This document discusses key aspects of the EU's General Data Protection Regulation (GDPR) in 16 pages. It covers definitions of personal and sensitive personal data; individual rights like access, rectification, and erasure; pseudonymization; data management considerations; and codes of conduct and certification. The document aims to explain major provisions of the new privacy law and implications for companies' data practices.
What is the new data protection regulation GDPR and why should you care? Jesp...Exove
What is the new data protection regulation GDPR and why should you care? by Jesper Nevalainen, Bird & Bird
Exove and Bird & Bird seminar on Nov 23rd 2016: "GDPR - Practical Effects on Digital Business - juridical, technical, and customer point of view"
This is a slightly modified version of a presentation that I gave to fellow lawyers last week. It explains what GDPR is, the policy of data protection and the evolution of data protection legislation from the OECD Guidelines and Council of Europe Convention to the GDPR. It explores the regulation focusing on the data protection principles and, in particular, the lawfulness requirement and the validity of consent. The presentation mentions the Law enforcement data protection directive, the Data Protection Bill and the arrangements post Brexit. Finally, it considers the preparations recommended by the Information Commissioner for small busiesses
GDPR – what does it mean for charities and what you need to consider - Iain P...m-hance
The General Data Protection Regulation (GDPR) is a regulation by which the European Parliament, The European Council and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU). EU members have until May 2018 to ensure that they are fully compliant with the new regulation. Regardless of Brexit, organisations in the UK that collect and use personal data will need to comply. In this slide deck Iain gives an overview of GDPR, what the requirements mean for charities and what charities need to consider to be compliant
New General Data Protection Regulation (Agnes Andersson Hammarstrand)Nordic APIs
This is a session given by Agnes Andersson Hammarstrand at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.
Description:
This spring a new EU General Data Protection Regulation was adopted to replace the current personal data legislations. Companies that break the rules risk fines of up to 4 % of the worldwide group turnover. The new regulations entail a large number of news that all companies should be informed about. Among other things, IT systems need to be adapted to privacy under the principles of privacy by design.
Agnes Hammarstrand, partner at Delphi Law firm and expert within IT and online provides an introduction to the new regulations and what you need to do.
What is the new data protection regulation GDPR and why should you care? Jesp...Exove
What is the new data protection regulation GDPR and why should you care? by Jesper Nevalainen, Bird & Bird
Exove and Bird & Bird seminar on Nov 23rd 2016: "GDPR - Practical Effects on Digital Business - juridical, technical, and customer point of view"
This is a slightly modified version of a presentation that I gave to fellow lawyers last week. It explains what GDPR is, the policy of data protection and the evolution of data protection legislation from the OECD Guidelines and Council of Europe Convention to the GDPR. It explores the regulation focusing on the data protection principles and, in particular, the lawfulness requirement and the validity of consent. The presentation mentions the Law enforcement data protection directive, the Data Protection Bill and the arrangements post Brexit. Finally, it considers the preparations recommended by the Information Commissioner for small busiesses
GDPR – what does it mean for charities and what you need to consider - Iain P...m-hance
The General Data Protection Regulation (GDPR) is a regulation by which the European Parliament, The European Council and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU). EU members have until May 2018 to ensure that they are fully compliant with the new regulation. Regardless of Brexit, organisations in the UK that collect and use personal data will need to comply. In this slide deck Iain gives an overview of GDPR, what the requirements mean for charities and what charities need to consider to be compliant
New General Data Protection Regulation (Agnes Andersson Hammarstrand)Nordic APIs
This is a session given by Agnes Andersson Hammarstrand at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.
Description:
This spring a new EU General Data Protection Regulation was adopted to replace the current personal data legislations. Companies that break the rules risk fines of up to 4 % of the worldwide group turnover. The new regulations entail a large number of news that all companies should be informed about. Among other things, IT systems need to be adapted to privacy under the principles of privacy by design.
Agnes Hammarstrand, partner at Delphi Law firm and expert within IT and online provides an introduction to the new regulations and what you need to do.
