THE NEW EU DATA PROTECTION REGULATION: WHAT IS IT AND WHAT DO WE NEED TO DO? KALLIOPI SPYRIDAKI CHIEF PRIVACY STRATEGIST, EUROPE

Similar documents
Accelerate GDPR compliance with the Microsoft Cloud

BHBIA New Data Protection Rules. Pharma Company Perspective. Guy Murray Director, Market Research & Analytics, GC&BI MR Operations and Compliance, MSD

GDPR: A QUICK OVERVIEW

Eight Minute Expert GDPR

Do you handle EU residents personal data? The GDPR update is coming May 25, Are you ready?

COMPUTAMATRIX LIMITED T/A MATRICA Data Protection Policy September Table of Contents. 1. Scope, Purpose and Application to Employees 2

Technology's role in General Data Protection Regulation Dr. Prokopios Drogkaris Officer in NIS SECPRE 2017 Oslo

General Data Protection Regulation (GDPR) Key Facts & FAQ s

How icims Supports. Your Readiness for the European Union General Data Protection Regulation

PS Mailing Services Ltd Data Protection Policy May 2018

Data Management and Security in the GDPR Era

Getting ready for GDPR. Philipp Hobler EMEA Field CTO Global Technology Office Dell EMC Data Protection Solutions

DATA PROTECTION BY DESIGN

General Data Protection Regulation (GDPR) NEW RULES

Our agenda. The basics

PROJECT BACKGROUND AND RATIONALE

SCHOOL SUPPLIERS. What schools should be asking!

Robert Bond. Respecting Privacy, Securing Data and Enabling Trust a view from Europe

EU General Data Protection Regulation (GDPR) Achieving compliance

Changing times in Swiss Data Privacy: new opportunities? Microsoft Security Day 27 April 2017 Clara-Ann Gordon

GDPR: A technical perspective from Arkivum

GENERAL DATA PROTECTION REGULATION (GDPR)

Implementing the new GDPR: what does it mean for Universities?

Privacy Code of Conduct on mhealth apps the role of soft-law in enhancing trust ehealth Week 2016

Eight Minute Expert GDPR. Login. Password

General Data Protection Regulation (GDPR) The impact of doing business in Asia

Adtech and GDPR What to consider when choosing your partner

All you need to know and do to comply with the EU General Data Protection Regulation

The GDPR Are you ready?

ACCOUNTING TECHNICIANS IRELAND DATA PROTECTION POLICY GENERAL DATA PROTECTION REGULATION

GDPR Impacts. SEV GDPR Workshop Athens Giles Watkins, UK Country Leader. Wednesday 7th February,

GDPR: Is it just another regulation or a great opportunity for operational excellence? Athens, February 2018

Privacy Policy. Data Controller - the entity that determines the purposes, conditions and means of the processing of personal data

Managing Privacy Risk & Compliance in Financial Services. Brett Hamilton Advisory Solutions Consultant ServiceNow

Requirements for a Managed System

Arkadin Data protection & privacy white paper. Version May 2018

General Data Protection Regulation April 3, Sarah Ackerman, Managing Director Ross Patz, Consultant

Element Finance Solutions Ltd Data Protection Policy

Disruptive Technologies Legal and Regulatory Aspects. 16 May 2017 Investment Summit - Swiss Gobal Enterprise

G DATA Whitepaper. The new EU General Data Protection Regulation - What businesses need to know

SHELTERMANAGER LTD CUSTOMER DATA PROCESSING AGREEMENT

Data Protection policy

THE NEW GENERAL DATA PROTECTION REGULATION IMPLICATIONS FOR ENTERPRISES. Forum financier du Brabant wallon

Vanderbilt Video Surveillance. EU General Data Protection Regulation A Compliance Guide

Plan a Pragmatic Approach to the new EU Data Privacy Regulation

GDPR compliance: some basics & practical to do list

Site Builder Privacy and Data Protection Policy

Preparing for the GDPR

General Data Protection Regulation (GDPR)

1. Right of access. Last Approval Date: May 2018

Privacy Policy and GDPR Compliance

Cybersecurity Considerations for GDPR

Islam21c.com Data Protection and Privacy Policy

Privacy by Design, Security by Design

Data Processing Clauses

GDPR How to Comply in an HPE NonStop Environment. Steve Tcherchian GTUG Mai 2018

Creative Funding Solutions Limited Data Protection Policy

Beam Suntory Privacy Policy WEBSITE PRIVACY NOTICE

General Data Protection Regulation (GDPR) and the Implications for IT Service Management

General Data Protection Regulation Preparing for a new era in Privacy

FAQ about the General Data Protection Regulation (GDPR)

GDPR is coming in less than 2 months Are you ready?

USER CORPORATE RULES. These User Corporate Rules are available to Users at any time via a link accessible in the applicable Service Privacy Policy.

This Policy has been prepared with due regard to the General Data Protection Regulation (EU Regulation 2016/679) ( GDPR ).

Embedding GDPR into the SDLC. Sebastien Deleersnyder Siebe De Roovere

Getting ready for GDPR

I GOT ROBBED! HOW NYS AND THE US SHOULD PROTECT YOUR DATA ONLINE

Latest version, please translate and adapt accordingly!

