2019 Agenda

Session Title
Collapse All
Elizabeth Lomas, Senior Lecturer, Information Governance UCL (CONFIRMED)

  • Outlining key changes to the current data protection and privacy landscape
  • Assessing how the new ePrivacy Regulation aligns with the GDPR and the Data Protection Bill
  • Complementing GDPR with a focus on electronic communications data and electronics, including devices, processing techniques, storage and browsers
  • Looking at the future: how should public and private sector organisations plot their privacy route while promoting digital transformation?

Sophia Adams Bhatti, Director of Legal & Regulatory Policy The Law Society (CONFIRMED)

  • Assessing effective solutions to collecting and developing data within the context of GDPR to maximise the social outcomes of a voluntary sector organisation
  • Examining what constitutes successful data analysis to develop meaningful insights on service users and potential donors
  • Exploring how to build and maintain a high-quality data infrastructure which delivers tools to conduct effective analysis and interpretation
  • Evaluating data successfully in order to improve communication, personalisation and engagement to enhance an organisation’s fundraising strategy
  • Sharing challenges and solutions to developing ongoing relationships with supporters, donors and service users following GDPR

Zoe Rowland, Head of Data Governance Cancer Research UK (CONFIRMED)

  • Discussing how universities have approached the information lifecycle, fundamental to international standards, on quality and information security. Have they achieved these goals as well as to compliance with the GDPR
  • Outlining best-practice examples of reducing the overuse of consent
  • Promoting the role of the Data Protection Officer within the HE sector
  • Understanding innovative best practice approaches to effectively deal with data-breaches

David Reeve, Head of Information, Data and Analysis and Data Protection Officer Jisc (CONFIRMED)

  • Analysing the impact GDPR had on Leicester City Council and how it went about preparing for GDPR
  • Outlining the key changes required as a unitary local authority and the changes made by Leicester City Council
  • Discussing Leicester’s approach to identifying and overcoming the legal risks associated with increases in data sharing
  • Exploring how a multi-agency working initiative in Leicester has reduced the demand for emergency services
  • Working in collaboration with other organisations to securely share data
  • Identifying and overcoming cultural barriers to sharing information

Iain Harrison, Information Governance and Risk Manager Leicester City Council (CONFIRMED)

  • Integrating disparate/legacy systems to create a single customer record using Master Data Management
  • Using Master Data Management to facilitate digital transactions
  • Creating powerful tools using a single customer record to improve the delivery of services, enhance decision making and boost communication

Andrew Taylor, Information Architect City of York Council (CONFIRMED)

  • The status of cyber-attacks and how local and central government are protecting sensitive data
  • How is GDPR shaping operations within government?
  • Ensuring cloud platforms have end-to-end encryption
  • Moving from DevOps to DevSecOps to identify risks of data breaches across tech infrastructure
  • How do you effectively leverage budget and demand within Government ICT, two concepts seemingly moving in opposite directions?

Harriet Green, Chief Digital Officer Department of Environment, Food and Rural Affairs (CONFIRMED)

  • Understanding how the role of security and privacy is changing across the department to meet the social, economic and technological revolution
  • Ensuring security is embedded within the development life cycle, from software development to application design
  • Bringing the design, UX and security teams together to up skill your workforce
  • Outlining how DevSecOps aligns with the ePrivacy Regulation, including consent and identity management
  • Redesigning services and looking at the implications for electronic communication security, email, marketing and text messages
  • Developing new relationships with our audiences and building trust through two-way and open engagement with key stakeholders

Mahbubul Islam, Head of Secure Design Department for Work and Pensions (CONFIRMED)

  • The EU ePrivacy Regulation will replace the current ePrivacy Directive, which was implemented in the UK via the Privacy and Electronic Communications Regulation (PECR). EU member states interpreted the ePrivacy Directive in different ways meaning the rules vary across the EU. Overall it is remembered by marketers as the ‘cookie law’ as it required organisations to have a cookie pop-up explaining that cookies are used by a website.
  • The EU Commission stated the new law was necessary to ensure ePrivacy rules are consistent with GDPR and reinforce trust and security in the EU’s digital single market, a flagship policy
  • Divergent ePrivacy rules across the EU can act as a barrier to cross-border trade. The ePrivacy Regulation will apply equally in all member states and will, therefore, harmonise rules.
  • The DMA position is that there must be a clear and detailed rationale for each proposal in the ePrivacy Regulation. Having spent years working on the GDPR, which is considered the gold standard in global data protection, there should be no contradiction between GDPR and ePrivacy
  • Discussing the rollout of these changes in the face of Brexit, expected timelines and obligations towards implementation

John Mitchison, Director of Policy and Compliance DMA (CONFIRMED)

  • How is data regulation changing the way organisations operate?
  • How can increasingly divergent and potentially conflicting rules and regulatory systems be navigated?
  • How can the need for data privacy and digital transformation be balanced?
  • How can organisations bring data protection & ePrivacy to the forefront of the workplace?
  • As the volume and value of personal data held by organisations continues to grow, how can organisations manage issues of trust and transparency?
  • Considering leadership, culture and skills challenges in meeting data protection capabilities and needs
  • Privacy after Brexit: What are the risks of increasingly strict data localisation requirements?

John Mitchison, Director of Policy and Compliance DMA (CONFIRMED)
Declan Goodwin, Associate Director Vistra (CONFIRMED)
Alison Pritchard, Director for EU Exit Government Digital Service (invited)
Giles Derrington, Head of Policy: Brexit, International and Economics TechUK (invited)

*Programme subject to change