This webinar gives an overview of:
- The regulation landscape
- Territorial scope
- Remedies, liabilities and penalties
- Privacy notices
- The right of data subject
- Consent
- Data processing
- Profiling or "automated individual decision-making"
- International marketing and data transfers
A recording of this webinar is available here:
https://www.youtube.com/watch?v=Vr_CT24v2iI
GDPR and evolving international privacy regulationsUlf Mattsson
Convergence of data privacy principles, standards and regulations
General Data Protection Regulation (GDPR)
GDPR and California Consumer Privacy Act (CCPA)
What role does technologies play in compliance
Use Cases
Domain management and brand protection in the era of the EU's GDPRBartLieben
Overview on how the General Data Protection Regulation clashes with ICANN's obligations imposed upon registries and registrars to have a publicly accessible WHOIS
Data Protection Seminar 2_Marketing & GDPR_ISOLAS LLP_26-07-17Michael Adamberry
This presentation outlines the issue of Direct Marketing, including the use of cookies, the opt-out register and the e-Privacy Directive (and Regulation). The focus is around the Gibraltar Data Protection Act 2004, and how this will change under the General Data Protection Regulation ("GDPR") as of 25th May 2018 and the upcoming e-Privacy Regulation
ISOLAS is pleased to offer assistance in conducting data audits and ensuring you are compliant before the deadline - the clock is ticking!
If the UK leaves the EU and EEA, will it be "adequate" for data transfers from the EU? Evidemnce suggests not, especially following the passing of the IP Act and the Tele2/Watson CJEU decision.
This webinar gives an overview of:
- The regulation landscape
- Territorial scope
- Remedies, liabilities and penalties
- Privacy notices
- The right of data subject
- Consent
- Data processing
- Profiling or "automated individual decision-making"
- International marketing and data transfers
A recording of this webinar is available here:
https://www.youtube.com/watch?v=Vr_CT24v2iI
GDPR and evolving international privacy regulationsUlf Mattsson
Convergence of data privacy principles, standards and regulations
General Data Protection Regulation (GDPR)
GDPR and California Consumer Privacy Act (CCPA)
What role does technologies play in compliance
Use Cases
Domain management and brand protection in the era of the EU's GDPRBartLieben
Overview on how the General Data Protection Regulation clashes with ICANN's obligations imposed upon registries and registrars to have a publicly accessible WHOIS
Data Protection Seminar 2_Marketing & GDPR_ISOLAS LLP_26-07-17Michael Adamberry
This presentation outlines the issue of Direct Marketing, including the use of cookies, the opt-out register and the e-Privacy Directive (and Regulation). The focus is around the Gibraltar Data Protection Act 2004, and how this will change under the General Data Protection Regulation ("GDPR") as of 25th May 2018 and the upcoming e-Privacy Regulation
ISOLAS is pleased to offer assistance in conducting data audits and ensuring you are compliant before the deadline - the clock is ticking!
If the UK leaves the EU and EEA, will it be "adequate" for data transfers from the EU? Evidemnce suggests not, especially following the passing of the IP Act and the Tele2/Watson CJEU decision.
Slides from my CIO Summit talk on the impact of EU General Data Protection Regulations.
Quick take away: GDPR is not a technology challenge as such, there is no single piece of software to meet its requirements. It is more about people and your organisations processes.
IT alone will not successfully achieve compliance. The regulation promotes good information management. If the opportunity is take it is a great opportunity to engage with different parts of business such as marketing.
Webianr: GDPR: How to build a data protection frameworkLeigh Hill
Are you ready for the General Data Protection Regulation (GDPR)?
With the GDPR deadline less than two years away, the pressure is on for organizations to understand how they will comply. Proper data management is part of the answer, but tying these efforts into a data governance framework to manage data protection is key to meeting – and sustaining – GDPR compliance.
