GDPR Road-Map and Prioritization for SAP System Landscapes
Doing Business in Europe?EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years.What you need to know and do by Friday, May 25, 2018.
Doing Business in Europe? GDPR: What you need to know and doPatric Dahse
General Data Protection Regulation (GDPR) will become effective on the 25th of May 2018. IT leaders are required to be compliant on that date but may not yet be aware of its consequences such as time-consuming investigations and hefty fines of over €20 million.
Considering the short preparation period and the broad changes resulting from the GDPR, this webinar provides 12 simple steps to discover how to inventory your SAP data repositories and safely process personal data so that you can begin to better scope your GDPR readiness project.
Using GDPR to Transform Customer ExperienceMongoDB
Infosys and MongoDB – A strategic relationship
What is GDPR?
Overview of GDPR – Infosys PoV [Key Focus Areas, Own Journey]
Infosys Solution Framework to GDPR
What Organizations are doing to be GDPR Ready and Infosys’ Relevant experience
GDPR From the Trenches - Real-world examples of how companies are approaching...Ardoq
As GDPR enforcement approaches, companies around the world are making changes to their internal processes and systems to ensure they are compliant by May 2018. For many, getting started can be a daunting task, especially at larger organizations.
There’s no one-size-fits-all strategy for GDPR compliance, but there are some steps that every business should take:
1. Document the data and processes that power your organization
2. Assess the realistic compliance risks that you need to protect against
3. Keep your documentation up-to-date to demonstrate continuous compliance.
In this slide deck, you’ll read about a real-world example of a company that has started their compliance project and how they structured it.
A recording of this webinar is available for free here: http://bit.ly/2hMsQmu
The General Data Protection Regulation (GDPR) comes into force on 25 May 2018. GDPR is a hugely important piece of legislation designed to replace antiquated data protection rules with a new framework which accounts for recent technological advancements.
Fundamentally, GDPR is about protecting people: in this digital age, our world is awash with data and individuals are generating a continuous flow of personal information. This data can hold huge socio-economic value, from individual preference and personalisation, to understanding national health trends and global business insights. But while the digital age has brought forth huge possibilities and benefits, it also carries inherent dangers.
Some of the most powerful companies in the world have established a business model predicated on the basis of data capture. Increasingly, services like email, search and social media have become available free of charge, but this often involves a trade-off where user access comes at the cost of relinquishing control of data. As the value of this information has become clear, there has been growing recognition that a new framework is needed to police this delicate balance and restore ownership and control.
GDPR will significantly raise the bar of obligation and accountability, ensuring that all organisations which handle personal data adhere to strict regulations around privacy, security and consent. This conference will contextualise the changing regulatory landscape, explain the significance of incoming rules, and define the key areas that organisations need to be aware of.
Core conference topics include:
Key legal issues and obligations
Privacy Impact Assessments
Data security and breach notification
Privacy by design
DPO requirements
Practical strategy implementation
Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...Ardoq
How do you build and sustain organisational resilience?
Beyond the cyber threats, data breaches, risks and compliance, where are the opportunities for digital transformation and innovation in a post GDPR world?
More info:
https://content.ardoq.com/ardoq-events-join_us
Event created together with Sympatico Consulting:
https://www.sympaticoconsulting.co.uk/
Digital Enterprise Festival Birmingham 13/04/17 - Ian West Cognizant VP Data ...CIO Edge
Learn what the EU Global Data Protection Regulation means for your business – Carrot or Stick its your choice but with fines of €20m or up to 4% of Global Revenue (whichever is the larger) being applied for every data breach and every data mis-use after May 2018 the carrot is the better option.
Are you aware? Are you prepared? Do you comply?
To book a free non sales consultation about GDPR with Ian West contact us enquiry@digitalenterprisefest.com
Doing Business in Europe? GDPR: What you need to know and doPatric Dahse
General Data Protection Regulation (GDPR) will become effective on the 25th of May 2018. IT leaders are required to be compliant on that date but may not yet be aware of its consequences such as time-consuming investigations and hefty fines of over €20 million.
Considering the short preparation period and the broad changes resulting from the GDPR, this webinar provides 12 simple steps to discover how to inventory your SAP data repositories and safely process personal data so that you can begin to better scope your GDPR readiness project.
Using GDPR to Transform Customer ExperienceMongoDB
Infosys and MongoDB – A strategic relationship
What is GDPR?
Overview of GDPR – Infosys PoV [Key Focus Areas, Own Journey]
Infosys Solution Framework to GDPR
What Organizations are doing to be GDPR Ready and Infosys’ Relevant experience
GDPR From the Trenches - Real-world examples of how companies are approaching...Ardoq
As GDPR enforcement approaches, companies around the world are making changes to their internal processes and systems to ensure they are compliant by May 2018. For many, getting started can be a daunting task, especially at larger organizations.
There’s no one-size-fits-all strategy for GDPR compliance, but there are some steps that every business should take:
1. Document the data and processes that power your organization
2. Assess the realistic compliance risks that you need to protect against
3. Keep your documentation up-to-date to demonstrate continuous compliance.
In this slide deck, you’ll read about a real-world example of a company that has started their compliance project and how they structured it.
A recording of this webinar is available for free here: http://bit.ly/2hMsQmu
The General Data Protection Regulation (GDPR) comes into force on 25 May 2018. GDPR is a hugely important piece of legislation designed to replace antiquated data protection rules with a new framework which accounts for recent technological advancements.
Fundamentally, GDPR is about protecting people: in this digital age, our world is awash with data and individuals are generating a continuous flow of personal information. This data can hold huge socio-economic value, from individual preference and personalisation, to understanding national health trends and global business insights. But while the digital age has brought forth huge possibilities and benefits, it also carries inherent dangers.
Some of the most powerful companies in the world have established a business model predicated on the basis of data capture. Increasingly, services like email, search and social media have become available free of charge, but this often involves a trade-off where user access comes at the cost of relinquishing control of data. As the value of this information has become clear, there has been growing recognition that a new framework is needed to police this delicate balance and restore ownership and control.
GDPR will significantly raise the bar of obligation and accountability, ensuring that all organisations which handle personal data adhere to strict regulations around privacy, security and consent. This conference will contextualise the changing regulatory landscape, explain the significance of incoming rules, and define the key areas that organisations need to be aware of.
Core conference topics include:
Key legal issues and obligations
Privacy Impact Assessments
Data security and breach notification
Privacy by design
DPO requirements
Practical strategy implementation
Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...Ardoq
How do you build and sustain organisational resilience?
Beyond the cyber threats, data breaches, risks and compliance, where are the opportunities for digital transformation and innovation in a post GDPR world?
