gdpr
play

GDPR Breach & Automated Decision Making Part 5 of our series on - PowerPoint PPT Presentation

Feb 25, 2023 •235 likes •617 views

GDPR Breach & Automated Decision Making Part 5 of our series on GDPR and its impact on the recruitment industry This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you

  1. GDPR Breach & Automated Decision Making Part 5 of our series on GDPR and its impact on the recruitment industry This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  2. Who are we?  Dillistone Group Plc, a public company listed on the AIM market of the London stock exchange  Includes the brands Voyager Software, ISV Software, FCP Internet, Dillistone Systems and GatedTalent  Thousands of clients in over 70 countries, both Recruitment and Corporate with some of the largest clients in those fields  ISO/IEC 17024 GDPR-P certified This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  3. A quick recap  Slides & a recording of today’s webinar will be available within a few days.  In Part 1 of our series we looked at the GDPR in general.  In Part 2 we looked at consent, rights of data subjects, privacy by design, focusing on Data Protection Officers and data privacy impact assessments.  In Part 3 we looked at what makes processing legal, controller and processor liability, policies and processes, data security, enforcement and penalties, and certifications.  In Part 4 we looked at compliance including Data protection by design, the cultural impact to your business and unlawful data This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  4. Catch Up  Recordings of the previous 4 webinars are available online (free of charge).  Lots of free information available. To find out more, go to…  Our GDPR Hub https://www.voyagersoftware.com/gdpr/gdpr-hub.html This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  5. Catch Up  Or…  Our LinkedIn Group https://www.linkedin.com/groups/8599770 This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  6. Future Event – GDPR Forum  Due to the levels of interest we’re seeing, we’re looking to put on a free in - person event on the 23 rd February 8.15am – 8.45am Introduction to the GDPR (optional introduction for those less familiar with the GDPR) 8.45am – 9.15am Welcome refreshments with tea, coffee, pastries 9.15am – 9.30am Opening Welcome The GDPR and what we’re doing about it. 9.30am – 10.15am Cyber Security with Francis West (Westek) 10.15am – 10.30am Refreshments 10.30am – 11.00pm GDPR with Simon Stokes (Blake Morgan LLP) 11.00am - 12.00pm GDPR Panel – Q&A Discussion 12.00pm – 1.00pm Lunch with networking 1.30pm Close This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  7. DISCLAIMER  This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter  If you have specific questions on how this may affect your organisation you should consult a legal professional  Guidance and member state regulator interpretation is ongoing – GDPR is dealing with a highly complex scenario and one size does not fit all  This is the fifth part of a series of webinars and is therefore not designed to cover everything in one sitting! This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  8. Today We’ll look at:  What is a personal data breach?  When and whom do I notify?  Assessing the risk of a breach  Documentation required in a breach  Automated Decision making – does it apply and what does it mean?  Automated Decision making – how can I make it work? This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  9. Data breach  Requirement to report breaches is not new (depending on circumstance)  Article 83 allows that failure to report a breach where applicable, can result in sanctions (at tier 1 so €10M/2%)  Whilst there is still a lot of ambiguous language around breach it is one of the few areas where the current guidance is actually pretty concise This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  10. Data breach Article 29 Data protection working party Guidelines on Personal data breach notification under regulation 2016/679  Some good examples and flow charts that we’ll be using today and will be available on the website This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  11. What is a personal data breach?  Article 5(1)(f) and 32…  ..Personal data shall be processed in a manner to ensure the appropriate security of the personal data, including protection against unlawful processing and against accidental loss, destruction and damage.  Destruction – no longer exists  Damage – altered, corrupt or no longer complete  Loss – may exist but Controller no longer has it  Unlawful processing – disclosure to unauthorised recipients, any other violation This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  12. What is a personal data breach?  So, we now know how we have to process – and hence the GDPR defines a breach as per article 4:  “A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.”  It might seem obvious but remember the GDPR only applies when the breach relates to personal data  3 categories of Breach:  Confidentiality  Availability  Integrity This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  13. What is a personal data breach?  Examples  Examples of a loss of availability include where data has been deleted either accidentally or by an unauthorised person, or, in the example of securely encrypted data, the decryption key has been lost. In the event that the controller cannot restore access to the data, for example, from a backup, then this is regarded as a permanent loss of availability.  A loss of availability may also occur where there has been significant disruption to the normal service of an organisation, for example, experiencing a power failure or denial of service attack, rendering personal data unavailable, either permanently, or temporarily. This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

