SlideShare uma empresa Scribd logo

GDPR Jan 2018 1

Transferir como PPT, PDF
Jason Chapman
Jason Chapman

The General Data Protection Regulation (GDPR) comes into effect in May 2018 and will apply to all organizations that process personal data. It requires organizations to be accountable, transparent, and protect individuals' rights regarding their personal data. Organizations must have a lawful basis for processing personal data, obtain consent for marketing communications, and provide privacy notices describing how data will be handled. The GDPR also imposes requirements for security policies, data protection officers, impact assessments, and penalties for non-compliance.

Negócios
1 de 20
CHILTERN BUSINESS CONNECTIONS GOOD MORNING
ARE YOU READY FOR GENERAL DATA PROTECTION REGULATIONS (GDPR)?
GENERAL DATA PROTECTION REGULATIONS (GDPR) GDPR comes into effect May 2018 Initially EU ‘driven’ – set to become a worldwide standard - builds upon existing data protection rules Information Commissioner’s Office (ICO) is relevant U.K. ‘body’
GENERAL DATA PROTECTION REGULATIONS (GDPR) Prompted by the growth in data processing Evolution rather than revolution of the rules Not a new Millennium Bug Aim to achieve privacy by design and default
GENERAL DATA PROTECTION REGULATIONS (GDPR) Requires personal data (PD) to be respected - Accountability - Transparency - Individuals’ rights An obligation on all businesses/organisations Severe penalties for non- compliance
GENERAL DATA PROTECTION REGULATIONS (GDPR) Important in terms of client reassurance An opportunity to focus on client care Positive use of GDPR
GENERAL DATA PROTECTION REGULATIONS (GDPR) Organisations are required to have a legal basis to process 1. Contract 2. Consent 3. Vital Interest 4. Public Task 5. Comply with legal obligations 6. Legitimate Interests
GENERAL DATA PROTECTION REGULATIONS (GDPR) Segmentation appropriate i.e. - Contract basis for preparing wills/LPAs etc. - Consent basis for marketing communication A ‘granular‘ approach required - Consent cannot be ‘bundled’ Consent must be ‘active’
GENERAL DATA PROTECTION REGULATIONS (GDPR) Privacy statements to include: - Legal basis for processing data - What is to happen to the data - What a client does if there’s a problem On website and in terms of trading
GENERAL DATA PROTECTION REGULATIONS (GDPR) Imposes general obligation to implement technical and organisational measures to show that consideration has been given to data protection when processing.
GENERAL DATA PROTECTION REGULATIONS (GDPR) IOC checklist: Privacy Impact Assessment (PIA) Audit and log what PD held and how it flows Document who PD comes from - what you do with it - with whom you share it
GENERAL DATA PROTECTION REGULATIONS (GDPR) Identify and document lawful basis for processing PD Review and record how consent is obtained and recorded Establish means to record/manage ongoing consent
GENERAL DATA PROTECTION REGULATIONS (GDPR) Maintain registration with ICO Ensure privacy notices readily available Concise - easy to understand - identifies you – confirms how PD to be handled - with whom shared – how long to be retained
GENERAL DATA PROTECTION REGULATIONS (GDPR) Establish right for individuals to access PD Establish process to keep PD accurate and up to date (relevant for wills/LPAs?) Provide for effective destruction of PD no longer required.
GENERAL DATA PROTECTION REGULATIONS (GDPR) Establish procedure to respond to clients’ requests to restrict processing Allow individuals to copy/move their PD Reference to automated decision making (NA)
GENERAL DATA PROTECTION REGULATIONS (GDPR) Ensure data protection policy in place and review compliance periodically Provide data protection training for all staff Written contract with appropriately vetted ‘data processors’
GENERAL DATA PROTECTION REGULATIONS (GDPR) Clear security policies and procedures – regularly reviewed Ensure data protection is integrated into all activities Understand when and how Data Protection Impact Assessments (DPIAs) should be used.
GENERAL DATA PROTECTION REGULATIONS (GDPR) Nominate Data Protection Officer (DPO) Promote positive culture of data protection Develop and maintain an information security policy
GENERAL DATA PROTECTION REGULATIONS (GDPR) Special rules for any information transferred beyond the EEA Establish procedure to deal with identifying, reporting, managing and resolving PD breaches
GENERAL DATA PROTECTION REGULATIONS (GDPR) That’s all there is to it !