More info:
https://content.ardoq.com/ardoq-events-join_us
Event created together with Sympatico Consulting:
https://www.sympaticoconsulting.co.uk/
Digital Enterprise Festival Birmingham 13/04/17 - Ian West Cognizant VP Data ...CIO Edge
Learn what the EU Global Data Protection Regulation means for your business – Carrot or Stick its your choice but with fines of €20m or up to 4% of Global Revenue (whichever is the larger) being applied for every data breach and every data mis-use after May 2018 the carrot is the better option.
Are you aware? Are you prepared? Do you comply?
To book a free non sales consultation about GDPR with Ian West contact us enquiry@digitalenterprisefest.com
INATSUMMIT 2018 - Belgrade April 14th, 2018
How to comply to General Data Protection Regulation and still run a wealthy organization in post-digital economy
In May 2018, the European Union’s General Data Protection Regulation (GDPR) will take effect. Companies that do not comply might be fined 20M or 4% of the annual global turnover whichever is greater. Despite the evident threat, GDPR is also a huge opportunity to rethink how your business works and to turn that threat into an opportunity. GRAKN.AI – a knowledge base – provides all you need to turn the centralized record of users that GDPR is asking companies to create and use it to provide value to your users. Adding them to the knowledge base as well as your content or product opens many new perspectives.
What's Next - General Data Protection Regulation (GDPR) ChangesOgilvy Consulting
The General Data Protection Regulation is the biggest change to the law on data in years. This webinar features Vicky Brown, Deputy General Counsel at WPP, and Paul King, Head of Data at OgilvyOne discussing what it is, why it matters and what companies are doing.
Webianr: GDPR: How to build a data protection frameworkLeigh Hill
Are you ready for the General Data Protection Regulation (GDPR)?
With the GDPR deadline less than two years away, the pressure is on for organizations to understand how they will comply. Proper data management is part of the answer, but tying these efforts into a data governance framework to manage data protection is key to meeting – and sustaining – GDPR compliance.
In this webinar we will discuss:
-What GDPR is and the impact it has on data management
-Why a sustainable framework is key to getting GDPR right
-The five steps to establishing a data protection framework
-How to ensure ongoing compliance
In this first edition, the head of Match-Maker Ventures' GDPR align focus area Christoph Prager will translate the regulatory framework into business language and give recommendations for organizations departing on their GDPR journey.
Joining us for this one-hour session will be Monika Kuschewsky, partner from Squire Patton Boggs' Data Privacy and Cybersecurity practice. She will share her views on GDPR and data protection, which she gained from over 15 years of working with organizations all over the globe. In particular, she will highlight the implications that the growth of IoT devices and "Bring your own device"-policies at companies have on data protection.
Can your organization afford to be fined €20 million for improperly removing customer data, as required by EU’s new General Data Protection Regulation (GDPR)? Seasoned legal and security experts from Blancco Technology Group and DLA Piper distil the legal terminology from the recently approved EU General Data Protection Regulation (GDPR) into 'how' and 'what' your organization needs to know to prepare for compliance by 2018.
GDPR: 20 Million Reasons to get ready - Part 1: Preparing for complianceCloudera, Inc.
The first webinar of the series starts at the beginning: preparing for GDPR compliance. In this session, we look at how technology and process come together to let organisations get to grips with the GDPR relevant data that flows around their companies and work towards compliance. We will give you practical examples on how to apply data discovery, data minimisation, data protection and security as well as the role of the record of processing in this.
GDPR: it's big, but it's not impossible.
With GDPR looming on the horizon, it’s understandable organisations might be worried. Few companies have stood up and declared compliance yet. Most are heads down identifying personal data and implementing plans for compliance. There are hurried glances at the clock as the time to 25 May ticks away; the reality of daunting fines comes ever closer.
GDPR is the most significant change to data protection in a generation and an imminent global issue that will dominate data privacy, management and regulation discussions in 2017. According to recent research, over half of businesses lack preparedness for GDPR. With a quarter of the EU’s grace period over and with fines of up to €20 million (or 4% of global turnover), there is a lot at stake for companies falling behind the May 2018 deadline. So, where do you start?
Join renowned information security consultant and GDPR expert, Brian Honan, along with Tim Erlin, Senior Director, Security and IT Risk Strategist at Tripwire as they walk you through the essential steps to accelerate your GDPR preparedness.
In this session you will learn:
• The key facts about the GDPR regulations
• The implications of the new rules and how they will impact your business
• Practical steps your business can take to prepare
• How your existing security frameworks (ISO/NIST/CSC) can help set the foundation
• How Tripwire can help
The GDPR is all about how to govern and manage your privacy relevant data in SAP systems. Many companies are strugling to adapt and align their (SAP) information governance and practical information management activities with the GDPR legislation.
Read this GDPR presentation presented for the Dutch SAP user group to learn more about some of the practical governance and management activities you can prepare for SAP systems in order to comply with the GDPR
7 Key GDPR Requirements & the Role of Data GovernanceDATUM LLC
GDPR is less than a year away. How is your organization making sure it will avoid penalties, fines and punishments? All organizations need to familiarize themselves with the new GDPR requirements and data subject rights as the first step to preventing fines and penalties. This presentation will look at the key requirements of GDPR and certain “best practices” approaches towards company-wide compliance. This presentation was given by Jonathan Adams, Research Director, at the MDM & Data Governance Summit on October 12, 2017 in New York City.
GDPR will replace national data protection laws of all 28 EU member states in May 2018 and is applying to any organization that processes data of EU data subjects.
Presentation to Cyprus Computer Society Records Management event by Christoforos Christoforou, Risk and Strategic Planning Manager at Fileminders http://www.fileminders.com.cy/
Agenda:
1. Introduction to the General Data Protection Regulation (GDPR )
2.Data protection: Why all the fuss?
3. How does GDPR affect your business?
GDPR - Context, Principles, Implementation, Operation, Impact on Outsourcing,...Alan McSweeney
The topics covered in this presentation are:
• Context of GDPR - this contains information on other directives and regulations relating to GDPR to provide details on its wider content
• Personal Information - this reiterates what is meant by personal information and so what is covered by GDPR
• Principles of GDPR - this identifies some of the key principles that underpin GDPR and will affect its operation and the particular provisions of the GDPR intended to give effect to those principles
• Implementing and Operating GDPR - this discusses approaches to operationalising GDPR within organisations
• GDPR and Outsourcing - this contains details on the particular topic of outsourcing that will be impacted by GDPR
• Data Governance - this puts GDPR into wider Data Governance context
• Data Ethics- this briefly discusses the wider issue of data ethics in the context of GDPR
The impact of GDPR cannot really be estimated or quantified at this stage. There is a wider regulatory context for GDPR. The range of data compliance regulations is only growing. Achieving GDPR compliance has the potential to be very expensive, especially for larger organisations. GDPR compliance should be addressed in the context of wider data governance. Existing methodologies should be reused where possible.
