David Sumner EU GDPR P CISM General Data Protection Regulation - - PowerPoint PPT Presentation

▶

Jul 16, 2023 136 likes •233 views

General Data Protection Regulation David Sumner EU GDPR P CISM General Data Protection Regulation (GDPR) Why Supports a single digital market place Protect privacy & security of EU citizens in the digital age When

SLIDE 1

General Data Protection Regulation

David Sumner EU GDPR P CISM

SLIDE 2

General Data Protection Regulation (GDPR)

Why
Supports a single digital market place
Protect privacy & security of EU citizens in the digital age
When
25th May 2018
Who
Controllers & Processors of personal data of EU data subjects
Where
Inside the EU
Outside the EU
Restrictions on transfer of personal data outside the EU
Single supervisory authority

SLIDE 3

General Data Protection Regulation (GDPR)

ICO International Strategy – clear statement of intent for a law of GDPR

standards or higher for a post Brexit UK.

”We will seek to explore the content of the UK as a ‘global data protection

gateway’ – a country with a high standard of data protection law which is effectively interoperable with different legal systems that protect international flows of personal data.”

SLIDE 4

General Data Protection Regulation (GDPR)

Personal Data & Sensitive Personal Data
Fines
Rights
Principles
Consent
Accountability
Data Privacy Impact Assessment
Data Protection Officer
Data Breach Notification
Pseudonymisation

What

SLIDE 5

General Data Protection Regulation (GDPR)

Current ICO highest fine dispensed is £400K
Fines are intended to be punitive and dissuasive
€10M or 2% Global Group Turnover for breach of controller/processor

duties e.g. failure to notify a breach of personal data

€20M or 4% GlobalGroup Turnover for breach of GDPR requirements

failure to uphold data subjects right or observe GDPR principles

Fines

SLIDE 6

General Data Protection Regulation (GDPR)

It is not too late to be compliant enough to –
Protect your business and your customers
Gain competitive advantage
Exploit opportunity
Gain protection from harsher fines etc. etc.
It is simply too late to become fully compliant by 25 MAY 2018

SLIDE 7

General Data Protection Regulation (GDPR)

MAP YOUR DATA
COMPLIANCE GAP ANALYSIS
RISK ASSESS (DPIA Lite)
RAISE AWARENESS
IMPLEMENT based on RATIONALE and RISK APPETITE

How to Tackle It

SLIDE 8

General Data Protection Regulation

David Sumner EU GDPR P CISM

General Data Protection Regulation (GDPR)

General Data Protection Regulation (GDPR)

standards or higher for a post Brexit UK.

gateway’ – a country with a high standard of data protection law which is effectively interoperable with different legal systems that protect international flows of personal data.”

General Data Protection Regulation (GDPR)

What

General Data Protection Regulation (GDPR)

duties e.g. failure to notify a breach of personal data

failure to uphold data subjects right or observe GDPR principles

Fines

General Data Protection Regulation (GDPR)

General Data Protection Regulation (GDPR)

How to Tackle It

General Data Protection Regulation (GDPR)

QUESTIONS