  14. What is a personal data breach? Examples  In the context of a hospital, if critical medical data about patients are unavailable, even  temporarily, this could present a risk to individuals’ rights and freedoms; for example, operations may be cancelled Conversely, in the case of a Recruitment agency’s systems being unavailable for several  hours (e.g. due to a power outage), if that company is then prevented from CVs to clients, this is unlikely to present a suitable risk to individuals’ rights and freedoms Infection by ransomware (malicious software which encrypts the controller’s data until a  ransom is paid) could lead to a temporary loss of availability if the data can be restored from backup. However, a network intrusion still occurred, and notification could be required if the incident is qualified as confidentiality breach (i.e. personal data is accessed by the attacker) and this presents a risk to the rights and freedoms of individuals This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organisation you should consult a legal professional.

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

GDPR How does it apply to me? What is GDPR? It is the LAW! What is GDPR? The General Data

GDPR How does it apply to me? What is GDPR? It is the LAW! What is GDPR? The General Data

GDPR How does it apply to me? What is GDPR? It is the LAW! What is GDPR? The General Data Protection Regulation Came into force on May 25 th Replaces the current 1995 Data Protection Directive and Data Protection Act (1998). What is GDPR?

570 views • 18 slides
Data minimization & concentration: Intended and unintended consequences of the GDPR Garrett

Data minimization & concentration: Intended and unintended consequences of the GDPR Garrett

garjoh_canuck Data minimization & concentration: Intended and unintended consequences of the GDPR Garrett Johnson (Boston U) Scott Shriver (U Colorado Boulder) GDPR Impact GDPR General Data Protection Regulation EU EEA Brexit GDPR

833 views • 27 slides
Protection Regulation (GDPR) Presentation Structure What is the GDPR? When and where does

Protection Regulation (GDPR) Presentation Structure What is the GDPR? When and where does

Presentation by Michalis Mantzaris, PhD Introduction to General Data Protection Regulation (GDPR) Presentation Structure What is the GDPR? When and where does it apply? Consisting elements and Guideline provision Key changes and

605 views • 23 slides
Overview What is the GDPR? What are the main changes? Risks? What do you need to do

Overview What is the GDPR? What are the main changes? Risks? What do you need to do

Overview What is the GDPR? What are the main changes? Risks? What do you need to do to be compliant? Data Breaches How does the GDPR affect you? Steps to Compliance Summary What is the GDPR? q The EU's General Data

355 views • 17 slides
PROTECTION REGULATIONS May 2018 GDPR What is GDPR What is different Principles

PROTECTION REGULATIONS May 2018 GDPR What is GDPR What is different Principles

GENERAL DATA PROTECTION REGULATIONS May 2018 GDPR What is GDPR What is different Principles of of GDPR How does it effect school How are school preparing How does it effect individual staff How can

475 views • 12 slides
Welcome Agenda GDPR is in force now and applies to Australian businesses What does GDPR require?

Welcome Agenda GDPR is in force now and applies to Australian businesses What does GDPR require?

Welcome Agenda GDPR is in force now and applies to Australian businesses What does GDPR require? How does an Australian business comply? Action Plan Section 1: GDPR is here Privacy in the digital age Historically, privacy was almost

513 views • 40 slides
Click to add title Click to add subtitle Before the GDPR: the great GDPR compliance panic The

Click to add title Click to add subtitle Before the GDPR: the great GDPR compliance panic The

Almost one year after the GDPR, where are we now? Click to add title Click to add subtitle Before the GDPR: the great GDPR compliance panic The first year of the GDPR can best be described as "quiet test run. What are the most striking

405 views • 8 slides
GDPR T owards Compliance 25 May 2018 Wha hat t is GDPR? EU Data Protection Directive EU

