After ensuring compliance as a controller and processor of data, Reddico created this presentation for the team - offering further guidance and information on our processes and how we've complied. For accuracy purposes, some information comes directly from the ICO's guidelines.
On 25 May 2018 the new General Data Protection Regulation (GDPR) will come into force, replacing all existing data protection regulations.
Payroll bureaus process large amounts of personal data in relation to their customers, their customers’ employees, and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
BrightPay hosted a free CPD accredited webinar alongside Bright Contracts where we discussed everything that accountants, bookkeepers and payroll bureaus need to know about GDPR.
For more information visit https://www.brightpay.co.uk
For more information visit https://www.brightpay.co.uk
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
The GDPR (DSGVIO) is effective since 25th of May. This brief presentation about privacy law in Europe gives an overview to the GDPR (DSGVO) and and an outlook to privacy regulations.
(presentation from the 18th of June 2018 in "Factory Berlin".
EMMA’s EMEA Regional Director Joseph Yammine explains how the EU’s General Data Protection Regulation applies to the Health Care Industry and how you can prepare your team to follow the regulation and avoid any data breaches.
On 25 May 2018 the new General Data Protection Regulation (GDPR) will come into force, replacing all existing data protection regulations.
Payroll bureaus process large amounts of personal data in relation to their customers, their customers’ employees, and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
BrightPay hosted a free CPD accredited webinar alongside Bright Contracts where we discussed everything that accountants, bookkeepers and payroll bureaus need to know about GDPR.
For more information visit https://www.brightpay.co.uk
For more information visit https://www.brightpay.co.uk
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
The GDPR (DSGVIO) is effective since 25th of May. This brief presentation about privacy law in Europe gives an overview to the GDPR (DSGVO) and and an outlook to privacy regulations.
(presentation from the 18th of June 2018 in "Factory Berlin".
EMMA’s EMEA Regional Director Joseph Yammine explains how the EU’s General Data Protection Regulation applies to the Health Care Industry and how you can prepare your team to follow the regulation and avoid any data breaches.
European government in 2016 adopted General Data Protection Regulation (GDPR) and was
put into effect on May 25, 2018, replacing the 1995’s Data Protection Directive to protect the
personal information of EU citizens. GDPR aims to govern personal data processing and ensure
processing is fair and lawful. It is also designed to emphasize the fundamental right to privacy.
If you are in the UK and need to check that you will comply with the General Data Protection Regulations when they come into force in May 2018, this checklist might help. Developed for use in my own business it is shared without liability. Please use it wisely to start the process of complying.
For more information on making your processes and your legal documents simple, especially if you are in the UK construction industry, go to http://500words.co.uk/
For more information visit https://www.thesaurus.ie or https://www.brightpay.ie
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Payroll bureaus process large amounts of personal data, not least in relation to their customers, their customers’ employees, and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this CPD accredited webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How it will impact payroll bureaus
How to prepare for GDPR
How we are working to help you
GDPR is coming for you whether you’re ready or not. Companies must show compliance by May 25, 2018. Take a look at the presentation to learn more about the new law that is going to change the way data is handled across the world. Read about the how it affects you and the steps you can take to make sure you’re GDPR ready!
About Extentia Information Technology:
Extentia is a global technology and services firm that helps clients transform and realize their digital strategies. With a focus on enterprise mobility, cloud computing, and user experiences, Extentia strives to accomplish and surpass your business goals. Our team is differentiated by an emphasis on excellent design skills that we bring to every project. Extentia’s work environment and culture inspire team members to be innovative and creative, and to provide clients with an exceptional partnership experience.
www.extentia.com
For more information visit https://www.brightpay.co.uk
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
For more information visit thesaurus.ie or brightpay.ie
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
With GDPR coming into effect, we can see a lot of changes in the privacy policies of companies doing business online. The presentation is a description of GDPR and its implications in India and worldwide. The main aim of the presentation is to identify the key issues of data privacy and the rights available to the consumer who's data is to be shared.
Getting to grips with General Data Protection Regulation (GDPR)Zoodikers
Leading employment lawyer Pam Loch, and digital expert Katie King share their advice on how to get to grips with the topic of the moment - GDPR.
They look at who is liable, the impact of Brexit, how it affects marketing and what steps you can take to prepare.
General Data Protection Regulation for OpsKamil Rextin
A brief on GDPR & Hubspot for Marketing & Marketing Ops.
This PPT provides a brief background on GDPR & how to implement GDPR compliance with Hubspot , Facebook & Google Analytics
Full GDPR toolkit: https://quality.eqms.co.uk/gdpr-general-data-protection-regulation-eu-toolkit
This free online training presentation provides you with information about how to comply with the General Data Protection Regulation, managing breaches, engaging employees, key requirements and more.
Charity Law Updates for 2018: Making the Most of ChangeIBB Law
January 2018 welcomes the Kingston Smith and IBB Solicitors annual charities update to bring you up to speed with the legal and regulatory developments in the Charity Sector.
For advice on developments in the Charity Sector please see:
https://www.ibblaw.co.uk/sector/charities
For charity law experts see:
https://www.ibblaw.co.uk/service/charities
Rosie Brass, senior solicitor in the Charities team at IBB, will provide an overview of the legal framework for the GDPR. Then Dan Fletcher, Director (Fundraising), at Kingston Smith, will guide attendees on how to make the most of the GDPR and use the changes to improve their data management. Dan will also discuss practical ways to use the changes to improve fundraising and marketing for the better. For more information on GDPR please see: https://www.ibblaw.co.uk/insights/blog/are-you-ready-general-data-protection-regulation
In the second half of the seminar, Mahmood Ramji and Luke Holt from the Kingston Smith Charities team will provide an update on accounting, including looking at the recent SORP information sheet and the expected future timeline for new SORP iterations, followed by an overview of another 2017 hot topic - charity fraud, including cybercrime. Mahmood will also share details of the most pertinent areas we have been discussing with our clients during 2017. Looking forward into 2018, Luke will highlight the main points from the Lords Select Committee on Charities and how the sector may adapt as a result. Following the release of the third edition of the Charity Governance Code, Luke will also discuss the main areas of consideration and significant changes from previous versions. They will then conclude with a look at the new CC32 Independent Examination guidance and its key amendments.
The last part of the presentation will be provided by Paul Ridout, who heads the IBB Charities practice and will talk briefly about some recent regulatory action by the Charity Commission, including the deployment of some of the new powers brought in by the Charities (Protection and Social Investment) Act 2016. He will also address the tricky issue of serious incident reporting, in the light of the Commission’s recent changes to its guidance to trustees about what needs to be reported, and when.
General Data Protection Regulation (GDPR) - Moving from confusion to readinessOmo Osagiede
This GDPR primer highlights key aspects of the new EU regulation regarding the protection of EU citizens data. It also presents a basic approach and key activities for GDPR preparedness. Useful as a discussion starter with senior management.
What does GDPR actually mean to you as a business, what are the rights of individuals and how do you have to apply them, around Subject Access Request, Right to Erasure / be Forgotten, Consent and Opt In and Out and Personally Identifiable Information and Personal Data
An introduction to the Data Protection & GDPR Health Check service provided by DVV Solutions. Ensure your compliance with GDPR and understand the gaps you need to fill.
This Presentation explains what GDPR is and the impact it'll have for Companies who process data of EU Citizens.
This Guide explains the principles of GDPR, Consent, User Rights and also explains how to implement GDPR in your organization.
Originally appeared at
http://backlinkme.net/definitive-guide-for-general-data-protection-regulation-gdpr-compliance/
European government in 2016 adopted General Data Protection Regulation (GDPR) and was
put into effect on May 25, 2018, replacing the 1995’s Data Protection Directive to protect the
personal information of EU citizens. GDPR aims to govern personal data processing and ensure
processing is fair and lawful. It is also designed to emphasize the fundamental right to privacy.
If you are in the UK and need to check that you will comply with the General Data Protection Regulations when they come into force in May 2018, this checklist might help. Developed for use in my own business it is shared without liability. Please use it wisely to start the process of complying.
For more information on making your processes and your legal documents simple, especially if you are in the UK construction industry, go to http://500words.co.uk/
For more information visit https://www.thesaurus.ie or https://www.brightpay.ie
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Payroll bureaus process large amounts of personal data, not least in relation to their customers, their customers’ employees, and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this CPD accredited webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How it will impact payroll bureaus
How to prepare for GDPR
How we are working to help you
GDPR is coming for you whether you’re ready or not. Companies must show compliance by May 25, 2018. Take a look at the presentation to learn more about the new law that is going to change the way data is handled across the world. Read about the how it affects you and the steps you can take to make sure you’re GDPR ready!
About Extentia Information Technology:
Extentia is a global technology and services firm that helps clients transform and realize their digital strategies. With a focus on enterprise mobility, cloud computing, and user experiences, Extentia strives to accomplish and surpass your business goals. Our team is differentiated by an emphasis on excellent design skills that we bring to every project. Extentia’s work environment and culture inspire team members to be innovative and creative, and to provide clients with an exceptional partnership experience.
www.extentia.com
For more information visit https://www.brightpay.co.uk
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
For more information visit thesaurus.ie or brightpay.ie
The General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 with the aim of protecting all EU citizens from privacy and data breaches in an increasingly data driven world.
Employers process large amounts of personal data, not least in relation to their customers and their own employees. Consequently, the GDPR will impact most if not all areas of the business and the impact it will have cannot be overstated.
In this webinar, we will peel back the legislation to outline clearly:
What is GDPR and why is it being implemented?
Why employers need to take it seriously
How to prepare for GDPR
How we are working to help you
With GDPR coming into effect, we can see a lot of changes in the privacy policies of companies doing business online. The presentation is a description of GDPR and its implications in India and worldwide. The main aim of the presentation is to identify the key issues of data privacy and the rights available to the consumer who's data is to be shared.
Getting to grips with General Data Protection Regulation (GDPR)Zoodikers
Leading employment lawyer Pam Loch, and digital expert Katie King share their advice on how to get to grips with the topic of the moment - GDPR.
They look at who is liable, the impact of Brexit, how it affects marketing and what steps you can take to prepare.
General Data Protection Regulation for OpsKamil Rextin
A brief on GDPR & Hubspot for Marketing & Marketing Ops.
This PPT provides a brief background on GDPR & how to implement GDPR compliance with Hubspot , Facebook & Google Analytics
Full GDPR toolkit: https://quality.eqms.co.uk/gdpr-general-data-protection-regulation-eu-toolkit
This free online training presentation provides you with information about how to comply with the General Data Protection Regulation, managing breaches, engaging employees, key requirements and more.
Charity Law Updates for 2018: Making the Most of ChangeIBB Law
January 2018 welcomes the Kingston Smith and IBB Solicitors annual charities update to bring you up to speed with the legal and regulatory developments in the Charity Sector.
For advice on developments in the Charity Sector please see:
https://www.ibblaw.co.uk/sector/charities
For charity law experts see:
https://www.ibblaw.co.uk/service/charities
Rosie Brass, senior solicitor in the Charities team at IBB, will provide an overview of the legal framework for the GDPR. Then Dan Fletcher, Director (Fundraising), at Kingston Smith, will guide attendees on how to make the most of the GDPR and use the changes to improve their data management. Dan will also discuss practical ways to use the changes to improve fundraising and marketing for the better. For more information on GDPR please see: https://www.ibblaw.co.uk/insights/blog/are-you-ready-general-data-protection-regulation
In the second half of the seminar, Mahmood Ramji and Luke Holt from the Kingston Smith Charities team will provide an update on accounting, including looking at the recent SORP information sheet and the expected future timeline for new SORP iterations, followed by an overview of another 2017 hot topic - charity fraud, including cybercrime. Mahmood will also share details of the most pertinent areas we have been discussing with our clients during 2017. Looking forward into 2018, Luke will highlight the main points from the Lords Select Committee on Charities and how the sector may adapt as a result. Following the release of the third edition of the Charity Governance Code, Luke will also discuss the main areas of consideration and significant changes from previous versions. They will then conclude with a look at the new CC32 Independent Examination guidance and its key amendments.
The last part of the presentation will be provided by Paul Ridout, who heads the IBB Charities practice and will talk briefly about some recent regulatory action by the Charity Commission, including the deployment of some of the new powers brought in by the Charities (Protection and Social Investment) Act 2016. He will also address the tricky issue of serious incident reporting, in the light of the Commission’s recent changes to its guidance to trustees about what needs to be reported, and when.
General Data Protection Regulation (GDPR) - Moving from confusion to readinessOmo Osagiede
This GDPR primer highlights key aspects of the new EU regulation regarding the protection of EU citizens data. It also presents a basic approach and key activities for GDPR preparedness. Useful as a discussion starter with senior management.
What does GDPR actually mean to you as a business, what are the rights of individuals and how do you have to apply them, around Subject Access Request, Right to Erasure / be Forgotten, Consent and Opt In and Out and Personally Identifiable Information and Personal Data
An introduction to the Data Protection & GDPR Health Check service provided by DVV Solutions. Ensure your compliance with GDPR and understand the gaps you need to fill.
This Presentation explains what GDPR is and the impact it'll have for Companies who process data of EU Citizens.
This Guide explains the principles of GDPR, Consent, User Rights and also explains how to implement GDPR in your organization.
Originally appeared at
http://backlinkme.net/definitive-guide-for-general-data-protection-regulation-gdpr-compliance/
GDPR Breakfast Briefing - For Business Owners, HR Directors, Marketing Direct...Harrison Clark Rickerbys
Slideshow from GDPR Breakfast Briefing - For Business Owners, HR Directors, Marketing Directors, IT Directors & Ops Directors, on 7th March 2018 at Hilton Puckrup Hall
The General Data Protection Regulation (GDPR) in Ireland-What You Should KnowTerry Gorry
The General Data Protection Regulation (GDPR) came into effect on 25th May, 2018. This presentation looks at the key principles and concepts in the GDPR regulation
Introduction to EU General Data Protection Regulation: Planning, Implementat...Financial Poise
The GDPR changed the way the world collects, stores, and sends personal data. The GDPR is a broad EU regulation that requires businesses to protect the personal data of EU citizens, whether the business itself is in the EU or elsewhere. Since its implementation in 2018, companies that collect data on EU citizens must comply with strict rules for the protection of personal data or face heavy fines for non-compliance. This webinar will provide an overview of GDPR’s applicability and requirements, as well as how your organization may meet those standards.
ABM Display Advertising Success in the World of GDPR [PPT]Kwanzoo Inc
In this webinar, see the specific impacts of GDPR on B2B companies as they plan, budget, launch and measure success from ABM advertising programs that reach and engage the 500 Million+ citizens of EU countries and the UK. Our panel of experts will cover the IT, Legal, Marketing, Data and Technology Provider side of GDPR compliance. All of these dimensions need to be addressed as you plan for the world of GDPR.
Introduction to EU General Data Protection Regulation: Planning, Implementati...Financial Poise
The GDPR changed the way the world collects, stores, and sends personal data.The GDPR is a broad EU regulation that requires businesses to protect the personal data of EU citizens, whether the business itself is in the EU or elsewhere. Since its implementation in 2018, companies that collect data on EU citizens must comply with strict rules for the protection of personal data or face heavy fines for non-compliance. This webinar will provide an overview of GDPR’s applicability and requirements, as well as how your organization may meet those standards.
To view the accompanying webinar, go to: https://www.financialpoise.com/financial-poise-webinars/introduction-to-eu-general-data-protection-regulation-planning-implementation-and-compliance-2021/
The GDPR changes are fast approaching and time is running out to prepare yourself and your data. GDPR is an important topic that you will need to know inside out for your business and marketing to succeed. CommuniGator can help you get fully prepared for its arrival.
We are here to answer YOUR GDPR questions to arm you with everything you need to ensure you are compliant come May 2018.
Find out how the new data law will affect your B2B marketing abilities. We answer all your questions with a Q&A section from our experts in the field – so you can really get to grips with the changes.
We cover:
- The good the bad and the ugly of GDPR
- Your own checklist to becoming compliant
- How to get your existing data ‘double opted-in’
- Answers to your burning questions!
It, Legal, Marketing and sales departments are all affected by the European Union's General Data Protection Regulation (EU GDPR). EU GDPR is more than an IT governance issue, it impacts the IT architecture and the user journey of your online and offline data capture processes.
A simple, beautiful guide to understanding GDPR (General Data Protection Regulation).
All businesses in the UK and EU need to comply with GDPR by the 25th of May 2018 or risk hefty fines.
Use this free, visual guide to understand how you need to comply.
We'll be looking at what your customers' rights are, privacy by design, breach notifications, data security and more.
Finally, we'll give you a GDPR action checklist so you can take right steps to comply with the legislation in time.
For more information visit https://brightpay.co.uk
All organisations, regardless of size, will have had to introduce or update existing policies regarding personal data in order to comply with the new regulations.