CommuniGator. Your GDPR. Compliance Checklist

GRAHAM JONES - PRIVACY POLICY

Extension Architecture Privacy Notice

EU Data Protection Triple Threat for May of 2018 What Inside Counsel Needs to Know

Proposal for a model to address the General Data Protection Regulation (GDPR)

Project Better Energy Limited s registered office is Witan Gate House, Witan Gate West, Milton Keynes, Buckinghamshire, MK9 1SH

Privacy Notice For Ghana International Bank Plc customers

A practical guide to using ScheduleOnce in a GDPR compliant manner

GDPR and the Privacy Shield

THE GDPR PCLOUD'S ROAD TO FULL COMPLIANCE

Data Processor Agreement

Google Cloud & the General Data Protection Regulation (GDPR)

EU GDPR: The General Data Protection Regulation

Helping you to be GDPR compliant

Privacy Statement. Your privacy and trust are important to us and this Privacy Statement ( Statement ) provides important information

Embedding GDPR into the SDLC

Cova Security Gates Ltd Privacy Notice. Unit C1, Sussex Manor Business Park, Crawley, West Sussex, RH10 9NH, United Kingdom

This Privacy Policy applies if you're a customer, employee or use any of our services, visit our website, , call or write to us.

NOTICE OF PERSONAL DATA PROCESSING

Privacy Notice and Consent Form

GDPR - Are you ready?

Version 1/2018. GDPR Processor Security Controls

PRIVACY POLICY. 1. Introduction

Knowing me, Knowing you Managing and Using Contact Information. Philip Nolan, Partner, Head of Privacy and Data Protection Mason Hayes & Curran

PRIVACY POLICY BACKGROUND:

GDPR- the new General Data Protection Regulations. Staff PDM- 2 nd May 2018

Information memorandum. SUNČANI HVAR d.d.

The legal basis for the data collection described above is user s consent in accordance with Article 6(1)(1)(a) of the GDPR.

How the European Commission is supporting innovation in mobile health technologies Nordic Mobile Healthcare Technology Congress 2015

Privacy by Design and Privacy by Default

GDPR is here to stay. How prepared are you?

This guide is for informational purposes only. Please do not treat it as a substitute of a professional legal

Transcription:

THE NEW EU DATA PROTECTION REGULATION: WHAT IS IT AND WHAT DO WE NEED TO DO? KALLIOPI SPYRIDAKI CHIEF PRIVACY STRATEGIST, EUROPE

EU DATA PROTECTION REGULATION Kalliopi Spyridaki Chief Privacy Strategist, SAS Kalliopi provides thought-leadership within the SAS organization and to SAS customers on European data protection and privacy issues. Kalliopi strives to bridge the gap between public policy, legal and business considerations relating to privacy to ensure that both SAS and its customers remain at the forefront of the rapidly evolving European privacy landscape. She holds a law degree from the National and Kapodestrian University of Athens, Greece. Kalliopi also has a master s degree from the Eberhard-Karls-Universität Tübingen, Germany.

THE NEW EU DATA PROTECTION REGULATION: WHAT IS IT AND WHAT DO WE NEED TO DO? KALLIOPI SPYRIDAKI CHIEF PRIVACY STRATEGIST, EUROPE

CONTENT Scope & general principles New elements: fines, accountability & consumer empowerment SAS tools from perspective of GDPR compliance What to expect next

ONE OF THE MOST PROMINENT EU LAWS EVER General EU Data Protection Regulation (GDPR) Negotiated over four years Applicable in all EU countries from May 2018 Reflects a transitional era for society Privacy becomes a core business issue

WHAT IS IT ABOUT Only covers personal data Rules on how to collect & process personal data Main objective: enable individuals to protect their privacy

DATA PROTECTION & PRIVACY Used interchangeably but the protection of personal data is the means to protect privacy

PERSONAL DATA DATA OWNERSHIP

CONSUMER EMPOWERMENT TRANSPARENCY INFORMATION Customer Trust CONSENT SECURITY

NEW ELEMENTS Fines & Enforcement Up to 4% annual global turnover New powers to data protection authorities in each EU country New European Data Protection Board

NEW ELEMENTS Organisations need to review structures, policies, processes around collection and processing of personal data.

Map and review data flows Review security measures/data breach notification obligations Document & maintain detailed records of processing activities Review internal privacy policies & training material

Conduct Privacy Impact Assessments/ Implement Privacy by design & Privacy by default Appoint Data Protection Officer (DPO) Review contracts for third party processing contracts Ensure lawfulness of personal data transfers outside the EU

Put in place mechanisms to respond to individual s right to: Access, rectify, delete data ( right to be forgotten ); Provide & withdraw consent; Obtain information on processing Data portability

BIG DATA ANALYTICS A number of provisions have a direct impact on the big data analytics market: Collection & processing of personal data (only with specific legal bases & under certain conditions) Further processing of personal data for purposes other than collected Profiling of individuals with personal data De-identification of personal data: anonymisation, pseudonymisation, encryption

SAS AND OUR CUSTOMERS SAS delivers software and services to our customers. Responsibility to comply with GDPR remains with our customers. SAS can help our customers explore ways to configure SAS solutions in a manner that meets customers business needs AND at the same time fulfills customers compliance requirements.

SAS AND OUR CUSTOMERS SAS solutions can be customized to meet customer compliance requirements & policies Example SAS CUSTOMER INTELLIGENCE 360 Should personal data be collected? What types of personal data are required to be collected? How should they be stored (de-identification)? Consent: opt-in / opt-out

A NEW SAS SOLUTION FOR GDPR COMPLIANCE Addressing data management and data quality issues for GDPR compliance with SAS analytics

WHAT S NEXT More GDPR.! Guidelines, guidances, codes of conduct by EU bodies & national authorities Review of e-privacy Directive (including cookies provision) New EU laws on free flow of data inluding data localisation data ownership, access and re-use liability in IoT context

THANK YOU! KALLIOPI.SPYRIDAKI@SAS.COM

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback