$1,904.95 – $10,431.95

The EU General Data Protection Regulation (GDPR) (NTZ)

Event Information

Share this event

Date and Time

Location

Location

Hilton Zurich Airport

10 Hohenbühlstrasse

8152 Opfikon

Switzerland

View Map

Refund Policy

Refund Policy

No Refunds

Friends Who Are Going
Event description

Description

On 25th May 2018 the EU-GDPR becomes effective, this date has been set to give organisations time to prepare and comply with the regulations. This may seem to be a long way off, but for most organisations there is a lot to be done.

With the escalation of data breaches, the sooner data is safe guarded the better. Often a data breach is not discovered for months, sometimes six months, implementing new policies, security systems, negotiations with suppliers and training people in an organisation will take time. The sooner you start the more time you have to make a good decision on the options you face.

This introductory course will give you an overview of the history of Data Protection within the EU and introduce you to the enhancements and new obligations imposed by the EU GDPR.


Why you should attend:

Data protection law in the EU is about to undergo the most significant changes since the 1995 EU Data Protection Directive. The new EU General Data Protection Regulation (GDPR) came into effect in May 2016 and you have until May 2018 to become fully compliant. The new law will require significant preparatory work that you should begin now.

Will the EU GDPR apply to my business?

Does your organisation acquire, store, process, distribute, manage, modify or analyse any data which can be used to identify an EU citizen OR does your organisation trade with EU citizens?

If you answered YES, then no matter whether your organisation is based in the EU or elsewhere in the world, then the EU GDPR will apply to your business. Even though the EU-GDPR is an EU regulation, it has a global reach. If an organisation is outside of the EU it MUST still comply IF it handles, stores, manages, or processes EU citizens' personal data.

The new Regulation will impose many legal obligations on organisations that control or process data and will afford new rights to those whose personal data is being held. The financial penalties for non-compliance will be very substantial so it is absolutely vital that your organisation is fully prepared as early as possible.


Areas Covered in the Session:

  • Key definitions
  • Bands of penalties and range of awards for breaches
  • Timeline to application of GDPR
  • Six data protection principles, lawfulness and consent
  • Sensitive data
  • Rights of data subjects
  • Controllers and processors
  • Data protection by design
  • Securing personal data
  • Reporting data breaches
  • Transferring personal data outside the EU
  • Powers of supervisory authorities
  • Role of the EDPB (European Data Protection Board)

Who Will Benefit:

  • Directors
  • Company Secretaries
  • Compliance Officers
  • HR Staff
  • IT Admin
  • Any employee with a responsibility for managing data


Day 1 Schedule


Lecture 1:

GDPR Context, Definitions and Penalties

  • Determine what type of personal information is subject to the GDPR
  • Determine the organisational and geographic scope of the GDPR
  • Correctly define terms from the GDPR
  • Identify where data subjects have a right to lodge a complaint with respect to data processing

Lecture 2:

GDPR Context, Definitions and Penalties (Cont.)

  • Identify rights of a data subject to compensation
  • Identify the infringements that will be subject to fines of up to 2% of annual turnover
  • Identify the infringements that will be subject to fines of up to 4% of annual turnover
  • Identify the date on which the GDPR comes into force across the EU

Lecture 3:

GDPR Principles

  • the six principles for the processing of personal data
  • how to demonstrate compliance with each of the six principles
  • how controllers can demonstrate compliance
  • lawful grounds for processing data
  • the legal conditions for consent
  • the additional conditions necessary for a child's consent
  • which special categories of data may not be processed
  • the circumstances in which special data may be processed

Lecture 4:

Rights of Data Subjects

  • Identify the tests to respond transparently to data subject requests
  • Identify the requirements on controllers when obtaining personal data
  • Identify actions necessary in respect of personal data not obtained directly from data subjects
  • Identify a data subject's rights of access
  • Identify the grounds that give the right to be forgotten
  • Identify the grounds that give the right to restrict processing
  • Identify a data subject's right to data portability
  • Identify a data subject's right to object to processing

Day 2 Schedule


Lecture 1:

Controller and Processor

  • Differentiate between controllers and processors
  • Identify requirements on controllers in respect of processing activities
  • Identify how organisations are required to approach data protection by design
  • Identify the requirements in respect of controllers or processors who are not established in the EU
  • Identify the obligations applied to processors

Lecture 2:

Transfers of personal data

  • Identify the principles covering the transfer of personal data outside the EU
  • Identify where the EU posts details of organisations and/or countries that meet its adequacy test
  • Identify the requirements in respect of binding corporate rules

Lecture 3:

Supervisory authorities

  • Identify the powers of supervisory authorities
  • Identify the role of a lead supervisory authority

Lecture 4:

Co-operation and consistency

  • Identify the tasks of the European Data Protection Board (EDPB)
  • Identify how the EDPB ensures consistency of application of the GDPR across the Member States+


Vanessa Cozens

CEO, The GDPR Clinic

A Chartered Global Management Accountant (CGMA), Vanessa has many years experience working as a financial controller for multi-national businesses.

A holder of the EU GDPR Practitioner (EU GDPR P) qualification which is ISO 17024 accredited and issued by the International Board for IT Governance Qualifications (IBITGQ), she now works with businesses to help them with GDPR compliance and training.

She has vast experience working within senior management teams and has been involved with the establishment and implementation of corporate policies, ensuring that they meet the strict levels of both internal and external corporate standards.

Vanessa is now the CEO of The GDPR Clinic based in the UK and works with businesses to help them with GDPR compliance and training.


Please contact the event manager Marilyn below for the following:
- Discounts for registering 5 or more participants.
- If you company requires a price quotation.
Event Manager Contact: marilyn.b.turner(at)nyeventslist.com
You can also contact us if you require a visa invitation letter, after ticket purchase.
We can also provide a certificate of completion for this event if required.

NO REFUNDS ALLOWED ON REGISTRATIONS
-----------------------------------------------------------------
This Event Listing is Promoted by
New York Media Technologies LLC in association
with Netzealous LLC
http://www.NyEventsList.com
http://www.BostonEventsList.com
http://www.SFBayEventsList.com
-----------------------------------------------------------------
MYL170717CEV SHU170718OTH MYL170814OTH

Share with friends

Date and Time

Location

Hilton Zurich Airport

10 Hohenbühlstrasse

8152 Opfikon

Switzerland

View Map

Refund Policy

No Refunds

Save This Event

Event Saved