Recomendados

CBC GDPR April 2018
CBC GDPR April 2018CBC GDPR April 2018
CBC GDPR April 2018
Jason Chapman
 
EU GDPR - 12 Steps To Compliance
EU GDPR - 12 Steps To Compliance EU GDPR - 12 Steps To Compliance
EU GDPR - 12 Steps To Compliance
Tom Haynes
 
#Privacy Matters - Come il regolamento privacy europeo da un problema può div...
#Privacy Matters - Come il regolamento privacy europeo da un problema può div...#Privacy Matters - Come il regolamento privacy europeo da un problema può div...
#Privacy Matters - Come il regolamento privacy europeo da un problema può div...
Giulio Coraggio
 
How privacy by design can be the key of your success at the time of the digit...
How privacy by design can be the key of your success at the time of the digit...How privacy by design can be the key of your success at the time of the digit...
How privacy by design can be the key of your success at the time of the digit...
Giulio Coraggio
 
GDPR - 5 Months On!
GDPR - 5 Months On!GDPR - 5 Months On!
GDPR - 5 Months On!
BrightPay Payroll and Auto Enrolment Software
 
Come cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeoCome cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeo
Giulio Coraggio
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
Tim Hyman LLB
 
Wearable technologies, privacy and intellectual property rights
Wearable technologies, privacy and intellectual property rightsWearable technologies, privacy and intellectual property rights
Wearable technologies, privacy and intellectual property rights
Giulio Coraggio
 

Recomendados

CBC GDPR April 2018
CBC GDPR April 2018CBC GDPR April 2018
CBC GDPR April 2018
Jason Chapman
 
EU GDPR - 12 Steps To Compliance
EU GDPR - 12 Steps To Compliance EU GDPR - 12 Steps To Compliance
EU GDPR - 12 Steps To Compliance
Tom Haynes
 
#Privacy Matters - Come il regolamento privacy europeo da un problema può div...
#Privacy Matters - Come il regolamento privacy europeo da un problema può div...#Privacy Matters - Come il regolamento privacy europeo da un problema può div...
#Privacy Matters - Come il regolamento privacy europeo da un problema può div...
Giulio Coraggio
 
How privacy by design can be the key of your success at the time of the digit...
How privacy by design can be the key of your success at the time of the digit...How privacy by design can be the key of your success at the time of the digit...
How privacy by design can be the key of your success at the time of the digit...
Giulio Coraggio
 
GDPR - 5 Months On!
GDPR - 5 Months On!GDPR - 5 Months On!
GDPR - 5 Months On!
BrightPay Payroll and Auto Enrolment Software
 
Come cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeoCome cambia la cybersecurity con il regolamento privacy europeo
Come cambia la cybersecurity con il regolamento privacy europeo
Giulio Coraggio
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
Tim Hyman LLB
 
Wearable technologies, privacy and intellectual property rights
Wearable technologies, privacy and intellectual property rightsWearable technologies, privacy and intellectual property rights
Wearable technologies, privacy and intellectual property rights
Giulio Coraggio
 
Six Steps to Addressing Data Governance under GDPR and US Privacy Shield Regu...
Six Steps to Addressing Data Governance under GDPR and US Privacy Shield Regu...Six Steps to Addressing Data Governance under GDPR and US Privacy Shield Regu...
Six Steps to Addressing Data Governance under GDPR and US Privacy Shield Regu...
DATUM LLC
 
Quick Introduction to the EU GDPR by Sami Zahran
Quick Introduction to the EU GDPR by Sami ZahranQuick Introduction to the EU GDPR by Sami Zahran
Quick Introduction to the EU GDPR by Sami Zahran
Dr. Sami Zahran
 
Wearable technologies and remote patient remote monitoring system
Wearable technologies and remote patient remote monitoring systemWearable technologies and remote patient remote monitoring system
Wearable technologies and remote patient remote monitoring system
Giulio Coraggio
 
VMTN6642E - GDPR Slide Deck
VMTN6642E - GDPR Slide DeckVMTN6642E - GDPR Slide Deck
VMTN6642E - GDPR Slide Deck
Kyle Davies
 
Developer view on new EU privacy legislation (GDPR)
Developer view on new EU privacy legislation (GDPR)Developer view on new EU privacy legislation (GDPR)
Developer view on new EU privacy legislation (GDPR)
Exove
 
