’s first smartphone was released.
• The DPB (Data Protection Bill) is the UK’s answer to the GDPR,
evolving the country’s existing data protection laws for the 21st
century with the aim of ensuring uninterrupted data flows between
the UK and EU after Brexit.
#ReadyForGDPR 19
21. Misconceptions of GDPR
#ReadyForGDPR 21
GDPR only affects those in the EU.
• European approach
• Privacy and data protection are fundamental human rights
• Not tied to citizenship or nationality
• One overarching law for all member states
22. Misconceptions of GDPR
• There’s also a misconception among businesses that when GDPR is
introduced there will be a grace period, but the reality is that
organisations need to be preparing now.
• 25 May 2018 is when the General Data Protection Regulation (GDPR)
comes into effect; the on-boarding period started two years ago in May
2016, and it has been on the horizon for three years
• If you read into GDPR, it essentially builds on data privacy and security
principles that organisations should already be abiding by – the Data
Protection Act has been in force since 1998, after all
#ReadyForGDPR 22
There will be a grace period.
23. Misconceptions of GDPR
• Comply with GDPR to make regulators but also customers happy
• Improved understanding of customer data lineage
• Collaboration across stakeholders
• Sharing consent with partners
• Improved customer experience
• GDPR competitive differentiation
#ReadyForGDPR 23
It will be much harder to
communicate with customers
and clients.
24. This will make your organisation trusted and authentic, inspiring
transparent relationships with your customers.
Put data protection at the
heart of your brand.
#ReadyForGDPR 24
http://www.information-age.com/5-eu-companies-ready-gdpr-compliance-alert-logic-123469223/ - varying compliance statistics.
This comes from our own research
Nigel to add Forrester article: Which sectors are most ready – finance being more vigiliant
Gen to add notes from Blog
90% of the worlds data was created in the past 2 years:: http://www.deleteagency.com/news/the-impact-of-general-data-protection-regulations-gdpr-on-your-customer-marketing
Create timeline reflecting and highlighting the key dates: 1950, 1981, 1998 and 2016
Time line effect design
EU Regulation is a legal act of the European Union that becomes immediately enforceable as law in all member states simultaneously.
EU Directive is a legal act of the European Union, which requires member states to achieve a particular result without dictating the means of achieving that result. It can be distinguished from regulations which are self-executing and do not require any implementing measures. The Directive leaves member states with a certain amount of leeway as to the exact rules to be adopted
We can produce a diagram which explains this in more detail – processor vs controller : https://lh3.googleusercontent.com/Mg8TMJS7-qXeaMifQcJRN7fVdqnD0-KGsRHJ41Nqt_HW5oiWnhwZi_tMaMyZZyQU4XzJBcqvGduEjbFeHoIU-MntozztlD5p0HTJS00bZLW7-DIJKPGL9VhQ4T32gR-PotITXeLM
Changes to Data controller and Data processor responsibilities
Controller “determines the purposes and means of the processing of personal data”, while a processor is “any person who processes personal data on behalf of the controller (other than a person who is an employee of the controller)”.
One of the major changes is that data processors have specific obligations under the GDPR – if a processor fails to report a data loss to their controller, then the processor can be subject to regulatory action from the commissioner, where that isn’t possible under the current Data Protection Act
If you are a processor, the GDPR places specific legal obligations on you; for example, you are required to maintain records of personal data and processing activities. You will have legal liability if you are responsible for a breach.
if you are a controller, you are not relieved of your obligations where a processor is involved – the GDPR places further obligations on you to ensure your contracts with processors comply with the GDPR.
The GDPR applies to processing carried out by organisations operating within the EU. It also applies to organisations outside the EU that offer goods or services to individuals in the EU.
Include icons per point
Can we add icons for your business – engaging icons
----- Meeting Notes (29/01/18 12:35) -----
PECR cross reference covering up to.
Consent can not be part of
the offering.
6 x icons
Example:
It’s given by ticking a box, it should possible to un-tick the box.
RECOMMENDED:
Bring your entire database up to GDPR standards, it seems required.
If you are a processor, the GDPR places specific legal obligations on you; for example, you are required to maintain records of personal data and processing activities. You will have legal liability if you are responsible for a breach.
if you are a controller, you are not relieved of your obligations where a processor is involved – the GDPR places further obligations on you to ensure your contracts with processors comply with the GDPR.
The GDPR applies to processing carried out by organisations operating within the EU. It also applies to organisations outside the EU that offer goods or services to individuals in the EU.
Include icons per point
Report must include likely consequences of the breach and the actions taken to mitigate impact on the data subjects
Visually creative with 4 steps: Prepare, Protect, Detect, Respond
Visually represent the importance of this slide – needs to stand out as a warning
Ask questions?
When the UK leaves the EU, it becomes what is known as a “third country”. According to Clause 31(7) of the DPB, this is “a country or territory other than a Member State”. If there is no deal in place, this could have massive repercussions for data sharing, as Clause 71(1) of the DPB states: “A company may not transfer data to a third country.
For the UK to share data with its European partners, an “adequacy assessment” will be needed. This is not as easy as it sounds, as adequacy assessments normally take more than a year. Likewise, an adequacy assessment endorsement cannot be issued to an existing Member State, as being a member precludes the necessity of having an adequacy assessment in the first place.
Should the UK leave the EU without a deal in place, EU organisations will need to have binding contractual arrangements in place every time they wish to share new information and data with their UK partners. Only once an adequacy assessment was in place could this be dispensed with.
The DPB aims to reinforce data protection regulation for new technologies, while allowing people to have more control over their data. This will be no easy task, as – given the definitions used in the DPB – the UK will have more than 60,000,000 data subjects (a person who has data stored about them) and approximately 500,000 data controllers (companies or organisations which store data about data subjects).
The UK Data Protection Bill is due to come into force this year, ahead of the EU General Data Protection Regulation in May 2018
The first draft of the Data Protection Bill (DPB) was released on 13 September 2017, following its second reading in the House of Lords. This bill is designed to bring the UK’s data protection laws in line with the European Union’s (EU) General Data Protection Regulation (GDPR).
Despite the UK government having triggered Article 50 of the Lisbon Treaty, and being in negotiations regarding leaving the EU, the UK will still be classed as a Member State when the GDPR compliance deadline is reached on 25 May 2018.
[may be removed in dry-run]
Graphics to add – quote big and
Have 1 as a big number. And title in big centred
Same as point 1.
Opportunities for your business – interactive diagram (3 x slides)
By placing respect for privacy at the heart of brand proposition.
Transforming the way it projects to customers, making every engagement human-centric.
This will ascribe organisation as trusted and authentic, inspiring transparent relationships with their customers.
Linked to next slide.
Health theme – a ‘core brand value’ similar to our retail whitepaper infographic messaging - some image here would be good to represent this
Have health theme image. Like an ad.