GDPR T owards Compliance 25 May 2018 Wha hat t is GDPR? EU Data Protection Directive EU

GDPR T owards Compliance 25 May 2018 Wha hat t is GDPR? EU Data Protection Directive EU General Data Protection 1995 Regulation 2016 Data Protection Act 1998 Data Protection Bill 2017-19 Fines DPA GDPR Maximum Fine 500k Two

622 views • 17 slides
GDPR Dont be scared Even if you cant answer all the questions on the form GDPR Dont

GDPR Dont be scared Even if you cant answer all the questions on the form GDPR Dont

GDPR Dont be scared Even if you cant answer all the questions on the form GDPR Dont be scared 60% of people welcome the rights under GDPR 48% of UK adults plan to activate their rights 56% welcome the right to object to marketing

1.32k views • 37 slides
GDPR Webinar Guide Overview and key points Part 1 of our series on GDPR and its impact on the

GDPR Webinar Guide Overview and key points Part 1 of our series on GDPR and its impact on the

1 GDPR Webinar Guide Overview and key points Part 1 of our series on GDPR and its impact on the recruitment industry 2 Introduction The rules which underpin the storage of personal data have changed dramatically. The new EU-US Privacy Shield

998 views • 35 slides
GDPR Obligations & Rules Introduction to Privacy and the GDPR Simone Fischer-Hbner

GDPR Obligations & Rules Introduction to Privacy and the GDPR Simone Fischer-Hbner

GDPR Obligations & Rules Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0 Advising, Monitoring, Enforcing European Data Protection Board Art. 68 - 73 (replacing the Art. 29 Working Party) advise Supervisory

626 views • 8 slides
GDPR Rights and Consent Part 2 of our series on GDPR and its impact on the recruitment industry

GDPR Rights and Consent Part 2 of our series on GDPR and its impact on the recruitment industry

GDPR Rights and Consent Part 2 of our series on GDPR and its impact on the recruitment industry This webinar is provided for information purposes and is NOT intended to be legal advice pertaining to the subject matter. If you have specific

495 views • 35 slides
GDPR General Data Protection Regulation DR. Rafi us Shan, Chief Cyber Security , KP CERC KPITB

GDPR General Data Protection Regulation DR. Rafi us Shan, Chief Cyber Security , KP CERC KPITB

GDPR General Data Protection Regulation DR. Rafi us Shan, Chief Cyber Security , KP CERC KPITB GDPR TIMELINE Definitions GDPR is a set of EU laws that come into affect on May 25th 2018. GDPR rules are designed to give more control over

587 views • 30 slides
GDPR Hacks For O365 3/27/2018 How O365 And Azure Can Help JB Wissma mann nn Organizations Get

GDPR Hacks For O365 3/27/2018 How O365 And Azure Can Help JB Wissma mann nn Organizations Get

GDPR Hacks For O365 3/27/2018 How O365 And Azure Can Help JB Wissma mann nn Organizations Get Compliant Agenda GDPR at a glance What does GDPR mean for IT departments Microsoft and GDPR M365 O365 Azure Dynamics

349 views • 18 slides
GDPR INFORMATION SEMINAR Dun Laoghaire / Rathdown Sports Partnership March 2018 WHY ? 1. GDPR

GDPR INFORMATION SEMINAR Dun Laoghaire / Rathdown Sports Partnership March 2018 WHY ? 1. GDPR

GDPR INFORMATION SEMINAR Dun Laoghaire / Rathdown Sports Partnership March 2018 WHY ? 1. GDPR applies to you because you hold data it does not discriminate on size / profit 2. Deadline to comply 3. Fines 4. Book stops with you ? 5. Piece

1.05k views • 37 slides
REGULATION (GDPR) IN THE CONTEXT OF EEDAPP 27 SEPTEMBER 2019 - VENICE WHAT IS GDPR The General

