The GDPR changed the way the world collects, stores, and sends personal data. The GDPR is a broad EU regulation that requires businesses to protect the personal data of EU citizens, whether the business itself is in the EU or elsewhere. Since its implementation in 2018, companies that collect data on EU citizens must comply with strict rules for the protection of personal data or face heavy fines for non-compliance. This webinar will provide an overview of GDPR’s applicability and requirements, as well as how your organization may meet those standards.
Introduction to EU General Data Protection Regulation: Planning, Implementati...Financial Poise
The GDPR changed the way the world collects, stores, and sends personal data.The GDPR is a broad EU regulation that requires businesses to protect the personal data of EU citizens, whether the business itself is in the EU or elsewhere. Since its implementation in 2018, companies that collect data on EU citizens must comply with strict rules for the protection of personal data or face heavy fines for non-compliance. This webinar will provide an overview of GDPR’s applicability and requirements, as well as how your organization may meet those standards.
To view the accompanying webinar, go to: https://www.financialpoise.com/financial-poise-webinars/introduction-to-eu-general-data-protection-regulation-planning-implementation-and-compliance-2021/
Full GDPR toolkit: https://quality.eqms.co.uk/gdpr-general-data-protection-regulation-eu-toolkit
This free online training presentation provides you with information about how to comply with the General Data Protection Regulation, managing breaches, engaging employees, key requirements and more.
General Data Protection Regulation specifies how customers data can be used and protected. The primary objective of the GDPR is to give citizens control of their personal data. Failing to comply with GDPR can cost you 4% of global turnover or €20 million or whichever is greater.
For more information visit https://www.brightpay.co.uk
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
The European Union General Data Protection Regulation (“EU-GDPR”) will come into effect on May, 25th. Your company may think it does not have to worry about this because you are located in the United States, and you may be wrong. If your company processes or holds personal data for a person residing in a European Union country, your company will have to comply.
On 25 May 2018 the new General Data Protection Regulation (GDPR) will come into force, replacing all existing data protection regulations.
Payroll bureaus process large amounts of personal data in relation to their customers, their customers’ employees, and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
BrightPay hosted a free CPD accredited webinar alongside Bright Contracts where we discussed everything that accountants, bookkeepers and payroll bureaus need to know about GDPR.
For more information visit https://www.brightpay.co.uk
Introduction to EU General Data Protection Regulation: Planning, Implementati...Financial Poise
The GDPR changed the way the world collects, stores, and sends personal data.The GDPR is a broad EU regulation that requires businesses to protect the personal data of EU citizens, whether the business itself is in the EU or elsewhere. Since its implementation in 2018, companies that collect data on EU citizens must comply with strict rules for the protection of personal data or face heavy fines for non-compliance. This webinar will provide an overview of GDPR’s applicability and requirements, as well as how your organization may meet those standards.
To view the accompanying webinar, go to: https://www.financialpoise.com/financial-poise-webinars/introduction-to-eu-general-data-protection-regulation-planning-implementation-and-compliance-2021/
Full GDPR toolkit: https://quality.eqms.co.uk/gdpr-general-data-protection-regulation-eu-toolkit
This free online training presentation provides you with information about how to comply with the General Data Protection Regulation, managing breaches, engaging employees, key requirements and more.
General Data Protection Regulation specifies how customers data can be used and protected. The primary objective of the GDPR is to give citizens control of their personal data. Failing to comply with GDPR can cost you 4% of global turnover or €20 million or whichever is greater.
For more information visit https://www.brightpay.co.uk
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
The European Union General Data Protection Regulation (“EU-GDPR”) will come into effect on May, 25th. Your company may think it does not have to worry about this because you are located in the United States, and you may be wrong. If your company processes or holds personal data for a person residing in a European Union country, your company will have to comply.
On 25 May 2018 the new General Data Protection Regulation (GDPR) will come into force, replacing all existing data protection regulations.
Payroll bureaus process large amounts of personal data in relation to their customers, their customers’ employees, and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
BrightPay hosted a free CPD accredited webinar alongside Bright Contracts where we discussed everything that accountants, bookkeepers and payroll bureaus need to know about GDPR.
For more information visit https://www.brightpay.co.uk
ABM Display Advertising Success in the World of GDPR [PPT]Kwanzoo Inc
In this webinar, see the specific impacts of GDPR on B2B companies as they plan, budget, launch and measure success from ABM advertising programs that reach and engage the 500 Million+ citizens of EU countries and the UK. Our panel of experts will cover the IT, Legal, Marketing, Data and Technology Provider side of GDPR compliance. All of these dimensions need to be addressed as you plan for the world of GDPR.
GDPR Breakfast Briefing - For Business Owners, HR Directors, Marketing Direct...Harrison Clark Rickerbys
Slideshow from GDPR Breakfast Briefing - For Business Owners, HR Directors, Marketing Directors, IT Directors & Ops Directors, on 7th March 2018 at Hilton Puckrup Hall
MyComplianceOffice presents our Oct 26th webinar, “ Prepare Your Firm for GDPR", co-hosted by MCO and Emily Mahoney a Technology Lawyer at Mason Hayes & Curran
After ensuring compliance as a controller and processor of data, Reddico created this presentation for the team - offering further guidance and information on our processes and how we've complied. For accuracy purposes, some information comes directly from the ICO's guidelines.
Dovetail Software (hr.dovetailsoftware.com) sponsors this informative and important webinar hosting experts Grant D. Petersen (ogletree.com/) and Estella Cohen (trustarc.com/) who shared information with HR practitioners and Organizations that need to be GDPR compliant by May 25, 2018.
Here's the link to view the recording: http://hr.dovetailsoftware.com/dsadmin/2018/01/31/hr-gdpr-preparing-2018-compliance/
Introduction to US Privacy and Data Security: Regulations and RequirementsFinancial Poise
The United States has no federal data security or privacy law covering all businesses or all U.S. citizens. Instead, federal agencies and individual states have created their own patchwork of laws and regulations which must be evaluated for their application to a business.
This webinar will help you navigate the overlapping and sometimes confusing system of laws and regulations which may impact your business, ranging from emerging state-level privacy legislation to the numerous data breach notification statutes to cybersecurity regulations with extraterritorial effect.
Part of the webinar series: CYBERSECURITY & DATA PRIVACY 2022
See more at https://www.financialpoise.com/webinars/
Getting to grips with General Data Protection Regulation (GDPR)Zoodikers
Leading employment lawyer Pam Loch, and digital expert Katie King share their advice on how to get to grips with the topic of the moment - GDPR.
They look at who is liable, the impact of Brexit, how it affects marketing and what steps you can take to prepare.