What changes for Internet of Things technologies with the EU Data Protection ...
What changes for Internet of Things technologies with the EU Data Protection ...What changes for Internet of Things technologies with the EU Data Protection ...
What changes for Internet of Things technologies with the EU Data Protection ...
Giulio Coraggio
 
Privacy by design
Privacy by designPrivacy by design
Privacy by design
Michelangelo van Dam
 
Csa privacy by design & gdpr austin chambers 11-4-17
Csa privacy by design & gdpr austin chambers 11-4-17Csa privacy by design & gdpr austin chambers 11-4-17
Csa privacy by design & gdpr austin chambers 11-4-17
Trish McGinity, CCSK
 
Training privacy by design
Training privacy by designTraining privacy by design
Training privacy by design
Tommy Vandepitte
 
GDPR The New Data Protection Law coming into effect May 2018. What does it me...
GDPR The New Data Protection Law coming into effect May 2018. What does it me...GDPR The New Data Protection Law coming into effect May 2018. What does it me...
GDPR The New Data Protection Law coming into effect May 2018. What does it me...
eHealth Forum
 
Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...
Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...
Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...
Ardoq
 
GDPR From the Trenches - Real-world examples of how companies are approaching...
GDPR From the Trenches - Real-world examples of how companies are approaching...GDPR From the Trenches - Real-world examples of how companies are approaching...
GDPR From the Trenches - Real-world examples of how companies are approaching...
Ardoq
 
Gdpr action plan
Gdpr action plan Gdpr action plan
Gdpr action plan
Ulf Mattsson
 
An Overview Of GDPR (General Data Protection Regulation)
An Overview Of GDPR (General Data Protection Regulation)An Overview Of GDPR (General Data Protection Regulation)
An Overview Of GDPR (General Data Protection Regulation)
Madhumita Mantri
 
Beginning your General Data Protection Regulation (GDPR) Journey
Beginning your General Data Protection Regulation (GDPR) JourneyBeginning your General Data Protection Regulation (GDPR) Journey
Beginning your General Data Protection Regulation (GDPR) Journey
Microsoft Österreich
 
New opportunities and business risks with evolving privacy regulations
New opportunities and business risks with evolving privacy regulationsNew opportunities and business risks with evolving privacy regulations
New opportunities and business risks with evolving privacy regulations
Ulf Mattsson
 
GDPR and NIS Compliance - How HyTrust Can Help
GDPR and NIS Compliance - How HyTrust Can HelpGDPR and NIS Compliance - How HyTrust Can Help
GDPR and NIS Compliance - How HyTrust Can Help
Jason Lackey
 
GDPR and evolving international privacy regulations
GDPR and evolving international privacy regulationsGDPR and evolving international privacy regulations
GDPR and evolving international privacy regulations
Ulf Mattsson
 
Convince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR complianceConvince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR compliance
Dave James
 
GDPR: Training Materials by Qualsys
GDPR: Training Materials by QualsysGDPR: Training Materials by Qualsys
GDPR: Training Materials by Qualsys
Qualsys Ltd
 
Understanding the EU's new General Data Protection Regulation (GDPR)
Understanding the EU's new General Data Protection Regulation (GDPR)Understanding the EU's new General Data Protection Regulation (GDPR)
Understanding the EU's new General Data Protection Regulation (GDPR)
Acquia
 
My presentation- Ala about privacy and GDPR
My presentation- Ala about privacy and GDPRMy presentation- Ala about privacy and GDPR
My presentation- Ala about privacy and GDPR
zayadeen2003
 

Mais conteúdo relacionado

Mais procurados

Privacy by design
Privacy by designPrivacy by design
Privacy by design
Michelangelo van Dam
 
GDPR From the Trenches - Real-world examples of how companies are approaching...
GDPR From the Trenches - Real-world examples of how companies are approaching...GDPR From the Trenches - Real-world examples of how companies are approaching...
GDPR From the Trenches - Real-world examples of how companies are approaching...
Ardoq
 
New opportunities and business risks with evolving privacy regulations
New opportunities and business risks with evolving privacy regulationsNew opportunities and business risks with evolving privacy regulations
New opportunities and business risks with evolving privacy regulations
Ulf Mattsson
 

Mais procurados (20)

Six Steps to Addressing Data Governance under GDPR and US Privacy Shield Regu...
Six Steps to Addressing Data Governance under GDPR and US Privacy Shield Regu...Six Steps to Addressing Data Governance under GDPR and US Privacy Shield Regu...
Six Steps to Addressing Data Governance under GDPR and US Privacy Shield Regu...
 
Quick Introduction to the EU GDPR by Sami Zahran
Quick Introduction to the EU GDPR by Sami ZahranQuick Introduction to the EU GDPR by Sami Zahran
Quick Introduction to the EU GDPR by Sami Zahran
 
Wearable technologies and remote patient remote monitoring system
Wearable technologies and remote patient remote monitoring systemWearable technologies and remote patient remote monitoring system
Wearable technologies and remote patient remote monitoring system
 
VMTN6642E - GDPR Slide Deck
VMTN6642E - GDPR Slide DeckVMTN6642E - GDPR Slide Deck
VMTN6642E - GDPR Slide Deck
 
Developer view on new EU privacy legislation (GDPR)
Developer view on new EU privacy legislation (GDPR)Developer view on new EU privacy legislation (GDPR)
Developer view on new EU privacy legislation (GDPR)
 
What changes for Internet of Things technologies with the EU Data Protection ...
What changes for Internet of Things technologies with the EU Data Protection ...What changes for Internet of Things technologies with the EU Data Protection ...
What changes for Internet of Things technologies with the EU Data Protection ...
 
Privacy by design
Privacy by designPrivacy by design
Privacy by design
 
Csa privacy by design & gdpr austin chambers 11-4-17
Csa privacy by design & gdpr austin chambers 11-4-17Csa privacy by design & gdpr austin chambers 11-4-17
Csa privacy by design & gdpr austin chambers 11-4-17
 
Training privacy by design
Training privacy by designTraining privacy by design
Training privacy by design
 
GDPR The New Data Protection Law coming into effect May 2018. What does it me...
GDPR The New Data Protection Law coming into effect May 2018. What does it me...GDPR The New Data Protection Law coming into effect May 2018. What does it me...
GDPR The New Data Protection Law coming into effect May 2018. What does it me...
 
Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...
Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...
Ardoq in Edinburgh - Events - Building Resilience in a Post-GDPR World (14-au...
 
GDPR From the Trenches - Real-world examples of how companies are approaching...
GDPR From the Trenches - Real-world examples of how companies are approaching...GDPR From the Trenches - Real-world examples of how companies are approaching...
GDPR From the Trenches - Real-world examples of how companies are approaching...
 
Gdpr action plan
Gdpr action plan Gdpr action plan
Gdpr action plan
 
An Overview Of GDPR (General Data Protection Regulation)
An Overview Of GDPR (General Data Protection Regulation)An Overview Of GDPR (General Data Protection Regulation)
An Overview Of GDPR (General Data Protection Regulation)
 
Beginning your General Data Protection Regulation (GDPR) Journey
Beginning your General Data Protection Regulation (GDPR) JourneyBeginning your General Data Protection Regulation (GDPR) Journey
Beginning your General Data Protection Regulation (GDPR) Journey
 
New opportunities and business risks with evolving privacy regulations
New opportunities and business risks with evolving privacy regulationsNew opportunities and business risks with evolving privacy regulations
New opportunities and business risks with evolving privacy regulations
 
GDPR and NIS Compliance - How HyTrust Can Help
GDPR and NIS Compliance - How HyTrust Can HelpGDPR and NIS Compliance - How HyTrust Can Help
GDPR and NIS Compliance - How HyTrust Can Help
 
GDPR and evolving international privacy regulations
GDPR and evolving international privacy regulationsGDPR and evolving international privacy regulations
GDPR and evolving international privacy regulations
 
Convince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR complianceConvince your board - Ten steps to GDPR compliance
Convince your board - Ten steps to GDPR compliance
 
GDPR: Training Materials by Qualsys
GDPR: Training Materials by QualsysGDPR: Training Materials by Qualsys
GDPR: Training Materials by Qualsys
 

Semelhante a GDPR Jan 2018 1

Understanding the EU's new General Data Protection Regulation (GDPR)
Understanding the EU's new General Data Protection Regulation (GDPR)Understanding the EU's new General Data Protection Regulation (GDPR)
Understanding the EU's new General Data Protection Regulation (GDPR)
Acquia
 
A Brief Overview on GDPR
A Brief Overview on GDPRA Brief Overview on GDPR
A Brief Overview on GDPR
Neha Patel
 
