Register your Interest
Apply for a Stand

Agenda

DMA
John Mitchison
Selected Categories :
Time
Session Title
Expand/
Collapse All
Add to PDF

  • Looking at the future: the proposed ePrivacy Regulation and its impact on business operation and privacy
  • What are the impacts of stronger privacy rules for electronic communications?
  • Introduction on profiling and automated individual decision-making
  • GDPR: What it means in relation to automated decision making and profiling (with practical examples)
  • Lawful bases for processing and exceptions from the prohibition
  • Establishing appropriate safeguard and good practice recommendations

  • Outlining key changes to the current data protection and privacy landscape
  • Assessing how the new ePrivacy Regulation aligns with the GDPR and the Data Protection Bill
  • Complementing GDPR with a particular focus on electronic communications data and electronics, including mobile devices, processing techniques, data storage, browsers
  • Understanding how do ‘legitimate interest’ provisions of the GDPR interact with the ePrivacy Regulation
  • Outlining whether ‘consent’ in both legislative documents mean the same thing
  • Running a flagship programme on the use of personal data for public services and exploring the impacts on privacy and human rights
  • Looking at the future: how should organisations plot their privacy route while promoting digital transformation?

  • Practically consider the impact of the proposed ePrivacy Regulation on your organisation’s marketing and online communication activities
  • Understanding what does ePrivacy mean from a direct marketing perspective including consent and identity management
  • Assessing the impact of opt-ins and cookies for communications activities
  • Looking at how does the ePrivacy Regulation work alongside GDPR

  • Understand the implications of the GDPR for controllers and processors
  • Map out a GDPR-ready 72-hour personal data breach action plan
  • Outline the details of this tight timeline as well as the risk-based triggers and what they entail
  • Implement efficient and effective data handling practices in the face of new GDPR requirements

 

 

  • Recognising the privacy implications from new legislation in data analysis work
  • Creating new methods to assess the content of data for its sensitivity and privacy
  • Developing security policy based on data sensitivity to meet risk appetite and legal requirements
  • Embedding data ownership for improved governance

  • Gaining best practice in developing new systems and processes to ensure compliance with GDPR, ePrivacy and the Data Protection Bill
  • Ensuring data protection is a company-wide concern and not just an issue for IT
  • Ensuring your data protection provision is up to meeting the challenges of the modern digital age
  • Building trust and confidence in the protection and use of data
  • Going beyond legal requirements – exploring the ethics of data use

 

  • Looking at the future: how is the role of the DPO evolving?
  • How can DPOs help establish a culture of compliance within their organisation whilst ensuring stakeholder buy-in?
  • How can DPOs effectively attain and allocate resources to their privacy programme?
  • Creating an effective reporting structure for data audit; ensuring all data breaches are reported to the DPO immediately to facilitate an effective and adequate response
  • DPO checklist: understanding how your organisation collects, stores, utilises and transfers data to ensure you are compliant
  • DPO checklist: conducting an effective Privacy Impact Assessment to aid in achieving GDPR compliance

The afternoon chair will welcome back delegates and provide an overview of the afternoon’s discussions.

  • How can organisations use personal data to create economic and social value for individuals and businesses?
  • Managing privacy and security risks effectively, including cloud services hosting, network traffic management, advertising, analytics and big data
  • Enhancing customers’ privacy through the secure management of apps and network services
  • Complying with Privacy Commitments and EU data protection rules

  • Providing worldclass mental health services in a digital landscape through effective information governance frameworks
  • Creating an ambitious digital programme which encompasses information security, information risk management, patient and staff confidentiality, information sharing, clinical and organisational records management and data quality
  • Effectively regulate the compound use of clinical and corporate information according to new data protection rules
  • Ensuring clinical and corporate information is effectively managed whilst utilised to their maximum potential to benefit service users and the public
  • Complying with legal obligations for data protection, information sharing, disclosures, subject access and service user rights to confidentiality

  • How has DVLA developed an agile environment while embedding data security and privacy principles?
  • What is the impact of agile development on information assurance?
  • Developing an effective privacy policy to protect over 48 million driver records and 40 million vehicle records
  • Transitioning to risk-based approach to security rather than compliance
  • Cutting costs by nearly 40% over a year time and reaching one billion online transactions
  • Breaking cultural barriers to develop agile security environments and engaging users and product managers to achieve better results
  • Ensuring compliance with relevant privacy legislation by implementing a comprehensive Data Privacy Impact Assessment (DPIA)

  • Outlining how e-privacy is evolving in the digital economy landscape with a focus on online platforms
  • What are the trade-offs when pursuing or not respecting user privacy in the context of the business of platforms?
  • Looking at transaction and innovation platforms: what are the impacts of e-privacy on value growth and the network effect?
  • How can we ensure transparency in the use of personal data by online platforms?
  • Discussing latest policy updates and projects on online platforms including the OECD, the European Commission and the House of Lords
  • Looking at the future of platform leadership and innovation ecosystems: how innovation and consumers privacy interact to shape platform-based markets and the digital economy

  • Maximising the benefits of data through a global and collaborative approach
  • Reinforcing the importance of securing cross-borders data flows through the Privacy Shield Framework
  • Creating a new Regulation to simplify and consolidate existing law and fill any gaps and encourage data sharing and processing in the context of Brexit
  • Ensuring localisation of data is justified and minimising its negative impacts
  • Avoid weakening data security by prioritising location above critical factors such as access controls and encryption

  • Understand the security obligations that DPA and ePrivacy bring and apply those to cloud services
  • How you can approach understanding security of cloud services
  • What are some of the security risks and also security benefits of cloud migration
  • Examining how the use of cloud has moved beyond just compute and storage services

  • How can the need for data privacy and digital transformation be balanced?
  • How can increasingly divergent and potentially conflicting rules and regulatory systems be navigated?
  • How can organisations bring data protection & ePrivacy to the forefront of the workplace?
  • How can the e-Privacy Directive, eIDAS Regulation, GDPR, NIS Directive, PSD2 help to prevent or mitigate data breaches?
  • As the volume and value of personal data held by organisations continues to grow, how can organisations manage issues of trust and transparency?
  • Privacy after Brexit: What are the risks of increasingly strict data localisation requirements?