General Data Protection Regulation (GDPR) tidal wave that has hit, are you ready? Is your organization prepared for the extensive privacy requirements GDPR puts forth for any organization handling EU Data Subjects' personal Data? At this point, organizations must have a complete inventory of personal data and have conducted a DPIA against it. A handful of supervisory authorities have issued compliance guidelines, but your organizations must be able to assess compliance with this ambiguous regulation at any time.
Many aspects of GDPR define the distinction between a data collector and a data processor, their respective responsibilities and compliance requirements. Those responsibilities will have an effect on the contracts you negotiate with third parties, the way in which you evaluate the risks involved with establishing a business relationship and the policies you develop to maintain compliance to the regulations.
Join this webinar to learn:
*More information about GDPR and what the industry is experiencing to date
*What minimum requirements you should have had in place by May 25, 2018
*What you should plan to do for the next 12-18 months if you are not completely ready
*What the SEC Privacy Shield program is and why you should self-certify
*How to continuously monitor vendor risk KPIs
Understanding the EU's new General Data Protection Regulation (GDPR)Acquia
In 2016, the European Union (EU) approved its General Data Protection Regulation (GDPR) to protect European citizens’ data. As a regulation, the GDPR does not require the implementation of legislation, and will immediately become an applicable law as of the 25th of May, 2018.
What is GDPR exactly trying to accomplish? According to the official documents, the goal is the “protection of natural persons with regard to the processing of personal data and on the free movement of such data.”
In short, organizations that conduct business in the EU will need to be compliant with GDPR, and must come to terms with the huge fines that non-compliance can carry. Fines can be up to €20M or 4% of the annual turnover. For companies that experience breaches that result in the loss of personal data (such as Talk Talk, which lost 170,000 people’s data), the fines will be tremendous.
Join us for discussion about GDPR to learn more about:
The principles that organizations that use personal data need to adhere to
The consequences organizations can face if that do not adhere to this new regulation
How your organization can prepare for the future
Gdpr demystified - making sense of the regulationJames Mulhern
Slightly out dated introduction to GDPR, that tries to move away from the headlines on fines and emphasises the global nature of the regulation, the numerous forms of lawful processing and the absolute need to manage privacy and be transparent. Goes on to show how using public cloud can help solve part of the problem.
This presentation was prepared to accompany my talk at Montreal All Girls Hack Night.
I think that Data and Privacy should be the foundation for all businesses moving forward to maintain a healthy Digital life for everyone.
General Data Protection Regulation plays a great role in to enforcing such acts that ensure Data Protection and Privacy of the users. GDPR is a very brief topic, but in this presentation I will share with you some core values of GDPR and some basic actions that you can take to make your business compliant to GDPR.
Note: This is not a legal advice. This information is collected from different resources. All the guides and resources used in the presentation are listed below.
Important Definitions and Notes from the presentation:
GDPR
The General Data Protection Regulation (GDPR) (EU) is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA).
For more information visit https://www.brightpay.co.uk
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
Introduction to US Privacy and Data Security Regulations and Requirements (Se...Financial Poise
The United States has no federal data security or privacy law covering all businesses or all U.S. citizens. Instead, federal agencies and individual states have created their own patchwork of laws and regulations which must be evaluated for their application to a business.
This webinar will help you navigate the overlapping and sometimes confusing system of laws and regulations which may impact your business, ranging from emerging state-level privacy legislation to the numerous data breach notification statutes to cybersecurity regulations with extraterritorial effect.
To view the accompanying webinar, go to: https://www.financialpoise.com/financial-poise-webinars/introduction-to-us-privacy-and-data-security-regulations-and-requirements-2021/
IP-301 POST-GRANT REVIEW TRIALS 2022 - Things to Consider Before You FileFinancial Poise
This segment will delve into considerations that come into play when filing or responding to post-grant review proceedings. These considerations include issues of real party in interest, timing, and substantive arguments.
Part of the webinar series: IP-301 POST-GRANT REVIEW TRIALS 2022
See more at https://www.financialpoise.com/webinars/
This segment will discuss the statutory and procedural background of post-grant review proceedings. It will discuss the types of proceedings available and provide a high-level discussion of how the proceedings are conducted.
Part of the webinar series:
IP-301 POST-GRANT REVIEW TRIALS 2022
See more at https://www.financialpoise.com/webinars/
More Related Content
Similar to Introduction to EU General Data Protection Regulation: Planning, Implementation, and Compliance
ABM Display Advertising Success in the World of GDPR [PPT]Kwanzoo Inc
In this webinar, see the specific impacts of GDPR on B2B companies as they plan, budget, launch and measure success from ABM advertising programs that reach and engage the 500 Million+ citizens of EU countries and the UK. Our panel of experts will cover the IT, Legal, Marketing, Data and Technology Provider side of GDPR compliance. All of these dimensions need to be addressed as you plan for the world of GDPR.
GDPR Breakfast Briefing - For Business Owners, HR Directors, Marketing Direct...Harrison Clark Rickerbys
Slideshow from GDPR Breakfast Briefing - For Business Owners, HR Directors, Marketing Directors, IT Directors & Ops Directors, on 7th March 2018 at Hilton Puckrup Hall
MyComplianceOffice presents our Oct 26th webinar, “ Prepare Your Firm for GDPR", co-hosted by MCO and Emily Mahoney a Technology Lawyer at Mason Hayes & Curran
After ensuring compliance as a controller and processor of data, Reddico created this presentation for the team - offering further guidance and information on our processes and how we've complied. For accuracy purposes, some information comes directly from the ICO's guidelines.
Dovetail Software (hr.dovetailsoftware.com) sponsors this informative and important webinar hosting experts Grant D. Petersen (ogletree.com/) and Estella Cohen (trustarc.com/) who shared information with HR practitioners and Organizations that need to be GDPR compliant by May 25, 2018.
Here's the link to view the recording: http://hr.dovetailsoftware.com/dsadmin/2018/01/31/hr-gdpr-preparing-2018-compliance/
Introduction to US Privacy and Data Security: Regulations and RequirementsFinancial Poise
The United States has no federal data security or privacy law covering all businesses or all U.S. citizens. Instead, federal agencies and individual states have created their own patchwork of laws and regulations which must be evaluated for their application to a business.
This webinar will help you navigate the overlapping and sometimes confusing system of laws and regulations which may impact your business, ranging from emerging state-level privacy legislation to the numerous data breach notification statutes to cybersecurity regulations with extraterritorial effect.
Part of the webinar series: CYBERSECURITY & DATA PRIVACY 2022
See more at https://www.financialpoise.com/webinars/
Getting to grips with General Data Protection Regulation (GDPR)Zoodikers
Leading employment lawyer Pam Loch, and digital expert Katie King share their advice on how to get to grips with the topic of the moment - GDPR.
They look at who is liable, the impact of Brexit, how it affects marketing and what steps you can take to prepare.