If you're a legal or security professional, the looming General Data Protection Regulation, or GDPR, is likely causing your blood pressure to rise. Expected to impose strict limitations on organizations that do business in the European Union, or otherwise collect the data of European citizens, the regulation is said to raise the stakes for privacy compliance as well as for transcontinental discovery. Organizations that don't meet its standards by May 2018 will be the subject of potentially business-rattling sanctions.
DevOpsDaysRiga 2017: Edward van Deursen - GDPR in DevOps for DummiesDevOpsDays Riga
Since organisations are already struggling with getting compliant to the security standards like ISO 27001/2, it’s even harder to get the right measures in place for the GDPR.
Topics: the relation between privacy and security, Privacy by Design, translate GDPR into useful privacy requirements.
Organisations are preparing for the General Data Protection Regulation (GDPR), the latest European privacy law. Since organisations are already struggling with getting compliant to the security standards like ISO 27001/2, NEN 7510 or Dutch baseline as BIR / BIG/ BIWA, it’s even harder to get the right measures in place for the GDPR.
In this presentation, we start with the relations between privacy and security. And why it is even more relevant to Shift left in the development lifecycle (Privacy by Design). Then we will discuss some articles from the GDPR and will translate them into useful privacy requirements. This will demonstrate why you must have privacy and security requirements in place even before you start building or changing a system.
Next, to the requirement, we will end with the articles which are beneficial for organisations.
Take away: some generic user and abuser stories which are relevant for most applications.
INATSUMMIT 2018 - Belgrade April 14th, 2018
How to comply to General Data Protection Regulation and still run a wealthy organization in post-digital economy
In May 2018, the European Union’s General Data Protection Regulation (GDPR) will take effect. Companies that do not comply might be fined 20M or 4% of the annual global turnover whichever is greater. Despite the evident threat, GDPR is also a huge opportunity to rethink how your business works and to turn that threat into an opportunity. GRAKN.AI – a knowledge base – provides all you need to turn the centralized record of users that GDPR is asking companies to create and use it to provide value to your users. Adding them to the knowledge base as well as your content or product opens many new perspectives.
What's Next - General Data Protection Regulation (GDPR) ChangesOgilvy Consulting
The General Data Protection Regulation is the biggest change to the law on data in years. This webinar features Vicky Brown, Deputy General Counsel at WPP, and Paul King, Head of Data at OgilvyOne discussing what it is, why it matters and what companies are doing.
Webianr: GDPR: How to build a data protection frameworkLeigh Hill
Are you ready for the General Data Protection Regulation (GDPR)?
With the GDPR deadline less than two years away, the pressure is on for organizations to understand how they will comply. Proper data management is part of the answer, but tying these efforts into a data governance framework to manage data protection is key to meeting – and sustaining – GDPR compliance.
In this webinar we will discuss:
-What GDPR is and the impact it has on data management
-Why a sustainable framework is key to getting GDPR right
-The five steps to establishing a data protection framework
-How to ensure ongoing compliance
In this first edition, the head of Match-Maker Ventures' GDPR align focus area Christoph Prager will translate the regulatory framework into business language and give recommendations for organizations departing on their GDPR journey.
Joining us for this one-hour session will be Monika Kuschewsky, partner from Squire Patton Boggs' Data Privacy and Cybersecurity practice. She will share her views on GDPR and data protection, which she gained from over 15 years of working with organizations all over the globe. In particular, she will highlight the implications that the growth of IoT devices and "Bring your own device"-policies at companies have on data protection.
Can your organization afford to be fined €20 million for improperly removing customer data, as required by EU’s new General Data Protection Regulation (GDPR)? Seasoned legal and security experts from Blancco Technology Group and DLA Piper distil the legal terminology from the recently approved EU General Data Protection Regulation (GDPR) into 'how' and 'what' your organization needs to know to prepare for compliance by 2018.
GDPR: 20 Million Reasons to get ready - Part 1: Preparing for complianceCloudera, Inc.
The first webinar of the series starts at the beginning: preparing for GDPR compliance. In this session, we look at how technology and process come together to let organisations get to grips with the GDPR relevant data that flows around their companies and work towards compliance. We will give you practical examples on how to apply data discovery, data minimisation, data protection and security as well as the role of the record of processing in this.
GDPR: it's big, but it's not impossible.
With GDPR looming on the horizon, it’s understandable organisations might be worried. Few companies have stood up and declared compliance yet. Most are heads down identifying personal data and implementing plans for compliance. There are hurried glances at the clock as the time to 25 May ticks away; the reality of daunting fines comes ever closer.
GDPR is the most significant change to data protection in a generation and an imminent global issue that will dominate data privacy, management and regulation discussions in 2017. According to recent research, over half of businesses lack preparedness for GDPR. With a quarter of the EU’s grace period over and with fines of up to €20 million (or 4% of global turnover), there is a lot at stake for companies falling behind the May 2018 deadline. So, where do you start?
Join renowned information security consultant and GDPR expert, Brian Honan, along with Tim Erlin, Senior Director, Security and IT Risk Strategist at Tripwire as they walk you through the essential steps to accelerate your GDPR preparedness.
In this session you will learn:
• The key facts about the GDPR regulations
• The implications of the new rules and how they will impact your business
• Practical steps your business can take to prepare
• How your existing security frameworks (ISO/NIST/CSC) can help set the foundation
• How Tripwire can help
The GDPR is all about how to govern and manage your privacy relevant data in SAP systems. Many companies are strugling to adapt and align their (SAP) information governance and practical information management activities with the GDPR legislation.
Read this GDPR presentation presented for the Dutch SAP user group to learn more about some of the practical governance and management activities you can prepare for SAP systems in order to comply with the GDPR
7 Key GDPR Requirements & the Role of Data GovernanceDATUM LLC
GDPR is less than a year away. How is your organization making sure it will avoid penalties, fines and punishments? All organizations need to familiarize themselves with the new GDPR requirements and data subject rights as the first step to preventing fines and penalties. This presentation will look at the key requirements of GDPR and certain “best practices” approaches towards company-wide compliance. This presentation was given by Jonathan Adams, Research Director, at the MDM & Data Governance Summit on October 12, 2017 in New York City.
GDPR will replace national data protection laws of all 28 EU member states in May 2018 and is applying to any organization that processes data of EU data subjects.
Presentation to Cyprus Computer Society Records Management event by Christoforos Christoforou, Risk and Strategic Planning Manager at Fileminders http://www.fileminders.com.cy/
Agenda:
1. Introduction to the General Data Protection Regulation (GDPR )
2.Data protection: Why all the fuss?