In this webinar we will discuss:
-What GDPR is and the impact it has on data management
-Why a sustainable framework is key to getting GDPR right
-The five steps to establishing a data protection framework
-How to ensure ongoing compliance
Developer view on new EU privacy legislation (GDPR)Exove
Kalle Varisvirta's slides about developer view on the EU privacy legislation (GDPR) from DrupalCamp Baltics 2016 in Riga.
The key items of the presentation are:
What are the requirements for the processors (Drupal maintainers in this view)?
What technical challenges complying with the law might bring to a Drupal developer?
What are the open questions in the legislation from a technical point of view right now?
Digital Personal Data Protection (DPDP) Practical Approach For CISOsPriyanka Aash
Key Discussion Pointers:
1. Introduction to Data Privacy
- What is data privacy
- Privacy laws around the globe
- DPDPA Journey
2. Understanding the New Indian DPDPA 2023
- Objectives
- Principles of DPDPA
- Applicability
- Rights & Duties of Individuals
- Principals
- Legal implications/penalties
3. A practical approach to DPDPA compliance
- Personal data Inventory
- DPIA
- Risk treatment
The Case of Trade Secrets and Database Sui Generis Right in Marketing Operations, and the Ownership of Raw Data in Big Data Analysis
Paper presented at the Max Planck Institute's conference "Personal data in competition, consumer protection and IP law Towards a holistic approach?", held on 21 October 2016
How to Turn GDPR into a Competitive AdvantageBeamery
While there are plenty of documents that explain what GDPR is, there is almost no information on how to handle the process in practice. GDPR is going to fundamentally change everything about your recruiting process. Fail to adhere to the new legislation, and your team could be fined up to €20 million or 4% of annual global turnover, whichever is higher. This is not a trifling matter.
EU General Data Protection Regulation - Update 2017Cliff Ashcroft
This free Lasa webinar looks at why data protection is important in a digital world, and what practical things charities and civil society organisations can do to prepare for when the EU General Data Protection Regulations come into force in May 2018.
It is vital charities use the next 12 months to understand their new responsibilities and put the required processes in place.
Our webinar gives you the opportunity to ensure you are prepared for what’s to come by putting your #GDPR questions to our data protection expert and published author, Paul Ticher.
Lasa does lots more charity tech help and advice - find out more at: Twitter: @lasaict
Acknowledgements:
Lasa actively promotes and supports the Way Ahead – Civil Society at the Heart of London. See www.citybridgetrust.org.uk/publications/way-ahead/
This webinar is supported by the City of London Corporation's charity, City Bridge Trust. www.citybridgetrust.org.uk
Keep Calm and Comply: 3 Keys to GDPR SuccessSirius
Recent surveys benchmarking the status of U.S. companies' efforts to meet the May 25 deadline for the EU Global Data Protection Regulation (GDPR) have revealed a startling lack of preparedness.
Companies not yet in compliance are likely to violate the directive if they don’t take immediate action, and fines can amount to 2-4 percent of a company’s annual gross revenue. Do you have the resources and information you need to comply?
View to learn:
--What GDPR means to your business
--Short, medium, and long-term actions you can take to protect regulated data and achieve compliance
--How you can streamline incident response and third-party risk management capabilities
--How to streamline the resources and technology needed to keep up with the evolving regulatory landscape
Don't fall behind on these compliance regulations. Take the steps needed to protect the data you collect.
The European General Data Protection Law (also known as EU-DSGVO) becomes effective as of May 25 and is of VITAL importance.
In the easiest sense it’s important as it involves fines of up to 2 million Euros or 4% of worldwide turnover (whatever scares you more). Fines not only come into play upon actual data loss, but already if data *could* get lost and for a variety of other reasons. This session covers the most important GDPR topics, both for companies in the European Union and for companies doing business with European companies or citizens. We will also be looking at whether it makes a difference if you are a one person shop or multinational business.
GDPR Is Coming – Are Search Marketers Ready?MediaPost
The EU’s General Data Protection Regulation (GDPR) is the most significant change to consumer privacy laws in decades and the enforcement date is approximately 1 month away. The standards for data collection and use in the EU will significantly differ from those in the United States. This session will breakdown the differences and discuss methods for compliance going forward.