General Data Protection Regulation (GDPR) tidal wave that has hit, are you ready? Is your organization prepared for the extensive privacy requirements GDPR puts forth for any organization handling EU Data Subjects' personal Data? At this point, organizations must have a complete inventory of personal data and have conducted a DPIA against it. A handful of supervisory authorities have issued compliance guidelines, but your organizations must be able to assess compliance with this ambiguous regulation at any time.
Many aspects of GDPR define the distinction between a data collector and a data processor, their respective responsibilities and compliance requirements. Those responsibilities will have an effect on the contracts you negotiate with third parties, the way in which you evaluate the risks involved with establishing a business relationship and the policies you develop to maintain compliance to the regulations.
Join this webinar to learn:
*More information about GDPR and what the industry is experiencing to date
*What minimum requirements you should have had in place by May 25, 2018
*What you should plan to do for the next 12-18 months if you are not completely ready
*What the SEC Privacy Shield program is and why you should self-certify
*How to continuously monitor vendor risk KPIs
Understanding the EU's new General Data Protection Regulation (GDPR)Acquia
In 2016, the European Union (EU) approved its General Data Protection Regulation (GDPR) to protect European citizens’ data. As a regulation, the GDPR does not require the implementation of legislation, and will immediately become an applicable law as of the 25th of May, 2018.
What is GDPR exactly trying to accomplish? According to the official documents, the goal is the “protection of natural persons with regard to the processing of personal data and on the free movement of such data.”
In short, organizations that conduct business in the EU will need to be compliant with GDPR, and must come to terms with the huge fines that non-compliance can carry. Fines can be up to €20M or 4% of the annual turnover. For companies that experience breaches that result in the loss of personal data (such as Talk Talk, which lost 170,000 people’s data), the fines will be tremendous.
Join us for discussion about GDPR to learn more about:
The principles that organizations that use personal data need to adhere to
The consequences organizations can face if that do not adhere to this new regulation
How your organization can prepare for the future
Gdpr demystified - making sense of the regulationJames Mulhern
Slightly out dated introduction to GDPR, that tries to move away from the headlines on fines and emphasises the global nature of the regulation, the numerous forms of lawful processing and the absolute need to manage privacy and be transparent. Goes on to show how using public cloud can help solve part of the problem.
This presentation was prepared to accompany my talk at Montreal All Girls Hack Night.
I think that Data and Privacy should be the foundation for all businesses moving forward to maintain a healthy Digital life for everyone.
General Data Protection Regulation plays a great role in to enforcing such acts that ensure Data Protection and Privacy of the users. GDPR is a very brief topic, but in this presentation I will share with you some core values of GDPR and some basic actions that you can take to make your business compliant to GDPR.
Note: This is not a legal advice. This information is collected from different resources. All the guides and resources used in the presentation are listed below.
Important Definitions and Notes from the presentation:
GDPR
The General Data Protection Regulation (GDPR) (EU) is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA).
For more information visit https://www.brightpay.co.uk
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
Introduction to US Privacy and Data Security Regulations and Requirements (Se...Financial Poise
The United States has no federal data security or privacy law covering all businesses or all U.S. citizens. Instead, federal agencies and individual states have created their own patchwork of laws and regulations which must be evaluated for their application to a business.
This webinar will help you navigate the overlapping and sometimes confusing system of laws and regulations which may impact your business, ranging from emerging state-level privacy legislation to the numerous data breach notification statutes to cybersecurity regulations with extraterritorial effect.
To view the accompanying webinar, go to: https://www.financialpoise.com/financial-poise-webinars/introduction-to-us-privacy-and-data-security-regulations-and-requirements-2021/
Similar to Introduction to EU General Data Protection Regulation: Planning, Implementation, and Compliance (20)
IP-301 POST-GRANT REVIEW TRIALS 2022 - Things to Consider Before You FileFinancial Poise
This segment will delve into considerations that come into play when filing or responding to post-grant review proceedings. These considerations include issues of real party in interest, timing, and substantive arguments.
Part of the webinar series: IP-301 POST-GRANT REVIEW TRIALS 2022
See more at https://www.financialpoise.com/webinars/
This segment will discuss the statutory and procedural background of post-grant review proceedings. It will discuss the types of proceedings available and provide a high-level discussion of how the proceedings are conducted.
Part of the webinar series:
IP-301 POST-GRANT REVIEW TRIALS 2022
See more at https://www.financialpoise.com/webinars/
THE NUTS & BOLTS OF BANKRUPTCY LAW 2022: The Nuts & Bolts of a First Day HearingFinancial Poise
Even when a bankruptcy petition is the result of a soft-landing rather than a freefall, filing a chapter 11 petition is a disruptive event. To facilitate the debtor’s entry into chapter 11 with as little disruption as possible, first day motions are filed to ensure that a debtor-in-possession can minimize interruptions and continue operating its business in order to achieve its goals in chapter 11. This webinar provides an overview of the administrative and operational first day motions typically filed by chapter 11 debtors and the process for requesting a first day hearing, providing notice of the hearing, and ensuring that the hearing runs smoothly.
Part of the webinar series: THE NUTS & BOLTS OF BANKRUPTCY LAW 2022
See more at https://www.financialpoise.com/webinars/
RESTRUCTURING, INSOLVENCY & TROUBLED COMPANIES 2022: Bad Debtor Owes Me Money!Financial Poise
Sometimes it begins when a client, tenant, or customer starts to slow-pay, with the result that your accounts receivable start to accrue gradually. Other times the issue presents itself more suddenly. Either way, you find your company owed a great deal of money that looks like it may not be collected because your client/tenant/customer has filed bankruptcy, has commenced an assignment for the benefit of creditors, has been put into receivership, or is otherwise just plain insolvent. What do you do? What should you not do? The topics discussed in this webinar include the pros and cons of putting a counterparty into involuntary bankruptcy; when and how you may be able to pursue third parties (like guarantors, directors, or officers) for the amount owed; risks related to preference attack; pros and cons of sitting on a “creditors’ committee” in a Chapter 11; how to negotiate for “critical vendor” protection in Chapter 11; and practical guidance for continuing to provide goods or services to an insolvent counterparty.
Part of the webinar series: RESTRUCTURING, INSOLVENCY & TROUBLED COMPANIES 2022
See more at https://www.financialpoise.com/webinars/
We’ve all long heard about writing practices to avoid, including run-on sentences, excessive passive voice, and nominalization. This webinar not only discusses how those habits can damage briefs, but also explores a key habit brief-writers should embrace: using strong, precise verbs, which are the engine of a persuasive sentence. Panelists also exchange views about finding the most persuasive voice and tone, as well as the right temperature for rhetoric.
Part of the webinar series: PERSUASIVE BRIEF WRITING 2022
See more at https://www.financialpoise.com/webinars/
CYBER SECURITY and DATA PRIVACY 2022: Data Breach Response - Before and After...Financial Poise
You’ve received the dreaded call that your company has just suffered a data breach – what do you do next? Who do you call for help? What notification obligations do you have?