This webinar will look at the GDPR, how it may affect your business and what we have learned from the GDPR 5 months on. We will also have a look at how BrightPay can help your organisation utilise the new regulations for the benefit of you, your customers and youremployees.
Essentially, GDPR is an overhaul of the way we process, manage and store individual’s personal data, and that includes your employee’s personal payroll and HR information. We will take you through the impact of GDPR on your payroll processing, highlighting the biggest areas of concern including emailing payslips, employee consent and your legal obligations with regards to payroll, HR and Employment law.
The webinar will include a demonstration of how our BrightPay Connect add-on can help you work towards GDPR compliance by offering remote online access to accountants, employers and employees. We will take a brief look at our Bright Contracts software, which as well as providing the user with the facility to create and customise Contracts of Employment and Company Handbooks, now has a new feature which enables the user to create an Employee Privacy Policy which is a requirement under GDPR.
We will also unveil our new timesheet rapid input feature. Our exciting new timesheet feature directly connects to the BrightPay payroll and allows clients to import timesheet hours from a CSV or directly input hours for each employee on the BrightPay connect employer dashboard. For accountants and payroll bureaus, clients can easily use the timesheet upload for rapid input of employee’s hours eliminating possible errors. The timesheet feature also allows bureaus to easily run the payroll before sending it back to your payroll client for final approval and validation.
Key marketing impacts of the GDPR - Rosemary Smith, Director, Opt-4Adestra
From May 2018, the GDPR will affect all processing of personal data including email marketing. This session will outline the key impacts on marketing consent and profiling, and provide practical ideas on how to make your email campaigns legal.
Explore our comprehensive data analysis project presentation on predicting product ad campaign performance. Learn how data-driven insights can optimize your marketing strategies and enhance campaign effectiveness. Perfect for professionals and students looking to understand the power of data analysis in advertising. for more details visit: https://bostoninstituteofanalytics.org/data-science-and-artificial-intelligence/
Data Centers - Striving Within A Narrow Range - Research Report - MCG - May 2...pchutichetpong
M Capital Group (“MCG”) expects to see demand and the changing evolution of supply, facilitated through institutional investment rotation out of offices and into work from home (“WFH”), while the ever-expanding need for data storage as global internet usage expands, with experts predicting 5.3 billion users by 2023. These market factors will be underpinned by technological changes, such as progressing cloud services and edge sites, allowing the industry to see strong expected annual growth of 13% over the next 4 years.
Whilst competitive headwinds remain, represented through the recent second bankruptcy filing of Sungard, which blames “COVID-19 and other macroeconomic trends including delayed customer spending decisions, insourcing and reductions in IT spending, energy inflation and reduction in demand for certain services”, the industry has seen key adjustments, where MCG believes that engineering cost management and technological innovation will be paramount to success.
MCG reports that the more favorable market conditions expected over the next few years, helped by the winding down of pandemic restrictions and a hybrid working environment will be driving market momentum forward. The continuous injection of capital by alternative investment firms, as well as the growing infrastructural investment from cloud service providers and social media companies, whose revenues are expected to grow over 3.6x larger by value in 2026, will likely help propel center provision and innovation. These factors paint a promising picture for the industry players that offset rising input costs and adapt to new technologies.
According to M Capital Group: “Specifically, the long-term cost-saving opportunities available from the rise of remote managing will likely aid value growth for the industry. Through margin optimization and further availability of capital for reinvestment, strong players will maintain their competitive foothold, while weaker players exit the market to balance supply and demand.”
As Europe's leading economic powerhouse and the fourth-largest hashtag#economy globally, Germany stands at the forefront of innovation and industrial might. Renowned for its precision engineering and high-tech sectors, Germany's economic structure is heavily supported by a robust service industry, accounting for approximately 68% of its GDP. This economic clout and strategic geopolitical stance position Germany as a focal point in the global cyber threat landscape.
In the face of escalating global tensions, particularly those emanating from geopolitical disputes with nations like hashtag#Russia and hashtag#China, hashtag#Germany has witnessed a significant uptick in targeted cyber operations. Our analysis indicates a marked increase in hashtag#cyberattack sophistication aimed at critical infrastructure and key industrial sectors. These attacks range from ransomware campaigns to hashtag#AdvancedPersistentThreats (hashtag#APTs), threatening national security and business integrity.