PRESENTER
Gary Kibel, Partner, Davis & Gilbert LLP @GaryKibel
This presentation outlines the General Data Protection Regulation ("GDPR") and the key changes that will be brought about as of 25th May 2018 - ISOLAS is pleased to offer assistance in conducting data audits and ensuring you are compliant before the deadline - the clock is ticking!
Key Issues on the new General Data Protection RegulationOlivier Vandeputte
The General Data Protection Regulation is one of the most wide ranging pieces of legislation passed by the EU in recent years. The GDPR comes into effect on 25 May 2018. The new framework is ambitious, complex and strict. It presents any organization that has so far failed to begin preparations with a steep challenge to become GDPR compliant in time.
We have summarized the key issues in our GDPR brochure.
General Data Protection Regulation comes into force across the EU on May 25, 2018. Investment fund complexes, distributors, fund administrators and depositaries with global reach will need to consider their controls and processes as they relate to personal data.
Our experts offer invaluable insight on:
- Main features of the regulation
- Obligations for the fund industry
- Practical guidance on “operationalizing” GDPR principles
Tata Group Dials Taiwan for Its Chipmaking Ambition in Gujarat’s DholeraAvirahi City Dholera
The Tata Group, a titan of Indian industry, is making waves with its advanced talks with Taiwanese chipmakers Powerchip Semiconductor Manufacturing Corporation (PSMC) and UMC Group. The goal? Establishing a cutting-edge semiconductor fabrication unit (fab) in Dholera, Gujarat. This isn’t just any project; it’s a potential game changer for India’s chipmaking aspirations and a boon for investors seeking promising residential projects in dholera sir.
Visit : https://www.avirahi.com/blog/tata-group-dials-taiwan-for-its-chipmaking-ambition-in-gujarats-dholera/
Cracking the Workplace Discipline Code Main.pptxWorkforce Group
Cultivating and maintaining discipline within teams is a critical differentiator for successful organisations.
Forward-thinking leaders and business managers understand the impact that discipline has on organisational success. A disciplined workforce operates with clarity, focus, and a shared understanding of expectations, ultimately driving better results, optimising productivity, and facilitating seamless collaboration.
Although discipline is not a one-size-fits-all approach, it can help create a work environment that encourages personal growth and accountability rather than solely relying on punitive measures.
In this deck, you will learn the significance of workplace discipline for organisational success. You’ll also learn
• Four (4) workplace discipline methods you should consider
• The best and most practical approach to implementing workplace discipline.
• Three (3) key tips to maintain a disciplined workplace.
The world of search engine optimization (SEO) is buzzing with discussions after Google confirmed that around 2,500 leaked internal documents related to its Search feature are indeed authentic. The revelation has sparked significant concerns within the SEO community. The leaked documents were initially reported by SEO experts Rand Fishkin and Mike King, igniting widespread analysis and discourse. For More Info:- https://news.arihantwebtech.com/search-disrupted-googles-leaked-documents-rock-the-seo-world/
Implicitly or explicitly all competing businesses employ a strategy to select a mix
of marketing resources. Formulating such competitive strategies fundamentally
involves recognizing relationships between elements of the marketing mix (e.g.,
price and product quality), as well as assessing competitive and market conditions
(i.e., industry structure in the language of economics).
Affordable Stationery Printing Services in Jaipur | Navpack n PrintNavpack & Print
Looking for professional printing services in Jaipur? Navpack n Print offers high-quality and affordable stationery printing for all your business needs. Stand out with custom stationery designs and fast turnaround times. Contact us today for a quote!
Attending a job Interview for B1 and B2 Englsih learnersErika906060
It is a sample of an interview for a business english class for pre-intermediate and intermediate english students with emphasis on the speking ability.