With proper preparation, you can mitigate the damage caused by this unfortunate event and put your business in a position to recover. Your company may have already implemented its information security program and identified the responsible parties, including applicable outside experts, to be contacted in the event of a breach. However, now you must call up your incident response team to investigate the extent of the breach, evaluate the possible damage to your company, and determine whether you must notify your clients, customers, or the public of the breach. This webinar will help prepare you to take action when the worst happens.
Part of the webinar series:
CYBER SECURITY and DATA PRIVACY 2022
See more at https://www.financialpoise.com/webinars/
CYBER SECURITY and DATA PRIVACY 2022_How to Build and Implement your Company'...Financial Poise
Data is one of your business’s most valuable assets and requires protection like any other asset. How can you protect your data from unauthorized access or inadvertent disclosure?
An information security program is designed to protect the confidentiality, integrity, and availability of your company’s data and information technology assets. Federal, state, or international law may also require your business to have an information security program in place.
This webinar will provide the basics of how to create and implement an information security program, beginning with identifying your incident response team, putting applicable insurance policies into place, and closing any gaps in the security of your data.
Part of the webinar series:
CYBERSECURITY & DATA PRIVACY 2022
See more at https://www.financialpoise.com/webinars/
NEWBIE LITIGATOR SCHOOL - 101 Part 3 2022 - Enforcement: Post-Judgment Procee...Financial Poise
Obtaining a final and enforceable judgment is often just the first phase of the civil litigation process; without effective enforcement and collection, a judgment is merely a piece of paper (or electronic docket entry). This webinar provides an overview of the technical, procedural and strategic considerations necessary to monetize judgments and make litigation worthwhile.
Part of the webinar series: NEWBIE LITIGATOR SCHOOL - 101 Part 3 2022
See more at https://www.financialpoise.com/webinars/
NEWBIE LITIGATOR SCHOOL - 101 Part 3 2022 -Appellate Practice- 101 Financial Poise
When is an appeal permitted and when should you take one? What rules and procedures govern appellate practice and how can you best avoid technical and procedural mistakes. How are appellate briefs different from those filed with the trial court and what are some keys to making them successful? And how can you best prepare for appellate oral argument? This webinar explores these questions and more with a panel of experienced appellate litigators.
Part of the webinar series: NEWBIE LITIGATOR SCHOOL - 101 Part 3 2022
See more at https://www.financialpoise.com/webinars/
MARKETING TIPS FOR THE NEW (OR OLD!) BUSINESS OWNER 2022: Learn How to Do Con...Financial Poise
There's creating content; then there's creating great content; and then there's creating great content that actually gets seen by the ideal audience. Each of those layers has its own unique challenges. In this webinar episode, we share insights from a variety of highly experienced content creators. Each panelist member provides their own unique spin on how to create great content that gets seen by the intended audience. By the completion of this episode, the audience member will have a clear and actionable plan on how to create outstanding content that meets their unique marketing needs.
Part of the webinar series: MARKETING TIPS FOR THE NEW (OR OLD!) BUSINESS OWNER 2022
See more at https://www.financialpoise.com/webinars/
CHAPTER 11 - INDUSTRY FOCUS 2022 - Focus on Oil and Gas Financial Poise
Although issues in oil and gas chapter 11 cases vary from case to case, there are, nonetheless, certain issues that tend to arise in most oil and gas cases. Among them: treatment of oil and gas leases, the payment of royalties, hedging agreements, and valuation. This webinar addresses such issues.
Part of the webinar series: CHAPTER 11 - INDUSTRY FOCUS 2022
See more at https://www.financialpoise.com/webinars/
BUSINESS LAW REVIEW- 2022: Selling a Business Financial Poise
A Startup is the Founders’ baby - they dream it, created it and worked tirelessly to make it successful. Deciding it may be time to sell all or part is the easy part - acknowledging and addressing the financial and emotional issues can be challenging.
Negotiating with potential buyers or investors is time intensive, to say the least. Positioning a business for a value maximizing transaction requires planning. What professionals need to be engaged? How do the parties come to a valuation? What is the profile of the likely investor or buyer? These are just some of the questions this webinar addresses.
Part of the webinar series: BUSINESS LAW REVIEW- 2022
See more at https://www.financialpoise.com/webinars/
BUSINESS LAW REVIEW- 2022: Immigration Law for Business-101Financial Poise
A basic understanding of immigration law is critical to a vast array of businesses operating in today’s economy. Foreign employees and their sponsoring companies will navigate a complex maze in the attempt to achieve the desired goals of the employee maximizing their ability to provide services and value to the company. One of various determining factors as to which pathway to attempt is whether the goal is an immigrant visa (also known as a “green card”) which may ultimately allow lawful permanent residence in the United States or a non-immigrant visa. The need for foreign labor affects various industries and applies to large segments of skilled, unskilled and semi-skilled workers in jobs ranging from farm to seasonal to high-tech. This webinar explains what businesses need to know in the current environment as well as how political and globalization issues will affect immigration laws going forward.
Part of the webinar series:
BUSINESS LAW REVIEW- 2022
See more at https://www.financialpoise.com/webinars/
NEWBIE LITIGATOR SCHOOL - Part I 2022: Working With Experts Financial Poise
Expert witnesses are an integral part of modern commercial litigation. They can be used for everything from calculating damages to explaining software workflows to establishing industry standards. This webinar begins with an exploration of the common types of cases that call for use of expert testimony. From there, we discuss the rules governing experts, including expert disclosures, discovery, and expert depositions. We also discuss the Daubert standard for excluding expert testimony, and discuss how a successful Daubert motion may be brought. This hour will help you figure out when and how to hire your own expert, and will give you some ideas on how to challenge your opponent’s expert when the time comes.
Part of the webinar series:
NEWBIE LITIGATOR SCHOOL - Part I 2022
See more at https://www.financialpoise.com/webinars/
Executive compensation continues its movement towards performance pay as the standard. Compensation structures and proxy disclosures are more and more complex. Investors and proxy advisors continue to increase influence on compensation issues. This webinar examines executive compensation, including equity-based compensation plans and executive employment and severance agreements. The importance of disclosure, alignment of risk, and metrics is also examined. Practical guidance on pay-for-performance and supplemental pay definitions is provided. The panelists discuss the effect of the Dodd-Frank Act on executive compensation, including SEC regulations. Exchange rules are compared to applicable federal law. Best practices regarding executive compensation committees and regulatory requirements for those committees are examined. Shareholder advisory groups promulgate executive compensation related advisory policies for their institutional shareholder clients annually and these policies are also discussed. Issues regarding board composition and leadership structure issues are discussed in relation to executive compensation.
