This document discusses the General Data Protection Regulation (GDPR) and what North American companies need to know about complying with it. It provides an overview of the GDPR, its impact on companies outside the EU, and who is responsible for protecting personal data under the regulation. It also discusses technology considerations for GDPR compliance, such as knowing where personal data is located, having the right security controls, and being able to detect and respond to breaches. The document concludes by offering advice on how companies can get started with GDPR compliance efforts by focusing first on their data and putting security basics in place.
Symantec Webinar Part 4 of 6 GDPR Compliance, What NAM Organizations Need to Know
1. The General Data Protection Regulation:
What North American Companies Need to Know
Ken Durbin, CISSP
Sr. Strategist of Government Affairs
and Cyber Security, Symantec
2. Legal Disclaimer
The materials contained in this presentation are not intended to provide, and
do not constitute or comprise, legal advice on any particular matter and are
provided for general information purposes only.
You should not act or refrain from acting on the basis of any material
contained in this presentation, without seeking appropriate legal or other
professional advice.
3. Agenda
GDPR Overview + North America Impact
Who’s Who in the Protection of Personal Data
Technology Considerations for GDPR
Risk Scenarios
1
2
3
4
How to Get Started5
28. The General Data Protection Regulation:
What North American Companies Need to Know
Ken Durbin, CISSP
Sr. Strategist of Government Affairs
and Cyber Security, Symantec
Thank you!!