🔑 Key findings include:
🔍 Increased frequency and complexity of cyber threats.
🔍 Escalation of state-sponsored and criminally motivated cyber operations.
🔍 Active dark web exchanges of malicious tools and tactics.
Our comprehensive report delves into these challenges, using a blend of open-source and proprietary data collection techniques. By monitoring activity on critical networks and analyzing attack patterns, our team provides a detailed overview of the threats facing German entities.
This report aims to equip stakeholders across public and private sectors with the knowledge to enhance their defensive strategies, reduce exposure to cyber risks, and reinforce Germany's resilience against cyber threats.
Chatty Kathy - UNC Bootcamp Final Project Presentation - Final Version - 5.23...John Andrews
SlideShare Description for "Chatty Kathy - UNC Bootcamp Final Project Presentation"
Title: Chatty Kathy: Enhancing Physical Activity Among Older Adults
Description:
Discover how Chatty Kathy, an innovative project developed at the UNC Bootcamp, aims to tackle the challenge of low physical activity among older adults. Our AI-driven solution uses peer interaction to boost and sustain exercise levels, significantly improving health outcomes. This presentation covers our problem statement, the rationale behind Chatty Kathy, synthetic data and persona creation, model performance metrics, a visual demonstration of the project, and potential future developments. Join us for an insightful Q&A session to explore the potential of this groundbreaking project.
Project Team: Jay Requarth, Jana Avery, John Andrews, Dr. Dick Davis II, Nee Buntoum, Nam Yeongjin & Mat Nicholas
2. Issue Slides
WHAT IS GDPR? 4-7
WHAT ARE THE KEY PRINCIPLES TO LIVE BY? 8-17
WHAT HAS REDDICO DONE TO BE COMPLIANT? 18-22
WHAT DO YOU NEED TO KNOW? 23-26
TAKEAWAYS / ACTIONS 27-28
AGENDA
4. Introduction to GDPR
GDPR provides a set of guidelines for how companies should handle personal data. It gives strict rules
around the processing of information for all EU residents.
The British Government will be mirroring GDPR with its own set of regulations… when we leave the EU. The
regulations concern all EU residents and also impact non-EU businesses processing EU data.
GDPR replaces the Data Protection Act 1998.
5. Personal data is: Any information relating to an identified or identifiable natural person (‘data subject’).
• An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference
to an identifier such as name, an identification number, location data, an online identifier or to one or
more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity
of that natural person.
• This means that email addresses (both business and personal) and IP addresses are now considered
personal data.
Multiple pieces of data can help create a persona, which can be traced back to one person
What is personal data?
6. There are six lawful basis under which data can be processed:
1. The data subject has given consent to the processing for one or more specific purposes
2. Processing is necessary for the performance of a contract or in order to take steps at the request of the
data subject
3. Processing is necessary for compliance with a legal obligation to which the controller is subject
4. Processing is necessary in order to protect the vital interests of the data subject
5. Processing is necessary for the performance of a task carried out in the public interest or in the exercise
of official authority vested in the controller
6. Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a
third party
These lawful basis for data processing aim to prevent passing on of third party information
Lawful basis for processing
7. • Tick boxes can no longer to pre ticketed as the data subject needs to know that they have knowingly
opted in
• Consent needs to be unbundled. Not acceptable to include consent to marketing via phone, post, SMS,
email, etc. in a single statement, each must be a separate opt in
• It is no longer acceptable to state “Your details may be shared with selected third parties”. This needs to
be explicit and details exactly which third parties your details will be shared with
• Consent can not longer be hidden in privacy policies or terms and conditions pages, but must be clear at
each stage where data is collected
• Proof of consent must be retained each time it is collected
New regulations on giving of consent should make people more aware of how their data is used
Consent
8. • GDPR relies on consent of the person whose data is being processed
• Companies can only process data in line with what has been contractually agreed, and based on
legitimate interests
• This should see an end (or the beginning of the end…) to unsolicited emails and marketing, selling
of personal data, and grey areas in how personal data is processed
• Companies need to state what data they are collecting, why they are collecting it and who they’re
sharing it with
Personal data needs to be processed – but you now have a lot more rights on why and how
The crux of the matter…
9. There are huge penalties in place for companies that don’t comply with these regulations:
1) Up to €10 million, or 2% annual global turnover – whichever is higher.
2) Up to €20 million, or 4% annual global turnover – whichever is higher.