3. How does GDPR affect your business?
GDPR - Context, Principles, Implementation, Operation, Impact on Outsourcing,...Alan McSweeney
The topics covered in this presentation are:
• Context of GDPR - this contains information on other directives and regulations relating to GDPR to provide details on its wider content
• Personal Information - this reiterates what is meant by personal information and so what is covered by GDPR
• Principles of GDPR - this identifies some of the key principles that underpin GDPR and will affect its operation and the particular provisions of the GDPR intended to give effect to those principles
• Implementing and Operating GDPR - this discusses approaches to operationalising GDPR within organisations
• GDPR and Outsourcing - this contains details on the particular topic of outsourcing that will be impacted by GDPR
• Data Governance - this puts GDPR into wider Data Governance context
• Data Ethics- this briefly discusses the wider issue of data ethics in the context of GDPR
The impact of GDPR cannot really be estimated or quantified at this stage. There is a wider regulatory context for GDPR. The range of data compliance regulations is only growing. Achieving GDPR compliance has the potential to be very expensive, especially for larger organisations. GDPR compliance should be addressed in the context of wider data governance. Existing methodologies should be reused where possible.
If you're a legal or security professional, the looming General Data Protection Regulation, or GDPR, is likely causing your blood pressure to rise. Expected to impose strict limitations on organizations that do business in the European Union, or otherwise collect the data of European citizens, the regulation is said to raise the stakes for privacy compliance as well as for transcontinental discovery. Organizations that don't meet its standards by May 2018 will be the subject of potentially business-rattling sanctions.
DevOpsDaysRiga 2017: Edward van Deursen - GDPR in DevOps for DummiesDevOpsDays Riga
Since organisations are already struggling with getting compliant to the security standards like ISO 27001/2, it’s even harder to get the right measures in place for the GDPR.
Topics: the relation between privacy and security, Privacy by Design, translate GDPR into useful privacy requirements.
Organisations are preparing for the General Data Protection Regulation (GDPR), the latest European privacy law. Since organisations are already struggling with getting compliant to the security standards like ISO 27001/2, NEN 7510 or Dutch baseline as BIR / BIG/ BIWA, it’s even harder to get the right measures in place for the GDPR.
In this presentation, we start with the relations between privacy and security. And why it is even more relevant to Shift left in the development lifecycle (Privacy by Design). Then we will discuss some articles from the GDPR and will translate them into useful privacy requirements. This will demonstrate why you must have privacy and security requirements in place even before you start building or changing a system.
Next, to the requirement, we will end with the articles which are beneficial for organisations.
Take away: some generic user and abuser stories which are relevant for most applications.
Op 25 mei 2018 treedt de General Data Protection Regulation (GDPR), oftewel Algemene verordening gegevensbescherming (AVG) in werking. Deze nieuwe Europese privacywet is van toepassing op bedrijven van elke omvang en binnen alle branches. De wet stelt strikte eisen aan de bescherming van persoonsgegevens en is bedoeld om privacyrechten te waarborgen en beveiligen. Vanaf de ingangsdatum zijn organisaties die data verzamelen en opslaan verplicht om deze informatie volgens de GDPR-richtlijnen te beveiligen. Wie daar niet aan voldoet riskeert grote boetes.
Bent u klaar voor de GDPR?
Bent u al begonnen met de voorbereidingen om voor 25 mei 2018 GDPR compliant te zijn? Het GDPR-traject stelt u mogelijk voor een hoop uitdagingen. Gelukkig bieden Microsoft Cloud oplossingen zoals Office 365, EM+S en Windows 10 vele functies die u helpen om de maatregelen te nemen die nodig zijn.
Tijdens dit webinar gaan we vooral in op hoe Microsoft oplossingen u kunnen helpen om GDPR-compliant te worden.
Profiling, Big Data & Consent Under the GDPR [TrustArc Webinar Slides]TrustArc
Watch the webinar on-demand: https://info.trustarc.com/profiling-big-data-consent-gdpr-webinar.html
Required Changes around Profiling & Consent for GDPR Compliance
Some of the most closely followed areas of the GDPR negotiations concerned profiling and consent. Profiling, as defined in Articles 4 & 22, is one of the new provisions in the Regulation which could have a significant impact on businesses seeking to use targeted marketing and other analytics for business growth. Consent remains a legal basis for processing but it’s been restricted under the GDPR and must be “freely given, specific, informed and unambiguous.” There is lots of discussion and privacy scare stories around these two areas alone.
Watch this webinar on-demand where we examine:
- the details of the profiling and consent requirements in the GDPR to help determine what is and isn’t in scope for profiling
- where you can and can’t rely on consent
- what solutions are available and how privacy leaders can work with their business and marketing teams to ensure compliance
To register for upcoming/on-demand webinars visit: https://www.trustarc.com/events/webinar-schedule/
Ensuring GDPR Compliance - A Zymplify GuideZymplify
The GDPR will come into force on 25 May 2018 and will change data protection laws across the EU. Organisations can face heavy fines if they are found to be in breach of the GDPR, so take a look at Zymplify's guide to the most important parts of the regulation. Act now to get ready for the GDPR. Book a Demo with Zymplify - http://d36.co/12vWD
Geek Sync | Tackling Key GDPR Challenges with Data Modeling and GovernanceIDERA Software
You can watch the replay for this Geek Sync webcast in the IDERA Resource Center: http://ow.ly/tLtr50A5b4b
The General Data Protection Regulation (GDPR) is inevitable and goes live in the EU beginning May 25th 2018. It touches all technical and organizational measures as well as the design of internal systems and processes, and affects all companies around the world that have customers in the EU.
Join IDERA and Dr. Sultan Shiffa as he focuses on how data modeling, governance and collaboration help Executives, IT Managers, Architects, DBAs and Developers tackle the key challenges around data protection by design and by default, individual rights to access and erasure, valid consent, data protection roles and accountabilities, data breach notifications, and auditing the records of data processing activities. This session will also explore best practices and examples for how to master those challenges and assess the data protection impact. After this session, you can be prepared to become GDPR compliant ahead of the deadline and beyond.