GDPRIBMWhitePaper
GDPRIBMWhitePaperGDPRIBMWhitePaper
GDPRIBMWhitePaper
Jim Wilson
 
GDPR- Get the facts and prepare your business
GDPR- Get the facts and prepare your businessGDPR- Get the facts and prepare your business
GDPR- Get the facts and prepare your business
Mark Baker
 

Semelhante a GDPR Jan 2018 1 (20)

Understanding the EU's new General Data Protection Regulation (GDPR)
Understanding the EU's new General Data Protection Regulation (GDPR)Understanding the EU's new General Data Protection Regulation (GDPR)
Understanding the EU's new General Data Protection Regulation (GDPR)
 
My presentation- Ala about privacy and GDPR
My presentation- Ala about privacy and GDPRMy presentation- Ala about privacy and GDPR
My presentation- Ala about privacy and GDPR
 
General Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readinessGeneral Data Protection Regulation (GDPR) - Moving from confusion to readiness
General Data Protection Regulation (GDPR) - Moving from confusion to readiness
 
Cognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdprCognizant business consulting the impacts of gdpr
Cognizant business consulting the impacts of gdpr
 
GDPR
GDPRGDPR
GDPR
 
The Evolution of Data Privacy: 3 Things You Need To Consider
The Evolution of Data Privacy: 3 Things You Need To ConsiderThe Evolution of Data Privacy: 3 Things You Need To Consider
The Evolution of Data Privacy: 3 Things You Need To Consider
 
The Essential Guide to GDPR
The Essential Guide to GDPRThe Essential Guide to GDPR
The Essential Guide to GDPR
 
Checklist for SMEs for GDPR compliance
Checklist for SMEs for GDPR complianceChecklist for SMEs for GDPR compliance
Checklist for SMEs for GDPR compliance
 
GDPR - The new era of data protection
GDPR - The new era of data protectionGDPR - The new era of data protection
GDPR - The new era of data protection
 
GDPR Benefits and a Technical Overview
GDPR Benefits and a Technical OverviewGDPR Benefits and a Technical Overview
GDPR Benefits and a Technical Overview
 
A Brief Overview on GDPR
A Brief Overview on GDPRA Brief Overview on GDPR
A Brief Overview on GDPR
 
NetSquared London - GDPR for charities
NetSquared London - GDPR for charitiesNetSquared London - GDPR for charities
NetSquared London - GDPR for charities
 
What does GDPR laws mean for Australian businesses
What does GDPR laws mean for Australian businessesWhat does GDPR laws mean for Australian businesses
What does GDPR laws mean for Australian businesses
 
Associates quick guide to gdpr v 1.0
Associates quick guide to gdpr v 1.0Associates quick guide to gdpr v 1.0
Associates quick guide to gdpr v 1.0
 
GDPR: Your Journey to Compliance
GDPR: Your Journey to ComplianceGDPR: Your Journey to Compliance
GDPR: Your Journey to Compliance
 
GDPR: Time to Act
GDPR: Time to ActGDPR: Time to Act
GDPR: Time to Act
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbean
 
GDPRIBMWhitePaper
GDPRIBMWhitePaperGDPRIBMWhitePaper
GDPRIBMWhitePaper
 
General Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian FirmsGeneral Data Protection Regulation (GDPR) Implications for Canadian Firms
General Data Protection Regulation (GDPR) Implications for Canadian Firms
 
GDPR- Get the facts and prepare your business
GDPR- Get the facts and prepare your businessGDPR- Get the facts and prepare your business
GDPR- Get the facts and prepare your business
 

Mais de Jason Chapman

Rare Design Case Study Mead Open Farm
Rare Design Case Study Mead Open FarmRare Design Case Study Mead Open Farm
Rare Design Case Study Mead Open Farm
Jason Chapman
 
Rare Design Case Study Vodafone
Rare Design Case Study VodafoneRare Design Case Study Vodafone
Rare Design Case Study Vodafone
Jason Chapman
 

Mais de Jason Chapman (20)

Maths hub workgroup overview 2018 19
Maths hub workgroup overview 2018 19Maths hub workgroup overview 2018 19
Maths hub workgroup overview 2018 19
 
CBC – Wills and Lasting Powers of Attorney
CBC – Wills and Lasting Powers of AttorneyCBC – Wills and Lasting Powers of Attorney
CBC – Wills and Lasting Powers of Attorney
 