However, that doesn’t mean every breach will be costly… as long as situations are handled efficiently
and companies show a committed process to compliance.
You should report any data issues to Luke Kyte or email dpo@reddico.co.uk
What if a business doesn’t comply?
11. There are 8 principles under the GDPR legislation:
1. Right to be informed
2. Right of access
3. Right to rectification
4. Right to erasure
5. Right to restrict processing
6. Right to data portability
7. Right to object
8. Rights related to automated decision making including profiling
GDPR Principles
These 8 principles apply to all EU members. Non-EU businesses must also comply
12. Right to be informed
You should be informed of how your data is being used. The key is transparency. By getting
this right you’ll increase trust in your brand – so don’t think of it as a limitation.
• Clear reasons for processing data
• Information must be provided at the time you collect data
• Privacy policies must be provided
• Information must be concise, transparent, and easy to understand
• Companies need to regularly review and update policies
Companies have a legal obligation to tell you what data is collected and how it’s processed
13. The right of access stipulates that you can ask companies for the data they hold on you at any time.
They have to provide this, and depending on the situation, you can exercise one of the other rights if
you wish.
• Individuals have the right to access their personal data
• This is commonly referred to as subject access
• Individuals can make a subject access request verbally or in writing
• You have one month to respond to a request
• You cannot charge a fee to deal with a request in most circumstances (unless unreasonable or
excessive).
Right of access
You can request access for the data held on you at any time
14. You have a right to ask for incorrect data to be corrected in a timely manner.
• The GDPR includes a right for individuals to have inaccurate personal data rectified, or
completed if it is incomplete
• Businesses have one calendar month to respond to a request
• This right is closely linked to the controller’s obligations under the accuracy principle of the
GDPR.
Right to rectification
If you discover any data to be wrong, you have the right to ask for this to be amended
15. Under GDPR legislation, you can choose for companies to erase your personal data from their
records. This isn’t absolute in every situation because of potential legal reasons for processing.
• The GDPR introduces a right for individuals to have personal data erased
• The right to erasure is also known as ‘the right to be forgotten’
• You have one month to respond to a request
• The right is not absolute and only applies in certain circumstances
• This right is not the only way in which the GDPR places an obligation on you to consider whether to
delete personal data.
Right to erasure
On your request, any company has to delete data they hold, unless held for a legitimate purpose
16. The restriction of what data is being processed gives you more power and control over your data,
ensuring it’s only processed in line with your wishes.
• Individuals have the right to request the restriction or suppression of their personal data
• When processing is restricted, you are permitted to store the personal data, but not use it
• You have one calendar month to respond to a request
• This right has close links to the right to rectification and the right to object.
Right to restrict processing
You can pause the processing of personal data for whatever reason
17. Data portability gives you an opportunity to request data in an easy-to-read format, before transferring
it elsewhere – even to rival companies. Businesses have to comply, even if they don’t necessarily want
to.
• The right to data portability allows individuals to obtain and reuse their personal data for their own
purposes across different services
• It allows them to move, copy or transfer personal data easily from one IT environment to another in
a safe and secure way, without affecting its usability
• Doing this enables individuals to take advantage of applications and services that can use this data
to find them a better deal or help them understand their spending habits
• The right only applies to information an individual has provided to a controller
Right to data portability
You have the right to access your data in an easy-to-read format, to take elsewhere
18. You can object to any of your data being processed for a period of time, or even indefinitely. This is
linked to other rights and again, gives you ultimate control.
• The GDPR gives individuals the right to object to the processing of their personal data in certain
circumstances
• Individuals have an absolute right to stop their data being used for direct marketing
• In other cases where the right to object applies you may be able to continue processing if you can
show that you have a compelling reason for doing so
• You must tell individuals about their right to object
• You have one calendar month to respond to an objection.
Right to data object
You can object to any part of your data being processed by any company
19. If you apply for a loan of credit card, for example, an automatic decision could be made based on
your credit history and the records a company has on you. This right gives you the chance to ask
for human intervention.
The GDPR has provisions on:
A. automated individual decision-making (making a decision solely by automated means without
any human involvement)
B. profiling (automated processing of personal data to evaluate certain things about an
individual). Profiling can be part of an automated decision-making process.