How to Prepare Your SAP System for the New European Union General Data Protection Regulation. Learn how to change your practices within your SAP environment so that they comply with the new
data General Data Protection Regulation (GDPR) privacy regulation
As a general reference, the main transaction codes to access master data tables include:
• Create, change and display customers, prospects, and contact persons (XD0*, VD0*, VAP*) and
reporting-related lists (S_ALR_87012179, S_ALR_87012180)
• Create, change, and display vendors (XK0*, MK0*) and reporting-related lists (S_ALR_87012086)
• Create, change, and display employee (PA10, PA20, PA30) and applicant (PB10, PB20, PB30) files
• Create and maintain bank master data (FI01, FI02, FI06) and business partners (BP, BUP1)
• Maintain general tables (SE11, SM30, SM31)
• Browse data (SE16) and display a table (SE16N)
Enterprise Data Management: Managing your Business’s Entire Data LifecycleNIXUnited
Speaker: Eugene Rudenko, AI Solutions Consultant at NIX United
https://bit.ly/3OfVz1h
- Learn about what data management is and why this process is a must-have for enterprises in 2022
- Learn how to assess the maturity level of data management and digital transformation in your organization
- Learn advice on how to determine between ready-made products of custom solutions
- Learn about the advantages and disadvantages in comparison of cloud vs. on-premise vs. hybrid solutions
- Learn about data management advantages by the example of our use case AWS-based BI Platform for Data Visualization and Marketing Insights
- Learn about necessary conditions to ensure secure data storage and data compliance standards
- Learn about the importance of high security for the workspace and inner channels of communication
Enterprise Data Management: Managing your Business’s Entire Data LifecycleErinDempsey17
AIIM FL Chapter webinar featuring Eugene Rudenko, NIX United
The amount of data businesses generate and use in their operational activities grows exponentially every year. Ideally, all the data should be stored, organized, and processed at a reasonable cost. Therefore, enterprise data management (EDM) is not a buzzword but a necessary component of modern business operations that want to transform data into an efficient tool and have an advantage over competitors. Competent data management is all about establishing a process that extracts the value from data, mitigates risk, and contributes to data-driven decisions. In addition, the well-established EDM is secured and increases the quality, integrity, and trustworthiness of the data used for business operations and reporting.
Suppose you have heard about data management but always wanted to understand what it is in a nutshell, its benefits, and most importantly, how to organize this process in your company or level up the existing data management process in your business. In that case, this slide deck is worth reviewing.
You will see the full potential of data management solutions, get meaningful advice from a seasoned expert about accelerating a business's digital transformation and frictionless building of EDM for your company proven with case studies.
You will learn about:
• What data management is and why this process is a must-have for enterprises in 2022
• How to assess the maturity level of data management and digital transformation in your organization
• Advice on how to determine between ready-made products of custom solutions
• Advantages and disadvantages in comparison of cloud vs. on-premise vs. hybrid solutions
• Data management advantages by the example of our use case AWS-based BI Platform for Data Visualization and Marketing Insights
• Necessary conditions to ensure secure data storage and data compliance standards
• The importance of high security for workspace and inner channels of communication
Marketer’s Guide to GDPR & Data Privacy Download Guide.
Get to Know Your Visitors the Right Way. Why Compliance Matters?
Companies may well have to invest considerable time and money integrating GDPR compliance into operational procedures.
This is because the EU has designed financial sanctions, so as to make GDPR non-compliance costly - up to €20 million or 4% of the global annual turnover
(whichever is higher).
Discover all you need to know about GDPR & Data Privacy. Check out our Hub to access articles, guides, checklists & more » https://www.visitor-analytics.io/en/resources/gdpr-and-data-privacy/
The EU, together with subordinate national data protection agencies, have ramped up enforcement efforts in recent years.
Severe Financial Penalties
Total GDPR fines have grown from $179 million to $1.2 billion
between January 2021 and January 2022 - a sevenfold increase.
This edition of The CEO Views brings to you “Top 10 GDPR Solution Providers 2020”. The list highlights some of the GDPR solution providers who offer the best in class in the technology landscape. The proposed list aspires to assist individuals and organizations to find the best companies that will help them accomplish their projects.
As one of the largest processors and controllers of global information, IBM has embarked on a global program towards GDPR compliance readiness. Using the same methodology, services, and solutions as it does with clients, this session will demonstrate how this process can serve as a model for GDPR for any large enterprise. How this model can then be a basis to help comply with all other regulatory needs and be a framework for future business transformation and opportunity. Specifics will include:
• A summary to the needs and opportunities of the GDPR regulation
• With the time left, where are you, what can still be done
• A prescriptive phased methodology of execution
• Core solution technical measures and capabilities
• Key GDPR actionable outcomes by stakeholder
The focus is on discovering, mapping, and managing personal data for GDPR, along with data protection and compliance, on Hadoop in a sustainable way.
Speaker
Richard Hogg, Global GDPR Evangelist, IBM
Παρουσίαση του κ. Κώστα Γκρίτση στην εκδήλωση που πραγματοποίησε ο Κύκλος Ιδεών για την Εθνική Ανασυγκρότηση σε συνεργασία με το Ίδρυμα Διεθνών Νομικών Μελετών- Καθηγητού Ηλία Κρίσπη και με την υποστήριξη της Ελληνοαμερικανικής Ένωσης, με θέμα:
«Προστασία Προσωπικών Δεδομένων - Ηλεκτρονική Ταυτοποίηση»
Διαχείριση Προσωπικών Δεδομένων μετά την υιοθέτηση του νέου Γενικού Κανονισμού (GDPR) και Ηλεκτρονική Ταυτοποίηση με τη χρήση του δικτύου eIDAS (eID_EU): Επιχειρησιακές, τεχνικές και θεσμικές συνέπειες
την Τετάρτη 14 Μαρτίου 2018, στο Θέατρο της Ελληνοαμερικανικής Ένωσης
Στη συζήτηση συμμετείχαν:
Λίλιαν Μήτρου, Πανεπιστήμιο Αιγαίου - Πολυτεχνική Σχολή
Κωνσταντίνος Χριστοδούλου, Πανεπιστήμιο Αθηνών - Νομική Σχολή
Αντώνης Στασής, Υπουργείο Διοικητικής Ανασυγκρότησης - Διεύθυνση Ηλεκτρονικής Διακυβέρνησης
Χρυσούλα Μιχαηλίδου, ΕΕΤΤ, Νομική Υπηρεσία
Γιώργος Παπασταματίου, FORTH-CRS
Κώστας Γκρίτσης, MICROSOFT
Φερενίκη Παναγοπούλου-Κουτνατζή, Πάντειο Πανεπιστήμιο – Σχολή Δημόσια Διοίκησης
Συντόνισε ο Πέτρος Καβάσαλης, Πανεπιστήμιο Αιγαίου - Πολυτεχνική Σχολή & Κύκλος Ιδεών για την Εθνική Ανασυγκρότηση
https://ekyklos.gr/ev/581-14-3-2018-prostasia-dedomenon-ilektroniki-taftopoiisi.html
How to minimize scope for gdpr data protection compliance when using cloud se...Dirk Rünagel
With eperi Cloud Data Protection (CDP), you as a cloud user remain in control of all your data protection processes and ensure that your organization’s data protection compliance guidelines are centrally enforced.
eperi Cloud Data Protection is the only solution in the market that allows you to encrypt data in common business cloud applications while retaining their functionalities – like searching for specific content in archived Office 365 emails or using Salesforce reporting features.