Ppt11 portfolio v2 slide share
Ppt11 portfolio v2 slide sharePpt11 portfolio v2 slide share
Ppt11 portfolio v2 slide share
 
CBC GDPR – 1 month to go
CBC GDPR – 1 month to goCBC GDPR – 1 month to go
CBC GDPR – 1 month to go
 
CBC GDPR The Physics
CBC GDPR The PhysicsCBC GDPR The Physics
CBC GDPR The Physics
 
Referrals
ReferralsReferrals
Referrals
 
CBC Referrals
CBC ReferralsCBC Referrals
CBC Referrals
 
Rare design portfolio presentation 10
Rare design portfolio presentation 10Rare design portfolio presentation 10
Rare design portfolio presentation 10
 
Ppt9 portfolio
Ppt9 portfolioPpt9 portfolio
Ppt9 portfolio
 
CBC Presentation 22-May-2017
CBC Presentation 22-May-2017CBC Presentation 22-May-2017
CBC Presentation 22-May-2017
 
Mind Keys
Mind KeysMind Keys
Mind Keys
 
Cma cbc overview 280217
Cma cbc overview 280217Cma cbc overview 280217
Cma cbc overview 280217
 
CBC Action Coach (Mind Body Heart Spirit Presentation)
CBC Action Coach (Mind Body Heart Spirit Presentation)CBC Action Coach (Mind Body Heart Spirit Presentation)
CBC Action Coach (Mind Body Heart Spirit Presentation)
 
Rare portfolio dec16
Rare portfolio dec16Rare portfolio dec16
Rare portfolio dec16
 
PPT7 portfolio
PPT7 portfolioPPT7 portfolio
PPT7 portfolio
 
PPT6 portfolio
PPT6 portfolioPPT6 portfolio
PPT6 portfolio
 
Rare Design Case Study Mead Open Farm
Rare Design Case Study Mead Open FarmRare Design Case Study Mead Open Farm
Rare Design Case Study Mead Open Farm
 
Rare Design Case Study Vodafone
Rare Design Case Study VodafoneRare Design Case Study Vodafone
Rare Design Case Study Vodafone
 
Rare Case Study Ibicus
Rare Case Study IbicusRare Case Study Ibicus
Rare Case Study Ibicus
 
Ppt2 portfolio 3
Ppt2 portfolio 3Ppt2 portfolio 3
Ppt2 portfolio 3
 

Último

Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDINGParadip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
pr788182
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
daisycvs
 
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All TimeCall 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
gargpaaro
 

Último (20)

Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDINGParadip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
 
Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024
 
Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1
 
Ooty Call Gril 80022//12248 Only For Sex And High Profile Best Gril Sex Avail...
Ooty Call Gril 80022//12248 Only For Sex And High Profile Best Gril Sex Avail...Ooty Call Gril 80022//12248 Only For Sex And High Profile Best Gril Sex Avail...
Ooty Call Gril 80022//12248 Only For Sex And High Profile Best Gril Sex Avail...
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
 
Cannabis Legalization World Map: 2024 Updated
Cannabis Legalization World Map: 2024 UpdatedCannabis Legalization World Map: 2024 Updated
Cannabis Legalization World Map: 2024 Updated
 
JAJPUR CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN JAJPUR ESCORTS
JAJPUR CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN JAJPUR ESCORTSJAJPUR CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN JAJPUR ESCORTS
JAJPUR CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN JAJPUR ESCORTS
 
Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...
Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...
Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...
 
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 MonthsSEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
 
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
PHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation Final
 
Berhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Berhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDINGBerhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Berhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
 
QSM Chap 10 Service Culture in Tourism and Hospitality Industry.pptx
QSM Chap 10 Service Culture in Tourism and Hospitality Industry.pptxQSM Chap 10 Service Culture in Tourism and Hospitality Industry.pptx
QSM Chap 10 Service Culture in Tourism and Hospitality Industry.pptx
 
Kalyan Call Girl 98350*37198 Call Girls in Escort service book now
Kalyan Call Girl 98350*37198 Call Girls in Escort service book nowKalyan Call Girl 98350*37198 Call Girls in Escort service book now
Kalyan Call Girl 98350*37198 Call Girls in Escort service book now
 
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
 
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All TimeCall 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
 
Arti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdfArti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdf
 