Part of the webinar series:
CORPORATE REGULATORY COMPLIANCE BOOT CAMP 2022 - PART 2
See more at https://www.financialpoise.com/webinars/
CORPORATE REGULATORY COMPLIANCE BOOT CAMP 2022 - PART 2: Securities Law Comp...Financial Poise
The Securities and Exchange Commission has been entrusted with a significant corporate compliance regulatory function, which has been expanded by seminal legislation in the recent past such as the Sarbanes-Oxley (“SOX”) and Dodd-Frank Acts. This webinar discusses board fiduciary duties and the tension between state corporate law standards and federal law. Board composition, independence, structure and processes (including best practices in regard to committees) are analyzed. Specifically, director independence is discussed as is audit committees and related requirements, regulations and exemptions. NASDAQ and the NYSE also have similar requirements for director independence and those are also discussed. The webinar also covers disclosure matters related to SOX compliance, including timing and content of an issuer's periodic disclosures. Both the legal requirements and best practices related to disclosure procedures and internal controls under SOX are examined. Means of controlling the costs of SOX, especially for smaller public companies, are also discussed, including trends in the industry related to high regulatory compliance costs. Finally, the applicability and best practices for privately held companies and SOX are considered.
Part of the webinar series: CORPORATE REGULATORY COMPLIANCE BOOT CAMP 2022 - PART 2
See more at https://www.financialpoise.com/webinars/
The deal is complete, and the parties have finished the hard work. Or have they? Integration planning turns to execution as people, process, and technology are combined once the deal is legally closed. The buyer will need to consider the purchased business or assets from the standpoint of employees, IT, customers, suppliers, and a multitude of other areas. In addition, numerous post-closing legal issues may arise, including purchase price adjustments, breaches of representations and warranties, enforcement of key negative employment-related covenants and restrictive covenants, collection of pre-closing accounts receivable, and true-ups of final financials. This episode guides listeners through the process, timing, and issues which most commonly arise after the closing of deals.
Part of the webinar series:
M&A BOOT CAMP - 2022
See more at https://www.financialpoise.com/webinars/
Although every deal is different, understanding any purchase/sale agreement will help you understand other purchase sale agreements. Stated another way, most M&A documents include a similar set of sections and use a similar vocabulary. This episode explains specific, common provisions and discusses how buyers and sellers approach these provisions differently, particularly in light of situational differences (e.g. whether the assets being bought and sold are equity of a company or the assets of a company; whether the seller is going to cease to exists or not). Topics covered will include tax issues; corporate governance; closing conditions; representations and warranties; indemnification provisions; earn-outs; restrictive covenants; antitrust; intellectual property; and employment issues.
Part of the webinar series:
M&A BOOT CAMP - 2022
See more at https://www.financialpoise.com/webinars/
Buying, selling, or merging a company typically follows a similar set of steps from deal to deal. The amount of time each step takes varies but the order of the steps is fairly uniform because the steps follow a certain logic: before the parties share meaningful information, they should sign a confidentiality agreement (a/k/a “non-disclosure agreement,” or “NDA”); once a baseline amount of information is known by the would-be buyer, it commonly presents a letter of intent or term sheet to the target or its owner, which serves as an outline for a deal but does not necessarily bind the parties to consummate the transaction; additional due diligence and the negotiation, drafting and signing of definitive documents comes next. The parties then obtain any needed regulatory and/or contractual third party approvals; followed by closing; and finally by post-closing tasks. This webinar will discuss all these steps from a macro perspective so that you can see the forest for the trees, but does not do a deep dive into any single topic. Think of this webinar as a road map or timeline for a typical deal.
Part of the webinar series:
M&A BOOT CAMP - 2022
See more at https://www.financialpoise.com/webinars/
CROWDFUNDING 2022 - Crowdfunding from the Investor's PerspectiveFinancial Poise
This webinar focuses on the opportunities that crowdfunding makes available to the investor, and how the investor should go about navigating this new world. We begin with a basic overview of the new regulatory regime, the requirements to invest, and the on-boarding process one should expect. We then dive deeper into the market opportunity, including how to access and select investments, and expectations investors should set for themselves and the projects they select. This is not intended to support any specific deal selection, but instead sheds a light upon the basic selection criteria available, the method to go about investing and what to avoid.
Part of the webinar series: Crowdfunding 2022
See more at https://www.financialpoise.com/webinars/
The Roman Empire A Historical Colossus.pdfkaushalkr1407
The Roman Empire, a vast and enduring power, stands as one of history's most remarkable civilizations, leaving an indelible imprint on the world. It emerged from the Roman Republic, transitioning into an imperial powerhouse under the leadership of Augustus Caesar in 27 BCE. This transformation marked the beginning of an era defined by unprecedented territorial expansion, architectural marvels, and profound cultural influence.
The empire's roots lie in the city of Rome, founded, according to legend, by Romulus in 753 BCE. Over centuries, Rome evolved from a small settlement to a formidable republic, characterized by a complex political system with elected officials and checks on power. However, internal strife, class conflicts, and military ambitions paved the way for the end of the Republic. Julius Caesar’s dictatorship and subsequent assassination in 44 BCE created a power vacuum, leading to a civil war. Octavian, later Augustus, emerged victorious, heralding the Roman Empire’s birth.
Under Augustus, the empire experienced the Pax Romana, a 200-year period of relative peace and stability. Augustus reformed the military, established efficient administrative systems, and initiated grand construction projects. The empire's borders expanded, encompassing territories from Britain to Egypt and from Spain to the Euphrates. Roman legions, renowned for their discipline and engineering prowess, secured and maintained these vast territories, building roads, fortifications, and cities that facilitated control and integration.
The Roman Empire’s society was hierarchical, with a rigid class system. At the top were the patricians, wealthy elites who held significant political power. Below them were the plebeians, free citizens with limited political influence, and the vast numbers of slaves who formed the backbone of the economy. The family unit was central, governed by the paterfamilias, the male head who held absolute authority.
Culturally, the Romans were eclectic, absorbing and adapting elements from the civilizations they encountered, particularly the Greeks. Roman art, literature, and philosophy reflected this synthesis, creating a rich cultural tapestry. Latin, the Roman language, became the lingua franca of the Western world, influencing numerous modern languages.
Roman architecture and engineering achievements were monumental. They perfected the arch, vault, and dome, constructing enduring structures like the Colosseum, Pantheon, and aqueducts. These engineering marvels not only showcased Roman ingenuity but also served practical purposes, from public entertainment to water supply.
The Art Pastor's Guide to Sabbath | Steve ThomasonSteve Thomason
What is the purpose of the Sabbath Law in the Torah. It is interesting to compare how the context of the law shifts from Exodus to Deuteronomy. Who gets to rest, and why?
The Indian economy is classified into different sectors to simplify the analysis and understanding of economic activities. For Class 10, it's essential to grasp the sectors of the Indian economy, understand their characteristics, and recognize their importance. This guide will provide detailed notes on the Sectors of the Indian Economy Class 10, using specific long-tail keywords to enhance comprehension.