All these functionalities remain while your sensitive information is stored only in an encrypted format. For you as a customer of a cloud application such as Office 365 or Salesforce, this means you are able to use all functionalities of innovative cloud applications without compromises due to data protection and compliance requirements. Your sensitive information stored in the cloud is protected against unauthorized access at all times.
GDPR Compliance: The eperi Gateway protects supplier data
A public organisation wants to store their files, among them surveillance videos and VM images, in the cloud. Due to Personally Identifiable Information (PII) being affected, the information has to be pseudonymised according to the EU General Data Protection Regulation (GDPR). With the eperi Gateway, the public organisation is able to encrypt and tokenise their data before it is sent to the cloud for processing.
The Top Three Product Lifecycle Management Trends Taking Shape Across the Dig...Cognizant
By embracing product data as a service, microservices and emerging blockchain technology, product development organizations can more effectively innovate and compete in the dynamic global marketplace.
Data Security & Data Privacy: Data AnonymizationPatric Dahse
As data and security and data privacy experts in SAP, Natuvion presents a solution to help comply with data protection conformity. Pressure to create data protection conformity persistently increases in the context of the new Data Protection Act.
Our Test Data Anonymization tool (TDA) offers the possibility to eliminate the standard method of SAP Test, Training and/or project systems being built on a complete copy of the production system. The problem with this method is that fragile and comprehensive data is easily accessible for internal and external employees to see therefore, putting a company at risk of costly fines for breaches of GDPR. Instead, Natuvion’s TDA tool quickly offers test data completely anonymized, allowing data to be protected.
In this webinar, we will explain why data should be anonymized, what is the scope as well as key features. We will also go through an example of how this tool works along with how a typical implementation takes place.
Sap increase your return on information by focusing on data governance - ma...Bertille Laudoux
Increase your Return On Information by focusing on Content Management.
Discover how to increase productivity by centralising and optimising content management across your organisation.
Devoteam itsmf 2021 - from business automation to continuous value-driven i...itSMF Belgium
The race for enterprise business process digitalization is raging. IT is often left behind as enterprise budgets for innovation are shifting towards business teams.
During this session, we will present the challenges and our field-tested approaches to catch-up and how to take this opportunity to create new app factories. All the while using low-code and RPA platforms.
You will discover how to capture business demands, and create an operating model for your IT department to stay in control of the applications being deployed, while bringing value at speed.
Similar to How is GDPR relevant for US companies (20)
SAP Cloud for Energy Webinar Series Part 1Patric Dahse
In this webinar series we will present an overview of how Cloud for Energy can improve your Utilities Landscape. We will also reveal never before seen previews of how your transformed landscape could look like.
Join us to discuss:
- SAP's Investment Focus Topics for Utilities
- SaaS Portfolio as an alternative for S/4HANA for Utilities on Premise
- The SAP Cloud for Energy Solution
- Demo: Mock-up of UI for Meter Data Specialist
Die DSGVO stellt hohe Ansprüche an den Umgang mit personenbezogenen Daten. Dazu gilt es zuerst die personenbezogenen Daten in den Systemen zu identifizieren. Gerade in einem SAP Business Warehouse, in dem neben Standard Content Objekten auch eigene Entwicklungen vorhanden sind, kann das schwierig sein. Natuvion stellt Ihnen eine Möglichkeit vor wie Sie personenbezogene Daten im System ermitteln können. Melden Sie sich für unsere nächstes Webinar an: https://attendee.gotowebinar.com/register/482810243902567682
Webinar mit TakeASP: Ent-personalisierungPatric Dahse
Für bestimmte Geschäftsprozesse erfordert die DSGVO einen anderen Umgang mit personenbezogenen Daten in SAP Test- , Demo- und Entwicklungssystemen. In unserem Webinar führen der SAP- und Datenschutzexperte Patric Dahse von Natuvion und Rechtsanwalt Benjamin Spies von SKW Schwarz durch das wichtige Thema.
Nutzen Sie unser Webinar für anschauliche und verständliche Antworten auf die spezifischen Themen, die Sie im Rahmen der Ent-Personalisierung in SAP-Systemen beschäftigen.
Hier können Sie unsere Webinar anschauen: https://register.gotowebinar.com/recording/2858737223737704193
Wie laufen Prozesse im Unternehmen wirklich ab? Wie wird der Einkauf gelebt? Patric Dahse
Turn on the Lights: Celonis Process Mining nutzt die digitalen Fußspuren in Ihren IT Systemen und ermöglicht so 100% Transparenz über Ihre Unternehmensprozesse. Lernen Sie mehr in unserem Webinar!
Improve Data Protection and Compliance with UI-Level Logging and MaskingPatric Dahse
For more info about how Natuvion can help with GDPR, visit us on our site: https://natuvion-gdpr.com/
This session highlights two solutions from SAP that can help you increase protection from data theft, and support corporate efforts to comply e.g. with General Data Protection Regulation (GDPR).
Discover how you can benefit from enhanced data access logging and field masking, see the systems in action and get answers to questions around prerequisites, implementation, and operation!
UI-basierte Datenschutz | SAP UI Logging & Masking (Deutsch)Patric Dahse
In diesem Webinar bekommen Sie Einsichten in zwei Lösungen von SAP, die den Schutz vor Datendiebstahl erhöhen und Unternehmungen unterstützen können, legale Anforderungen wie durch EU-DSGVO einzuhalten.
Neben einer Produktvorstellung und Systemdemo steht der Produktmanager Rede und Antwort zu Fragen rund um Anforderungen, Implementierung und Einsatzmöglichkeiten der Lösungen.
Data Security und Data Privacy: Read Access LoggingPatric Dahse
Die Möglichkeit transparent und umgehend Datenschutzverletzungen oder Sicherheitslücken auswerten bzw. aufdecken zu können ist in einer modernen digitalen Systemlandschaft eine funktionale Notwendigkeit. Das SAP Read Access Logging Framework (RAL) ermöglicht es innerhalb von SAP-Systemlandschaften, den Zugriff auf sensible Daten/ Felder zu überwachen und zu protokollieren. Die Überwachung kann auf unterschiedlichen Ebenen und Eingangskanälen erfolgen. Es können Zugriffe über die Benutzeroberflächen sowie über Services und Funktions- / Programmaufrufe überwacht werden.
Эксперт в сфере приватности и безопасности САП, Natuvion GmbH, представляет соответствующую законам, всеобъемлющую и консистентную псевдoнимизацию системных ландшафтов САП. Обычно вторичные системы САП являются полной копией продуктивных систем и, как следствие, содержат личные данные, что само по себе является грубым нарушением использования личных данных в соответствии с Основным Регламентом по Безопасности Данных Европейского Союза (EU-GDPR). ОРБД при определенных обстоятельствах применим и к компаниям, зарегистрированным за пределами Европейского Союза.