Berhampur Call Girl Just Call 8084732287 Top Class Call Girl Service Available
Berhampur Call Girl Just Call 8084732287 Top Class Call Girl Service AvailableBerhampur Call Girl Just Call 8084732287 Top Class Call Girl Service Available
Berhampur Call Girl Just Call 8084732287 Top Class Call Girl Service Available
 
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
 

GDPR Jan 2018 1

  • 2. ARE YOU READY FOR GENERAL DATA PROTECTION REGULATIONS (GDPR)?
  • 3. GENERAL DATA PROTECTION REGULATIONS (GDPR) GDPR comes into effect May 2018 Initially EU ‘driven’ – set to become a worldwide standard - builds upon existing data protection rules Information Commissioner’s Office (ICO) is relevant U.K. ‘body’
  • 4. GENERAL DATA PROTECTION REGULATIONS (GDPR) Prompted by the growth in data processing Evolution rather than revolution of the rules Not a new Millennium Bug Aim to achieve privacy by design and default
  • 5. GENERAL DATA PROTECTION REGULATIONS (GDPR) Requires personal data (PD) to be respected - Accountability - Transparency - Individuals’ rights An obligation on all businesses/organisations Severe penalties for non- compliance
  • 6. GENERAL DATA PROTECTION REGULATIONS (GDPR) Important in terms of client reassurance An opportunity to focus on client care Positive use of GDPR
  • 7. GENERAL DATA PROTECTION REGULATIONS (GDPR) Organisations are required to have a legal basis to process 1. Contract 2. Consent 3. Vital Interest 4. Public Task 5. Comply with legal obligations 6. Legitimate Interests
  • 8. GENERAL DATA PROTECTION REGULATIONS (GDPR) Segmentation appropriate i.e. - Contract basis for preparing wills/LPAs etc. - Consent basis for marketing communication A ‘granular‘ approach required - Consent cannot be ‘bundled’ Consent must be ‘active’
  • 9. GENERAL DATA PROTECTION REGULATIONS (GDPR) Privacy statements to include: - Legal basis for processing data - What is to happen to the data - What a client does if there’s a problem On website and in terms of trading
  • 10. GENERAL DATA PROTECTION REGULATIONS (GDPR) Imposes general obligation to implement technical and organisational measures to show that consideration has been given to data protection when processing.
  • 11. GENERAL DATA PROTECTION REGULATIONS (GDPR) IOC checklist: Privacy Impact Assessment (PIA) Audit and log what PD held and how it flows Document who PD comes from - what you do with it - with whom you share it
  • 12. GENERAL DATA PROTECTION REGULATIONS (GDPR) Identify and document lawful basis for processing PD Review and record how consent is obtained and recorded Establish means to record/manage ongoing consent
  • 13. GENERAL DATA PROTECTION REGULATIONS (GDPR) Maintain registration with ICO Ensure privacy notices readily available Concise - easy to understand - identifies you – confirms how PD to be handled - with whom shared – how long to be retained
  • 14. GENERAL DATA PROTECTION REGULATIONS (GDPR) Establish right for individuals to access PD Establish process to keep PD accurate and up to date (relevant for wills/LPAs?) Provide for effective destruction of PD no longer required.
  • 15. GENERAL DATA PROTECTION REGULATIONS (GDPR) Establish procedure to respond to clients’ requests to restrict processing Allow individuals to copy/move their PD Reference to automated decision making (NA)
  • 16. GENERAL DATA PROTECTION REGULATIONS (GDPR) Ensure data protection policy in place and review compliance periodically Provide data protection training for all staff Written contract with appropriately vetted ‘data processors’
  • 17. GENERAL DATA PROTECTION REGULATIONS (GDPR) Clear security policies and procedures – regularly reviewed Ensure data protection is integrated into all activities Understand when and how Data Protection Impact Assessments (DPIAs) should be used.
  • 18. GENERAL DATA PROTECTION REGULATIONS (GDPR) Nominate Data Protection Officer (DPO) Promote positive culture of data protection Develop and maintain an information security policy
  • 19. GENERAL DATA PROTECTION REGULATIONS (GDPR) Special rules for any information transferred beyond the EEA Establish procedure to deal with identifying, reporting, managing and resolving PD breaches
  • 20. GENERAL DATA PROTECTION REGULATIONS (GDPR) That’s all there is to it !