For more information, visit-www.vavaclasses.com
How to Create Map Views in the Odoo 17 ERPCeline George
The map views are useful for providing a geographical representation of data. They allow users to visualize and analyze the data in a more intuitive manner.
Students, digital devices and success - Andreas Schleicher - 27 May 2024..pptxEduSkills OECD
Andreas Schleicher presents at the OECD webinar ‘Digital devices in schools: detrimental distraction or secret to success?’ on 27 May 2024. The presentation was based on findings from PISA 2022 results and the webinar helped launch the PISA in Focus ‘Managing screen time: How to protect and equip students against distraction’ https://www.oecd-ilibrary.org/education/managing-screen-time_7c225af4-en and the OECD Education Policy Perspective ‘Students, digital devices and success’ can be found here - https://oe.cd/il/5yV
Model Attribute Check Company Auto PropertyCeline George
In Odoo, the multi-company feature allows you to manage multiple companies within a single Odoo database instance. Each company can have its own configurations while still sharing common resources such as products, customers, and suppliers.
Synthetic Fiber Construction in lab .pptxPavel ( NSTU)
Synthetic fiber production is a fascinating and complex field that blends chemistry, engineering, and environmental science. By understanding these aspects, students can gain a comprehensive view of synthetic fiber production, its impact on society and the environment, and the potential for future innovations. Synthetic fibers play a crucial role in modern society, impacting various aspects of daily life, industry, and the environment. ynthetic fibers are integral to modern life, offering a range of benefits from cost-effectiveness and versatility to innovative applications and performance characteristics. While they pose environmental challenges, ongoing research and development aim to create more sustainable and eco-friendly alternatives. Understanding the importance of synthetic fibers helps in appreciating their role in the economy, industry, and daily life, while also emphasizing the need for sustainable practices and innovation.
Operation “Blue Star” is the only event in the history of Independent India where the state went into war with its own people. Even after about 40 years it is not clear if it was culmination of states anger over people of the region, a political game of power or start of dictatorial chapter in the democratic setup.
The people of Punjab felt alienated from main stream due to denial of their just demands during a long democratic struggle since independence. As it happen all over the word, it led to militant struggle with great loss of lives of military, police and civilian personnel. Killing of Indira Gandhi and massacre of innocent Sikhs in Delhi and other India cities was also associated with this movement.
Introduction to EU General Data Protection Regulation: Planning, Implementation, and Compliance
1.
2. 2
Practical and entertaining education for
attorneys, accountants, business owners and
executives, and investors.
3. Disclaimer
The material in this webinar is for informational purposes only. It should not be considered
legal, financial or other professional advice. You should consult with an attorney or other
appropriate professional to determine what may be best for your individual needs. While
Financial Poise™ takes reasonable steps to ensure that information it publishes is accurate,
Financial Poise™ makes no guaranty in this regard.
3
6. About This Webinar-
Introduction to EU General Data Protection Regulation:
Planning, Implementation, and Compliance
The GDPR changed the way the world collects, stores, and sends personal
data.The GDPR is a broad EU regulation that requires businesses to protect the
personal data of EU citizens, whether the business itself is in the EU or
elsewhere. Since its implementation in 2018, companies that collect data on EU
citizens must comply with strict rules for the protection of personal data or face
heavy fines for non-compliance. This webinar will provide an overview of GDPR’s
applicability and requirements, as well as how your organization may meet those
standards.
6
7. About This Series
Cyber Security & Data Privacy 2022
Cybersecurity and data privacy are critical topics of concern for every business in today’s
environment. Data breaches are a threat to every business and can cause both direct losses
from business interruption and loss of data to indirect losses from unwanted publicity and
damage to your business’s reputation. Compliance with a patchwork of potentially applicable
state and federal laws and regulations may cost your business in terms of money and time.
This series discusses the various laws and regulations that affect businesses in the United
States and in Europe, as well as the best practices to use in creating an information security
program and preparing for and responding to data breaches.
Each Financial Poise Webinar is delivered in Plain English, understandable to investors, business owners, and
executives without much background in these areas, yet is of primary value to attorneys, accountants, and other
seasoned professionals. Each episode brings you into engaging, sometimes humorous, conversations designed to
entertain as it teaches. Each episode in the series is designed to be viewed independently of the other episodes so that
participants will enhance their knowledge of this area whether they attend one, some, or all episodes.
7
8. Episodes in this Series
#1 Introduction to US Privacy and Data Security: Regulations and Requirements
Premiere date: 08/03/22
#2: Introduction to EU General Data Protection Regulation: Planning, Implementation, and
Compliance
Premiere date: 9/07/22
#3: How to Build and Implement your Company's Information Security Program
Premiere date: 10/12/22
#4: Data Breach Response: Before and After the Breach
Premiere date: 11/09/22
8
9. Episode #2: Introduction to EU General Data
Protection Regulation: Planning, Implementation,
and Compliance
9
10. Introduction
•The General Data Protection Regulation (GDPR) is law that regulates data protection for
individuals in the European Union
✓ Passed by the EU Parliament in April 2016
✓ Enacted into law on May 25, 2018
✓ Most impactful data privacy legislation in 20 years
✓ Paved the way for similar legislation across the globe
11. Introduction (cont’d)
• Aims to protect EU citizens against privacy and data breaches; and
• Simplify regulations for international business by unifying data protection regulation in the
EU into one law
• Enacted in response to a growing wave of global cyberattacks, data leaks, identity thefts
• Introduced to replace outdated data protection laws enacted during the infancy of the
internet
12. New Data Protection Laws Around the World
following GDPR
• Brazil
• Australia
• Canada
China
• California Consumer Protection Act and California Privacy Rights Act
• Japan
South Korea
• Being compliant with GDPR does not mean you are compliant with all data
protection laws
13. EU Data Privacy Regulation History – The
“Directive”
• 1995 – EU adopts the European Data Protection Directive (95/46/EC)
✓ regulated both automated and manual processing of personal data
adopted in response to European Convention of Human Rights (ECHR) Article 8 -
✓ which stresses that all humans have a right to privacy in their home and
correspondence
14. EU Data Privacy Regulation History – The
“Directive”
• 1995 – EU adopts the European Data Protection Directive (95/46/EC)
✓ regulated both automated and manual processing of personal data
adopted in response to European Convention of Human Rights (ECHR) Article 8 -
✓ which stresses that all humans have a right to privacy in their home and
correspondence
15. EU Data Privacy Regulation History – The
“Directive” (cont’d)
• The Directive required data processing companies to comply with 3 principals when
processing personal data -
• transparency
• legitimate purpose
• proportionality
16. GDPR Explained
• Gives consumers more control over how their data is collected and used
• Forces companies to justify what they do with personal information they collect,
defined as any information that is identifiable to a specific person (i.e.) –
✓ name
✓ phone number
✓ username
✓ health data
✓ political opinions
✓ IP address
✓ location data
• Generally imposes responsibility and accountability on data collection and
processing companies
17. GDPR Key Players
• Data subject: individual whose data is being processed
✓ All natural persons who can be distinguished as persons with rights in regards to the
processing of personal data
• Data controller: person/entity in charge of data processing
✓ Natural person
✓ Public authority or agency
✓ Corporate entity
18. GDPR Key Players (cont’d)
• Data processors: processes data on behalf of controller
✓ Natural person
✓ Public authority or agency
✓ Corporate entity
❑ i.e. IT company
• Data Protection Officer (DPO): compliance officer
19. GDPR Requirements
• Increased Territorial Scope
• Consent
• Right to Access