Personal Brand Statement:
As an Army veteran dedicated to lifelong learning, I bring a disciplined, strategic mindset to my pursuits. I am constantly expanding my knowledge to innovate and lead effectively. My journey is driven by a commitment to excellence, and to make a meaningful impact in the world.
Business Valuation Principles for EntrepreneursBen Wann
This insightful presentation is designed to equip entrepreneurs with the essential knowledge and tools needed to accurately value their businesses. Understanding business valuation is crucial for making informed decisions, whether you're seeking investment, planning to sell, or simply want to gauge your company's worth.
Enterprise Excellence is Inclusive Excellence.pdfKaiNexus
Enterprise excellence and inclusive excellence are closely linked, and real-world challenges have shown that both are essential to the success of any organization. To achieve enterprise excellence, organizations must focus on improving their operations and processes while creating an inclusive environment that engages everyone. In this interactive session, the facilitator will highlight commonly established business practices and how they limit our ability to engage everyone every day. More importantly, though, participants will likely gain increased awareness of what we can do differently to maximize enterprise excellence through deliberate inclusion.
What is Enterprise Excellence?
Enterprise Excellence is a holistic approach that's aimed at achieving world-class performance across all aspects of the organization.
What might I learn?
A way to engage all in creating Inclusive Excellence. Lessons from the US military and their parallels to the story of Harry Potter. How belt systems and CI teams can destroy inclusive practices. How leadership language invites people to the party. There are three things leaders can do to engage everyone every day: maximizing psychological safety to create environments where folks learn, contribute, and challenge the status quo.
Who might benefit? Anyone and everyone leading folks from the shop floor to top floor.
Dr. William Harvey is a seasoned Operations Leader with extensive experience in chemical processing, manufacturing, and operations management. At Michelman, he currently oversees multiple sites, leading teams in strategic planning and coaching/practicing continuous improvement. William is set to start his eighth year of teaching at the University of Cincinnati where he teaches marketing, finance, and management. William holds various certifications in change management, quality, leadership, operational excellence, team building, and DiSC, among others.
Premium MEAN Stack Development Solutions for Modern BusinessesSynapseIndia
Stay ahead of the curve with our premium MEAN Stack Development Solutions. Our expert developers utilize MongoDB, Express.js, AngularJS, and Node.js to create modern and responsive web applications. Trust us for cutting-edge solutions that drive your business growth and success.
Know more: https://www.synapseindia.com/technology/mean-stack-development-company.html
Digital Transformation and IT Strategy Toolkit and TemplatesAurelien Domont, MBA
This Digital Transformation and IT Strategy Toolkit was created by ex-McKinsey, Deloitte and BCG Management Consultants, after more than 5,000 hours of work. It is considered the world's best & most comprehensive Digital Transformation and IT Strategy Toolkit. It includes all the Frameworks, Best Practices & Templates required to successfully undertake the Digital Transformation of your organization and define a robust IT Strategy.