Мы предлагаем Вам сертифицированное программное решение для консистентной и соответствующей законам псевдoнимизации отдельных систем САП (к примеру, IS-U, CRM, BW, HCM), а также всего системного ландшафта САП. В рамках нашей интернет-трансляции (webcast) мы покажем Вам, почему данные должны быть анонимизированны и на какие функции стоит обратить особое внимание при выборе системного решения.
Хотите узнать больше? Тогда регистрируйтесь на наш вебинар (онлайн-семинар)!
Мы будем рады Вашему участию и увлекательной дискуссии.
Webcast Security & Data Privacy: AnonymizationPatric Dahse
Wir stellen Ihnen eine zertifizierte Softwarelösung zum konsistenten und gesetzeskonformen Pseudonymisieren von SAP Systemen sowie ganzen SAP Systemlandschaften vor. In unserem Webinar zeigen wir Ihnen auf, warum Daten überhaupt anonymisiert werden müssen und auf welche Funktionen man bei der Lösungsauswahl achten sollte.
Webcast Nr. 3 - Java Entwicklung mit der SAP Cloud PlatformPatric Dahse
Bei der Entwicklung von Cloud-Anwendungen gilt es eine Vielzahl unterschiedlicher Werkzeuge zu verstehen, die sich in den vergangenen Jahren zu einem De-Facto Standard entwickelt haben. Im zweiten Teil unserer vierteiligen Webinar-Serie zeigen wir Ihnen, welche dieser Werkzeuge typischerweise zum Einsatz kommen.
Melden Sie sich gleich zu unserem nächsten Webinar an: https://attendee.gotowebinar.com/register/7160045394797243907
Webcast SAP Cloud Platform 2 - Developing ToolsPatric Dahse
Bei der Entwicklung von Cloud-Anwendungen gilt es eine Vielzahl unterschiedlicher Werkzeuge zu verstehen, die sich in den vergangenen Jahren zu einem De-Facto Standard entwickelt haben.
Im zweiten Teil unserer vierteiligen Webinar-Serie zeigen wir Ihnen, welche dieser Werkzeuge typischerweise zum Einsatz kommen.
Sudheer Mechineni, Head of Application Frameworks, Standard Chartered Bank
Discover how Standard Chartered Bank harnessed the power of Neo4j to transform complex data access challenges into a dynamic, scalable graph database solution. This keynote will cover their journey from initial adoption to deploying a fully automated, enterprise-grade causal cluster, highlighting key strategies for modelling organisational changes and ensuring robust disaster recovery. Learn how these innovations have not only enhanced Standard Chartered Bank’s data infrastructure but also positioned them as pioneers in the banking sector’s adoption of graph technology.
GridMate - End to end testing is a critical piece to ensure quality and avoid...ThomasParaiso2
End to end testing is a critical piece to ensure quality and avoid regressions. In this session, we share our journey building an E2E testing pipeline for GridMate components (LWC and Aura) using Cypress, JSForce, FakerJS…
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Essentials of Automations: The Art of Triggers and Actions in FMESafe Software
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
UiPath Test Automation using UiPath Test Suite series, part 5DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 5. In this session, we will cover CI/CD with devops.
Topics covered:
CI/CD with in UiPath
End-to-end overview of CI/CD pipeline with Azure devops
Speaker:
Lyndsey Byblow, Test Suite Sales Engineer @ UiPath, Inc.
Pushing the limits of ePRTC: 100ns holdover for 100 daysAdtran
At WSTS 2024, Alon Stern explored the topic of parametric holdover and explained how recent research findings can be implemented in real-world PNT networks to achieve 100 nanoseconds of accuracy for up to 100 days.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...Neo4j
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfPeter Spielvogel
Building better applications for business users with SAP Fiori.
• What is SAP Fiori and why it matters to you
• How a better user experience drives measurable business benefits
• How to get started with SAP Fiori today
• How SAP Fiori elements accelerates application development
• How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities
• How SAP Fiori paves the way for using AI in SAP apps
4. Natuvion GmbH
Altrottstraße 31 | 69190 Walldorf
Fon +49 6227 73-1400
Fax +49 6227 73-1410
www.natuvion.com
Your Experts Today
Patric Dahse
Geschäftsführer
Fon: +49 151 171 357 02
Mail: patric.dahse@natuvion.com
18
Patric Dahse
CEO / Founder
Natuvion Americas Inc.
19 W. 34th Street, Suite 1018
New York, NY 10001, USA
T +49 (0) 6227.73 -1400
F +49 (0) 6227.73 -1410
patric.dahse@natuvion.com
Areas of expertise
§ Data Protection and Privacy
§ SAP Transformation
Benjamin Spies
IT Lawyer, Partner, SKW Schwarz
Rechtsanwälte, Wittelsbacherplatz 1
80333 Munich, Germany
T +49 (0) 89.286 40-108
F +49 (0) 89.280 94 32
B.Spies@skwschwarz.de
Areas of expertise
§ IT-Law
§ Data Security Rights
11. 99 GDPR Arcticles – e.g., Six Rights of Individuals
11
Right of Access | Art.15
• Information
• Copy
Rectification | Art. 16
• Correction
• Completion
Deletion | Art. 17
• Person responsible
• 3rd party (to be forgotten)
Restrictions | Art. 18
• Restriction of processing
• Blocking
Portability | Art. 20
• Extraction
• Automatic transfer to 3rd party
Objections | Art. 21
• General
• Direct marketing
LEGAL | One month deadline (Exception: able to be extended by two months)
LEGAL | Costs data must be provided free of charge (Exception: misuse)
Anonymization drives efficiency and reduces costs when implementing GDPR requirements (Art. 5)
13. Deletion Article 17 – Customer M&A Example
Historical Data in Productive System
“Be Forgotten”
Art. 5 Abs. (1) e)
Identification of the data subject shall only be possible for as
long as is necessary for the purposes for which it is processed.
Art. 17
The person concerned has the right to require the person
responsible to immediately delete any personal data relating to
him. The responsible person is obliged to immediately delete
personal data.
• Fulfillment of purpose
• Revocation of consent
• Opposition to processing
• Unlawful processing (including children)
All relevant data must be deleted from the productive system.
A pure "concealment" of the data is not sufficient.
Right to be Forgotten
SAP ERP/CRM/IS*
Production
IT-System
Transfer of data at service provider charge
BuKrs Designation
0400 Business 1
0600 Business 2
0800 Business 3
Production
IT-System
0800 Business 3
Full historical data transfer to
new service providers
13
14. Technical Procedure | Depending on the project requirements, selective data erasure can be
performed in three different variants.