• Right to be Forgotten
• Privacy-by-design
• Data Protection Officers (DPOs)
• Breach notification
• Data Portability
• Penalties
20. Increased Territorial Scope
• GDPR abandons previous ambiguous language and replaces it with “clear guidelines”
✓ Applies to the processing of personal data by controllers and processors in the EU-
regardless of where the processing takes place; and
✓ Data processing where the activities relate to offering goods or services to data
subjects and the monitoring of behavior that takes place within the EU
❑ Non-EU businesses engaged in processing the data of EU citizens must
appoint a representative in the EU
21. Consent
• Requires companies to request and obtain consent from data subjects by clear and plain
language (“opt-in consent”)
✓ All requests must be given and written in an intelligible and easily accessible form
and distinguishable from all other matters
• It must be just as easy to withdraw consent as it is to give it
22. Right to Access
• Data subjects have right to obtain confirmation from controller as to whether or not their
personal data is being processed, where, and for what purpose
✓ If a request is made, the controller must give data subject a free electronic copy of
her information
23. Right to be Forgotten
• Data subjects may request to have controller –
✓ erase personal data
✓ cease further circulation of the data; and
✓ potentially have third parties stop processing of the data
• Conditions for data erasure are either (a) data is no longer relevant to original
purpose or processing, (b) or data subject is withdrawing consent
• Erasure requests are weighed against the public interest in the availability of the
data
24. Privacy-by-Design
• Data protection is at forefront of any controller or processor system design - not an
additional option
• Requires controllers hold and process only data absolutely necessary for completion
of their duties and limit access to personal data
25. Data Protection Officer (DPOs)
• DPO appointment is mandatory only to companies (controllers) whose core activities
consist of processing sensitive personal data on a large scale or a form of data processing
which is particularly far reaching for the rights of the data subjects
✓ Companies may name an employee as an internal DPO; or
appoint an external DPO.
• Public bodies must always appoint DPO
26. Data Protection Officer (DPOs) (cont’d)
• DPO duties include:
✓ complying with all relevant data protection laws
✓ monitoring specific processes, such as data protection impact assessments
✓ increasing employee awareness for data protection and training them
accordingly, and
✓ collaborating with the supervisory authorities
27. Breach Notification
• Breach notifications are mandatory in all member states where data breach is likely to
“result in a risk for the rights and freedoms of individuals”
• Businesses must notify authorities about any data security breach within 72 hours of
discovering it
• Businesses must also notify data subjects without undue delay after first becoming aware
of a data breach
28. Data Portability
• Data subjects have the right to receive their personal data and may transmit such data to
another controller as they please
• The data subject must be able to use the data when given by the data controller – must be
given “in a structure, commonly used and machine-readable format”
Link: http://www.simontbraun.eu/en/news/news-general/2082-the-right-to-data-portability-
and-bank-account-information
29. Penalties
• Organizations that fail to comply with GDPR may be fined up to the greater amount of 4%
of annual global revenue or €20 million (approx. $23 Million)
• Tiered approach to fines –
✓ Most serious infractions: For example, not having sufficient customer consent or
violating core Privacy-by-Design concepts
▪ up to 4% of annual global revenue or €20 million, whichever is greater
✓ Lesser infractions: For example, not having records in order, not notifying authority and
data subjects about breach, or not conducting privacy impact assessment (PIA)
▪ up to 2% of annual global revenue or €10 million, whichever is greater
• Breach alone is not enough to merit a fine
30. Compliance
• All personal data processors and controllers of data subjects - regardless of their location -
must comply with GDPR
✓ Broad interpretation - companies may not have any direct relationship with Europe
and still be subject to GDPR (indirect contact is sufficient)
31. Compliance Practices
• All organizations holding and processing data subject personal data must comply with
requirements by engaging in practices, such as -
✓ Document all data processing activities that involve the collection, treatment, and
safeguarding of personal data
✓ Audit data they hold and develop a risk assessment
✓ Ensure they have a DPO
• Build and improve processes and features to ensure all requests are quickly and
effectively addressed when data subjects seek to exercise their rights
• If controller, re-evaluate all sub-processors to ensure they have adequate security
measures in place for safeguarding of personal data
• Create a data breach reporting plan
32. Compliance Challenges
• GDPR imposes responsibilities and duties not previously imposed under the Directive
✓ Companies must amend internal business organization process for compliance
• Intensive record keeping - Controllers and processers are required to keep internal records
of their data protection activities
• Major fines & sanctions for failure to comply
• Heavy cost – legal and compliance fees
33. Schrems II
• July 2020 decision from the Court of Justice of the European Union
• Invalidated the US-EU Privacy Shield
✓ Closed off key mechanisms for transferring personal data from the EU to the US
✓ Schrems I invalidated European Commission adequacy decisions with respect to
EU-U.S. Safe Harbor
• CJEU was concerned with US government access to personal data for national security
purposes and the rights of EU citizens in the US to judicial review and redress
✓ CJEU found the U.S. was not according EU personal data the protection and rights
of redress available in the EU
• International data flows can continue to be based on EU Standard Contractual Clauses if
properly monitored
34. Standard Contractual Clauses
• Contract clauses promulgated by the European Commission to permit cross-border data
transfers
• Essentially, companies outside the GDPR’s reach voluntary agreements to comply with
GDPR requirements to receive transfers including personal information from the EU
• The European Commission released new SCC’s following the Schrems II decision
• Organizations must stop using the old SCC’s in new contracts by September 27, 2021,
and all existing contracts must be transitioned to the new SCC’s by December 27, 2022
35. EU-US Data Transfers
Since Schrems II, the EU and US are still in talks to come up with a replacement for Privacy
Shield
• On March 25, 2022, the European Commission President announced a new agreement in
principle with the US to expand Privacy Shield and permit EU-US data flows again
- Trans-Atlantic Data Privacy Framework
• Companies can still use Standard Contractual Clauses and Binding Corporate Rules to
permit data flows
• This decision will also likely face a challenge – a Schrems III scenario
36. GDPR: Five Years In
• GDPR awareness
✓ Influx in data breaches and complaints
✓ Increase in data subjects exercising their information rights
✓ Organizations increasingly appointing DPOs
✓ Data protection legislation on the rise globally
• Enforcement
✓ Low enforcement to complaints/data breach ratio
✓ Not just about the fines – increase in warnings and reprimands
✓ Huge fines to huge companies: € 746 million ($877 million) against Amazon in July 2021,
€225 million ($255 million) against WhatsApp, € 60 million ($68 million) against Facebook
in 2022, €50 million against Google (one of many fines against Google), €35 million
against H&M in 2020
37. Broad Definition of “Joint Controller”
• Two Facebook cases from the CJEU have led to a broad interpretation of when there are
“joint controllers”
• “Joint Controller” situation arises when two or more controllers both have responsibility for
meeting the terms of the GDPR
• Both controllers have full responsibility to ensure the entire process is compliant
• An individual can seek compensation from any joint controller (who may seek additional
compensation from the other joint controller)
38. Vetting Service Providers
During negotiations with potential service providers, controllers should consider the following
provisions:
• Obligations on processors to update/review their technical and organizational security
measures
• The right to object and vet any potential sub-processors prior to hiring
• The right to control the audit procedure
• Obligations on processors on request (and not just at termination) to delete, destroy, or put
personal data beyond use
• Obligations on processors to notify the controller of personal data breaches within a
specified timescale and to cooperate in investigating and resolving the breach before