• The GDPR applies to all automated individual decision-making
• Companies must identify whether any processing falls under this and, if so, make sure
individuals are given information about the processing, with simple ways for them to request
human intervention or challenge a decision
Rights related to automated decision making
Automated decision making helps consumers get quicker answers without human intervention
21. Although simple, providing this agenda brings everyone onto the same page – with no
confusion
For the team...
• Implemented a right of data access
• Sent out privacy notice update to the team
• Sent out employee consent forms
• Reviewed data breach policies and processes
• Amended employee contracts to include GDPR regulations
• Completed GDPR forms for HR and employee data - giving information on what personal data we
collect, who has access to it, and how it's stored / used
• Extra protection: Two-step verification, anti-virus checks, password updates
• Presented GDPR PowerPoint to all employees to ensure they're aware of GDPR, what they
should / shouldn't be doing, and how to react to a breach of date
We’ve asked for your permission to process data in accordance with regulations
22. We’ve ensured our third party processes comply with regulations and agree to our terms
Website & third parties...
• Data Protection Policy
• Website tick box
• Remove unsuccessful applicant data every 12 months.
• Ensure unsuccessful applicants are reminded that their data will be stored for this period.
• Sent data agreements to existing processors of data
23. Business data isn’t personal – but names, email addresses, IP addresses etc. are
For clients...
• Updated new supplier contracts to include GDPR regulations.
• Sent out supplier agreements to ensure third parties are complying with GDPR
regulations
• Updated client contracts to include new data protection clause
• Implemented a client data deletion process
• Implemented a right of data access
24. We’ve taken a lot of steps to ensure not only compliance, but top level data security
General compliance...
• Registered with the ICO as a Data Controller & Processor
• Reviewed outreach systems and processes to ensure compliance
• Installed a cookie information opt in
• Upgrading to a higher security router
• Will be carrying out data audits on an annual basis to ensure processes and terms are
compliant
• Taken out cyber security business Insurance
• Have a privacy policy and security policy in place for the website
• Appointed a GDPR Officer to be responsible for compliance.
• Created an email address for data requests to be lodged
26. If you want access to your personal data, or a client requests it from us, or you want to exercise one of
the other principles under GDPR:
• Speak to our Data Protection Officer or email dpo@reddico.co.uk
• Complete the online form: https://reddico.co.uk/data-preferences/
You can exercise any of the GDPR principles at any time
Exercising a principle
27. Personal data breaches can take many forms and include, but are not limited to:
• Access by an unauthorised third party
• Deliberate or accidental action (or inaction) by a controller or processor
• Sending personal data to an incorrect recipient
• Computing devices containing personal data being lost or stolen
• Alteration of personal data without permission
• Loss of availability of personal data.
A data breach is any loss or unauthorised access of personal data. Remain vigilant
What is a data breach?
28. The GDPR introduces a duty on all organisations to report certain types of personal data breach to the
relevant supervisory authority.
• Reddico must do this within 72 hours of becoming aware of the breach, where feasible
• If the breach is likely to result in a high risk of adversely affecting individuals’ rights and freedoms,
we must also inform those individuals without undue delay
• Reddico must also keep a record of any personal data breaches, regardless of whether we are
required to notify
If someone in the team becomes aware of a personal data breach they MUST report this immediately
to our Data Protection Officer or email dpo@reddico.co.uk
A data breach must be reported within 72 hours
Reporting a data breach
30. • Know GDPR: Be aware of what GDPR is and what constitutes personal data. Ensure strict care when
handling sensitive data
• It’s real: Non-compliance can be very costly – up to €20m!
• GDPR principles: You, or Reddico’s clients, have the right to exercise any of the 8 principles
• Client requests: Direct clients to our DPO, dpo@reddico.co.uk or the online form
• Data breaches: Report any data breach immediately to the DPO. Time is of the essence
• Data sensitivity: Don’t pass data to third parties without having contracts in place. Don’t send mass
emails
Reddico is compliant – but everyone needs to respect data processing and its importance
Key Takeaways
32. For accuracy purposes, some of the information used in this presentation has been taken from the
International Commissioner’s Office’s (ICO) guidelines on GDPR regulations: https://ico.org.uk/
For expert advice on data protection and how to ensure your business complies with the law changes,
contact the ICO directly.
The ICO will also be able to provide tailored help and advice to your business.
Contact the ICO for help and advice on meeting GDPR regulations for your business
Sources