Data Protection and Data Privacy – Cyber Security Week - ASUG / SAP / Natuvion 14
Big-Bang* Object Batch
Typing the data (key definition)
Delete data with optimized
performance (within 40 hours)
Reorganization of the database
Possibility of data recovery
Typing the data (key definition)
Deleting the data with low process speed
Object deletion with low performance
Possibility of data recovery
Step-by-step deletion of data on fixed dates
Unique data typing
Delete table type-oriented
Delete with optimized performance
Possibility of data recovery
Variant 1 Variant 2 Variant 3
Variant 1-3 Selective Deletion
DSO HH
* Big-Bang is the most effective erasure process. Deletion of data is generally possible in less than 40 hours.
Deletion Article 17 – Customer Approaches
17. 17
Management of Retention Rules:
Automated Data Storage and Destruction
Ÿ Data storage according to active rules.
Ÿ Destroy the data as soon as the retention time is reached.
Ÿ Data destruction directly from the database or the archive.
“Data Cluster” per Retention Period
Ÿ Generation of various archive files with the corresponding expiration date
according to the defined retention period.
E-Discovery
Ÿ Search for information related to litigation.
Legal Hold
Ÿ Prevent early data destruction in legal cases.
• Simplified blocking and deletion of
personal data.
• Functionality is based on SAP Information
Lifecycle Management.
• With SAP ILM, business partner data can
not only be blocked or deleted, but
transactional data can also be destroyed.
Natuvion can support ASUG members exclusively with predefined templates and
blueprints or implementation support via the Natuvion International ILM Competency Center.
New! SAP ILM Blocking & Deletion
Information Lifecycle Management – Competency Center
18. Right of Access Article 15 – New! SAP IRF Generic Smart Search
Art. 15 “Right of access by the data subject” - The data subject shall have the right to obtain from the controller
confirmation as to whether or not personal data concerning him or her are being processed, and, if that is the case, access to
the personal data plus other details. Solution “Information Retrieval Framework “– Generic Smart Search.
18
Extract of the risks / challenges of new transparency obligations
starting in 2018
1
2
3
4
X
GDPR Art. 12 Abs. 3 (time limits) / GDPR Art. 13/14/15 (scope)
Organization or
Competition
Single Person
EnergieversorgerExample (current)
Ø 41 Tage
Retail Customer = current processing time ave. 41 days.
GDPR = one month with more complex reporting requirements.
Average working time (day)
for Information Request Art. 15 GDPR
KW26 KW13KW03KW46KW36
48
19 19
59
Privacy policy statement must include memory / erased data
Fine kit for supervisory authorities, associations, competitors,
and affected persons.
Lack of implementation of a declared status quo
Purpose of breach of conformity: high (personal) risk of liability.
Individual or organization requests information / requests data transmission
Within one month, information and/or transmission must be provided.
Supervisory authority / court meets ad-hoc order for implementation
Immediate implementation of data protection conditions and
requirements apply.
In the case of a delay, nonconformity, or incorrect answer
Public disputes / announcement, monetary and sustainable impact, and
reputation damage.
19. 19
New in a Netweaver patch: SAP Information Retrieval Framework – Generic Smart Search
Using SAP IRF together with Natuvion‘s blueprints and data models, quickly identify GDPR-protected personal data across hereogeneous landscapes
Searching for Data
Ÿ The search can be carried out according to defined entry criteria
(partner, customer, order, etc.).
Ÿ Data models can be stored in different versions and variants.
Ÿ The search can be performed centrally on all connected systems.
Ÿ The search jobs are executed asynchronously in the system.
Output of Results
Ÿ The executed search jobs persist the results in their own tables
(possibly their own clients).
Ÿ This data will be deleted after the deadline.
Ÿ Result processing can be filtered and/or modified.
Ÿ Output of data ALV grid (SAP standard).
Ÿ Connection of other technologies possible (SAP Fiori, UI5, HCP).
Ÿ Form integration not standard.
• Realtime data visibility across fragmented data sources.
• Base technology (SAP BASIS) is included in the license costs
of SAP Business Suite.
• Data search for defined data models on all systems in SAP
Business Suite.
• Connection of non-SAP systems and web services possible.
• Use of BASIS functionality “Generic Smart Search.”
• Use of the ILM objects (table scope / grouping) and
derivation of the reading paths.
• Rule-based search and exclusion of values / results.
Natuvion can support ASUG members exclusively either with predefined templates (data models), blueprints,
and/or implementation support as a co-innovation development partner for IRF.
Functionality Overview
SAP Standard-
Technology
Information Retrieval Framework - Blueprint & Data Models
21. 21
Concept Test Position Individualization Golive
§ Introduction data
anonymization in the
department and record
additional requirements, if
necessary.
§ Survey of relevant process,
authorization, or UI
adjustments.
§ Delivery of transport orders.
§ Carry out the necessary
standard customizing.
§ Create rules and variants.
§ Display of additional functions
or selection features.
§ Customizing as a coaching
approach.
§ Development of customer-
driven developments / tables.
§ Adaptation of variants.
§ Test management
§ Test execution
§ Key user training
§ End user training
§ Golive
§ Stabilization
§ Certification of §9 German
Federal Data Protection Act
(optional)
2 - 3 PD 5 PD 10 - 15 PD 5 PD
Project Duration: 6 to 10 Weeks
2 - 3 PD 3 PD 3 - 2 PD 3 PD
Scope Test Environment Tailoring Your Solution Start of Regular Operation
Typical Phases of Implementation
ASUG offer - Natuvion’s Certified “TDA”
ASUG Member
24. Natuvion GmbH
Altrottstraße 31 | 69190 Walldorf
Fon +49 6227 73-1400
Fax +49 6227 73-1410
www.natuvion.com
Question and Answer
Patric Dahse
Geschäftsführer
Fon: +49 151 171 357 02
Mail: patric.dahse@natuvion.com
18 Data Security und Data Privacy in SAP - Data Security und Data Privacy
Patric Dahse
CEO / Founder
Natuvion Americas Inc.
19 W. 34th Street, Suite 1018
New York, NY 10001
USA
T +49 (0) 6227.73 -1400
F +49 (0) 6227.73 -1410
patric.dahse@natuvion.com
http://www.natuvion.com/en/north-america
Areas of expertise:
§ Data Protection & Privacy
§ SAP Transformation
Benjamin Spies
IT Lawyer, Partner
SKW Schwarz Rechtsanwälte
Wittelsbacherplatz 1
80333 Munich
Germany
T +49 (0) 89.286 40-108
F +49 (0) 89.280 94 32
B.Spies@skwschwarz.de
Areas of expertise:
§ IT-Law
§ Data Security Rights