reporting it to the supervisory authority
• Indemnification clauses to protect controller in the event of a data breach
39. Vetting Service Providers cont’d.
Practical Steps in Vetting:
• Use due diligence questionnaires for processor’s IT and data security environment
• Ask for IT security certifications and policies
• Auditing
• Regular contract reviews and updates
40. Data Breaches Increase
• 7.9 billion data records exposed in 2019 – a 33% increase from the same time in 2018
(source: https://www.identityforce.com/blog/2020-data-breaches)
• In 2020, 26 billion data records were exposed – the worst year on record (source:
https://www.securitymagazine.com/articles/94076-the-top-10-data-breaches-of-2020)
• In August 2022, it was reported that the “0ktapus” hacker group had launched a months-
long phishing campaign that compromised more than 130 companies, including
Cloudflare, DoorDash, MailChimp, and Twilio
- the attackers imitated the authentication service Okta to trick victims into entering
login credentials on a fake authentication page
41. Recent GDPR Enforcement Decisions
GDPR enforcement decisions in 2022:
• Google Ireland - €90 million ($102 million): the French data protection authority CNIL fined
Google Ireland related to the way the entity implements cookie consent procedures on
YouTube
• Google Analytics: recent decisions by the data protection authorities of Italy, France, and
Austria have effectively ruled that Google Analytics is non-compliant with GDPR and
advises companies to discontinue using the tool in favor of alternative tools
42. GDPR: What Should Businesses do in Light of
GDPR-Like Regulatory Trend?
• Continue to conduct general risk assessments
• Prioritize building programs with core fair information practices
✓ E.g. Notice, consent, accountability, and transparency
• Keep up to date on regulatory developments specific to each country
• Consider participating in “sandboxes”
• Continue to foster culture of privacy and information data security in your business
44. About The Faculty
Kathryn Nadro - knadro@sfgh.com
Kathryn (“Katie”) Nadro leads Sugar Felsenthal Grais & Helsinger’s Data Security and Privacy practice.
Katie advises clients on a diverse array of business matters, including data security and privacy
compliance, commercial and business disputes, and employment issues. Katie works with individuals and
businesses of all sizes to craft successful resolutions tailored to each individual matter.
Katie is a Certified Information Privacy Professional (CIPP/US) and counsels clients on a variety of data
security and privacy issues, including breach response, policy drafting, program management, data
collection, vendor management, and compliance with ever-changing state, federal, and international
privacy law. Katie also has broad litigation experience representing companies and individuals in
contract, non-compete, discrimination, harassment, fiduciary duty, and trade secret litigation in state and
federal court. With a background as both in-house and outside counsel, Katie understands that business
objectives, time, and resources play an important role in reaching a favorable outcome for each client.
44
45. About The Faculty
Emily Gunner - emily.gunner@betterhelp.com
Emily Gunner is the Corporate Counsel at Teladoc Health and BetterHelp.
45
46. About The Faculty
Alison Schaffer - aschaffer@jumptrading.com
Alison Schaffer Bloom is Legal and Regulatory Counsel at the Jump Trading Group in
Chicago. Alison works extensively in the areas of trading, technology, human resources,
venture capital, and data protection and privacy. Specifically, Alison leads data protection and
privacy application for all of the Jump Trading Group’s business lines globally. Alison
graduated from Northwestern University with Honors in Legal Studies and Communication
Studies and a Certificate in Service Learning and attained a Masters in Education while a
Teach For America corps member in New York. Alison obtained her Juris Doctor from
Chicago-Kent College of Law, where she was an avid member of the Trial Team. She is a
member of the International Association of Privacy Professionals and holds the Certified
Information Privacy Professional/Europe (CIPP/E), a preeminent certification for advanced
concentration in European data protection laws, standards and practices.
46
47. About The Faculty
Alex Sharpe - alex@sharpellc.com
Alex Sharpe is a long-time Cybersecurity, Governance, and Digital Transformation expert with
real-world operational experience. He has spent much of his career helping corporations and
government agencies reap the rewards afforded by advances in technology while mitigating
risk. He began his career at the NSA before moving into the Management Consulting ranks
building practices at Booz Allen and KPMG. He subsequently co-founded two firms with
successful exits, including The Hackett Group. Alex holds degrees in Business from Columbia
Business School, Systems Engineering from Johns Hopkins University, and Electrical
Engineering from New Jersey Institute of Technology (NJIT). He is a published author,
speaker, instructor, and advisor.
47
48. Questions or Comments?
If you have any questions about this webinar that you did not get to ask during the live
premiere, or if you are watching this webinar On Demand, please do not hesitate to email us
at info@financialpoise.com with any questions or comments you may have. Please include
the name of the webinar in your email and we will do our best to provide a timely response.
IMPORTANT NOTE: The material in this presentation is for general educational purposes
only. It has been prepared primarily for attorneys and accountants for use in the pursuit of
their continuing legal education and continuing professional education.
48
51. About Financial Poise
51
DailyDAC LLC, d/b/a Financial Poise™ provides
continuing education to attorneys, accountants,
business owners and executives, and investors. It’s
websites, webinars, and books provide Plain English,
entertaining, explanations about legal, financial, and
other subjects of interest to these audiences.
Visit us at www.financialpoise.com
Our free weekly newsletter, Financial Poise
Weekly, updates you on new articles published
on our website and Upcoming Webinars you
may be interested in.
To join our email list, please visit:
https://www.financialpoise.com/subscribe/