Editable Toolkit to help you reuse our content: 700 Powerpoint slides | 35 Excel sheets | 84 minutes of Video training
This PowerPoint presentation is only a small preview of our Toolkits. For more details, visit www.domontconsulting.com
Digital Transformation and IT Strategy Toolkit and Templates
The Privacy Advantage 2016 - Ruth Boardman
1. From red-tape to rocket
fuel
Ruth Boardman, Co-head International
Data Privacy Practice
April 2016
2. Page 2
4 areas for discussion
• Personal data or not personal data…
• Individual rights
• Data management considerations
• Codes of conduct and certification
4. Page 4
GDPR attempts to 'move-on' the debate about click-
stream data
Personal data:
Identified or identifiable, living person
Location data, online identifiers such as
device IDs, cookie IDs, IP addresses,
RFID tags
Special categories:
Racial, ethnic origin, political
opinions, religious or
philosophical belief, trade
union membership, sexual
orientation, genetic data,
biometric data used uniquely to
identify
Criminal
convictions
and
offences
5. A new concept of pseudonymisation is
introduced
PERSONAL PSEUDONYMISATION ANONYMOUS
Identifiable; all means
reasonably likely to be
used,…either by the
controller or by any
other person to identify
Data can no longer be
attributed to data subject;
additional information (to
identify) is kept separate
Information rendered
anonymous, such that
the data subject is no
longer identifiable
Cost
State of the art
Page 5
6. Pseudonymisation is not a free pass, but it
can help meet multiple elements of GDPR,
Page 6
Hold
separate
Data protection by
design and by default
(Art. 25)
Factor in purpose
limitation (Art. 6(4))
Security (Art. 32)
Threshold condition for
archival, scientific or
historical research or
statistical purposes
processing (Art. 89)
8. Access and Rectification
Page 8
Right to information
• Confirmation
whether data are
being processed
• Associated
information about
the personal data
processing
Right to the data
• A copy of the data
undergoing
processing
• Free of charge
(initially)
• Electronic requests
= data in a
commonly used
electronic form
(portability)
Rectification
• Rectify inaccurate
personal data
• Supplementary
statement if data is
incomplete
9. Portability (Art.20)
Page 9
Portability
•Automated data; provided
by the data subject;
processing based on
consent or contract
•Structured and machine
readable
•Transmitted direct to
another controller
Access
•All data
•Commonly used,
electronic format (if
request is made
electronically)
10. Google Spain (3 May 2014)
Page 10
• ‘[These articles] are to be interpreted as meaning that … the operator of a
search engine is obliged to remove from the list of results displayed
following a search made on the basis of a person's name links to the web pages,
published by third parties and containing information relating to that person,
also in a case where that name or information is not erased
beforehand or simultaneously from those webpages, and even, as
the case may be, when its publication in itself on those pages is
lawful…’
• ‘ … [the controller should carry out this assessment] … at this point in time,
… without it being necessary … to find .. [that] that list causes prejudice to
the data subject….. [the interests of the data subject] override, as a rule, not
only the economic interest of the operator of the search engine but also the
interest of the general public in having access to that information upon a search
relating to the data subject's name… that would not be the case if it appeared,
for particular reasons, such as the rule played by the data subject in public life,
that the interference with his fundamental rights is justified by the
preponderant interest of the general public in having, on account of its
inclusion in the list of results, access to the information in question.’
11. How do you erase data and ensure others
know about the erasure?
Page 11
Right to erasure
for unlawful
processing
(Art. 17)
• No longer necessary;
• Consent withdrawn; children's online data; objection to
processing; law requires erasure
Third party
follow up
• Communicate erasure to each recipient to whom disclosed;
• Where published, take reasonable steps to inform controllers
processing the data
• Reasonable steps, taking account of available technology and
cost of implementation
14. Embracing privacy by design: may be a
competitive advantage for start-ups
use t.o.m.s designed to implement data protection compliance
use t.o.m.s to ensure that , by default, only necessary data
are collected, stored and accessed (especially 'public'
privacy settings)
Records of processing; ongoing review of design and default
measures
Page 14
By
design
(A.25)
By default
(A.25(2))
Managing
data (A.30
records)
16. Page 16
GDPR creates incentives for more creative
compliance
Codes of
conduct
Specifies the
application of the
GDPR (for example,
an industry approach
to data protection
notices
Needs bodies to
promulgate and
enforce
Certification
Demonstrates
compliance – to the
public, to
supervisory
authorities, to other
organisations
Needs certification
agents
18. ruth.boardman@twobirds.com
Bird & Bird is an international legal practice comprising Bird & Bird LLP and its affiliated and associated businesses.
Bird & Bird LLP is a limited liability partnership, registered in England and Wales with registered number OC340318 and is authorised and regulated by the
Solicitors Regulation Authority. Its registered office and principal place of business is at 15 Fetter Lane, London EC4A 1JP. A list of members of Bird & Bird LLP and
of any non-members who are designated as partners, and of their respective professional qualifications, is open to inspection at that address.
twobirds.com
Thank you
