celerate GDPR compliance h the use of new technologies oni Papanikolaou orate, External & Legal Affairs Director soft Greece, Cyprus & Malta

Transcription

1 celerate GDPR compliance h the use of new technologies oni Papanikolaou orate, External & Legal Affairs Director soft Greece, Cyprus & Malta

2 Regulations Digital Economy Externa al Challenges g Cyber Crime Consumer Expectation

3

4

5

6

7

8 Compliance Officer IT Director Interna al Complexity Security Officer Business Users

9

10 oviding clarity and consistency for the otection of personal data he General Data Protection egulation (GDPR) imposes new ules on organizations in the European nion (EU) and those that offer goods nd services to people in the EU, or thatt ollect and analyze data tied to EU esidents, no matter where they are ocated. Enhanced personal privacy rights Increased duty for protecting data Mandatory breach reporting Significant penalties for non-comp Microsoft believes the GDPR is an important step forward for clarifying and enabling individual privacy rights

11 hat are the key changes to address the GDPR? Personal privacy Controls and notifications Transparent policies IT and training iduals have the right to: ccess their personal ata orrect errors in their ersonal data rase their personal data bject to processing of heir personal data xport personal data Organizations will need to: Protect personal data using appropriate security Notify authorities of personal data breaches Obtain appropriate consents for processing data Keep records detailing data processing Organizations are required to: Provide clear notice of data collection Outline processing purposes and use cases Define data retention and deletion policies Organizations will need to: Train privacy personnel & employee Audit and update data policies Employ a Data Protection Officer (if required) Create & manage compliant vendor contracts

12 Protecting customer privacy with GDPR

13 DPR COMPLIANCE ILL REQUIRE A ECURE PRODUCTIVE NTERPRISE

14 ust ect your organization, data and people grated lligent security Transparency and control Privacy by design Compliance leadership

15 DPR COMPLIANCE ILL REQUIRE A HOLISTIC PPROACH TO SECURITY

16 Malware Trillions Hundreds of Billions Clients VISIBILITY CONTEXT Billions Web content Hundreds of Millions Cloud platform Millions TRUST 1M+ Development Security Multi-platform Decades of experience enterprise EXPERIENCE EXPERTISE Operational Security Combatting Cybercrime Runs on Azure Incident Investigation

17 GD DPR Comp pliance Simplify your privacy journey Uncover risk & take action Leverage guidance from experts

18 We will stand behind you with contractual commitmen for our cloud services that: Meet stringent security requirements Support customers in managing data subject reque Provide documentation that enables customers to demonstrate compliance for all the other requirem of the GDPR applicable to processors and more Microsoft was the first major cloud services provider to make these commitments to its customers. Our goal is simplify compliance for our customers with both the GDPR and other major regulations. The GDPR commitments are now available in the Onlin Services Terms (OST) at

19 w do I get started? 1 Discover Identify what personal data you have and where it resides Govern how personal data is used 2 Manage and accessed 3 Protect Establish security controls to prevent, detect, and respond to vulnerabilities & data breaches 4 Report Keep required documentation, manage data requests and breach notifications

20 ake no mistake, the GDPR sets a new d higher bar for privacy rights, for curity, and for compliance. d while your journey to GDPR may em challenging, Microsoft is here to lp all of our customers around the rld. Brad Smith President & Chief Legal Offic cer Microsoft Corporation Microsoft GDPR Trust Center

21 Discover more about our principled approach at Explore our certifications at Accelerate your GDPR journey at Learn more about our approach to security at Learn about digital reform at

22