REGULATION (GDPR) IN THE CONTEXT OF EEDAPP 27 SEPTEMBER 2019 - VENICE WHAT IS GDPR The General

GENERAL DATA PROTECTION REGULATION (GDPR) IN THE CONTEXT OF EEDAPP 27 SEPTEMBER 2019 - VENICE WHAT IS GDPR The General Data Protection Regulation (EU) 2016/679, commonly known as GDPR, applies from 25 May 2018 and regulates the processing by a

318 views • 12 slides
LINKED DATA EXPERIENCE AT MACMILLAN Building discovery services for scientific and Tony Hammond

LINKED DATA EXPERIENCE AT MACMILLAN Building discovery services for scientific and Tony Hammond

LINKED DATA EXPERIENCE AT MACMILLAN Building discovery services for scientific and Tony Hammond scholarly content on top of a semantic data model Michele Pasin 22 October 2014 Background About Macmillan and what we are doing 1 Linked Data

531 views • 15 slides
ExFaKT Ex plaining F acts over K nowledge Graphs & T ext Mohamed H. Gad-Elrab Daria Stepanova

ExFaKT Ex plaining F acts over K nowledge Graphs & T ext Mohamed H. Gad-Elrab Daria Stepanova

ExFaKT Ex plaining F acts over K nowledge Graphs & T ext Mohamed H. Gad-Elrab Daria Stepanova Jacopo Urbani Gerhard Weikum MPI Informatics Bosch AI VU Amsterdam MPI Informatics WSDM 2019 11-15 February, Melbourne, Australia

344 views • 12 slides
Lowering the Operational Costs through Improving Crew Readiness and Automated Real-time Decision

Lowering the Operational Costs through Improving Crew Readiness and Automated Real-time Decision

Lowering the Operational Costs through Improving Crew Readiness and Automated Real-time Decision support using Digital Twin eDrilling a world leading supplier of AI, machine learning, and predictive analytics solutions to the oil and gas

754 views • 14 slides
PyZX: Large Scale Automated Diagrammatic Reasoning Aleks Kissinger aleks@cs.ru.nl John van de

PyZX: Large Scale Automated Diagrammatic Reasoning Aleks Kissinger aleks@cs.ru.nl John van de

PyZX: Large Scale Automated Diagrammatic Reasoning Aleks Kissinger aleks@cs.ru.nl John van de Wetering john@vdwetering.name Institute for Computing and Information Sciences Radboud University Nijmegen June 10, 2019 PyZX Open source

1.06k views • 49 slides
The General-Purpose Storage Revolution Jeff Bonwick Sun Fellow and CTO, Storage Sun

The General-Purpose Storage Revolution Jeff Bonwick Sun Fellow and CTO, Storage Sun

The General-Purpose Storage Revolution Jeff Bonwick Sun Fellow and CTO, Storage Sun Microsystems 1 1 The General-Purpose Storage Revolution I know you're out there. I know you're out there. I can feel you now. I can feel you now.

503 views • 17 slides
Architecting a data platform to support analytic workflows for scientific data Sun Maria Lehmann,

Architecting a data platform to support analytic workflows for scientific data Sun Maria Lehmann,

Architecting a data platform to support analytic workflows for scientific data Sun Maria Lehmann, Equinor Jane McConnell, Teradata We work in the Upstream Oil and Gas Industry Upstream Downstream like chemical Transport Retail like

827 views • 28 slides
Automatic Code Generation for Library Method Inclusion in Domain Specific Languages

Automatic Code Generation for Library Method Inclusion in Domain Specific Languages

u n i v e r s i t y o f c o p e n h a g e n n i e l s b o h r i n s t i t u t e Faculty of Science Automatic Code Generation for Library Method Inclusion in Domain Specific Languages Communicating Process Architectures 2017 University of

984 views • 36 slides
A Human-Centric Approach to Program Understanding Ph.D. Dissertation Proposal Raymond P.L. Buse

A Human-Centric Approach to Program Understanding Ph.D. Dissertation Proposal Raymond P.L. Buse

A Human-Centric Approach to Program Understanding Ph.D. Dissertation Proposal Raymond P.L. Buse buse@cs.virginia.edu April 6, 2010 1 Introduction Software development is a large global industry, but software products continue to ship with

446 views • 29 slides

More recommend