Data protection and data breach notification are no longer a media relations issue or opportunistic PR choice: It is law, with fines amounting up to 4% of the organization’s worldwide turnover. Not complying to the EU General Data Protection Regulation (GDPR) can lead to a financial drain equal to breaking EU Competition Law; a devastating amount for any business! The GDPR will affect almost every business that collects or handles the personal data of any European citizen. The legislation is welcome news for consumers who will get more say over how their data is handled, rights to be forgotten and transparency of data breaches. For organizations, the far-reaching nature of the GDPR means every aspect of a business will feel its impact and, in places, entire processes will need to be replaced or set up from scratch. GDPR covers a wide range of issues relating to personal data, such as privacy, monitoring and security. It compels businesses to apply privacy by design, disclose personal data breaches within 72 hours and encrypt the data they hold.

Session Materials:

Materials are now available for download. Attending to the event was free, but we charge a minor fee for the materials in order to ensure some income for the organization. As a non-profit organization, due to tax reasons, a small charge is asked to cater for the incurred costs. You will be transferred to Payloadz.com and be asked to pay for 121 € (100 € excl, 21% VAT). You will be able to receive an invoice if you leave your company details and PO number. Once paid, you will receive a downloadlink to download the .zip with all materials. 

 LSEC continues to support creating awareness on information security, will try to lower the barrier for ict security professionals. With this mechanism, all attendees have evaluated the value of the presented materials and can easily contribute to the future activities. 

LSEC GDPR Activities : Putting Data Protection in Practice, GDPR 2016-2018

The EU General Data Protection Regulation is the most important change in data privacy regulation in 20 years…and we're here to make sure you're prepared ! Our aim is to provide at least 5 sessions where different aspects of the GDPR implementation will be investigated in depth, on the basis of the legal principles, experiences on implementation and indication which tools might be supportive of these implementations. The seminars are oriented towards DPO’s & other privacy officers, CISO’s, CIO’s, legal counsel, compliance officers, tax & audit, Company Directors, Business and Technology Managers, business people who should be involved in the data protection of their customers and partners. It is a unique combination of regulatory requirements, business impact and challenges for practice that we are focusing on, a difference from either the pure legal or technology perspectives.

In this comprehensive Netherlands Session, we will condense some of the basics putting the perspective, with indications of current challenges and opportunities, but NOT ONLY from a LEGAL perspective, best practices  in implementing, and ideas on how to practically manage, setting the scene to Plan, Prepare and Change. Planning includes, preparing activities for internal awareness, top management, legal, but also operations and ict security. It includes starting to organize team meetings with product development and marketeers. Prepare includes to organize DPIA's, start investingating where your personal data records are being kept and if a DPO needs to be hired, how to get organized. It also includes documentating the various steps and preparing for additional activities such as improving security measures, policies and technologies.  Change will execute on these development tasks and organizing change actions within the organizations to ensure employees and partners include personal data protection attitudes and to ensure that everybody knows the DPO.

Condensed Day Netherlands - Utrecht : GDPR - PLAN to be Ready, PREPARE to Set, CHANGE to Go 

Agenda:

• 09.30: Registration & Welcome Coffee
• 10.15: Introduction LSEC and Agenda Setting by Wim Stoffelen from LSEC
• 10.30: GDPR in the context of consumer - client contact, by Corne van Rooij, VP Product & Strategic Alliances at iWelcome
• 11.15: The GDPR Landscape in detail, by Ulrich Seldeslachts, CEO from LSEC

12.00 Lunch

• 13.00: GDPR & data protection from a legal perspective, and seizing business opportunities, by Janneke Breeuwsma, Attorney at Law at Arthur's Legal
• 13.40: GDPR Privacy Impact Assessment, Paul Breitbarth, Director of EU Certification Research at Nymity
• 14.20: Utilizing Security Information & Event Management to control and protect from Personal Data Loss, by Koen Maris, CTO at ATOS

14.45: Coffee Break

• 15.00: Towards practical GDPR compliance & maintenance, by Richard Nootebos, IT Auditing and GDPR/Compliance Expert at Netwrix
• 15.40: Experiences from a DPO, by Antonio Chan, acting Data Protection Officer at RET
• 16.10: Data Protection Technologies - GDPR: an opportunity for Security Transformation, by Maurice Cashman, Director, Enterprise Architects at McAfee
• 16.40: Closing notes, end of event

For the most recent updates and background information on developments and recommendations on the implications of the GDPR, please visit http://ec.europa.eu/newsroom/just/item-detail.cfm?item_id=50083

Recent clarifications include : 

• Guidelines on the right to "data portability" pdf
• Guidelines on Data Protection Officers (‘DPOs’) pdf
• Guidelines for identifying a controller or processor’s lead supervisory authority pdf

Session Materials:

Materials are now available for download. Attending to the event was free, but we charge a minor fee for the materials in order to ensure some income for the organization. As a non-profit organization, due to tax reasons, a small charge is asked to cater for the incurred costs. You will be transferred to Payloadz.com and be asked to pay for 121 € (100 € excl, 21% VAT). You will be able to receive an invoice if you leave your company details and PO number. Once paid, you will receive a downloadlink to download the .zip with all materials. 

 LSEC continues to support creating awareness on information security, will try to lower the barrier for ict security professionals. With this mechanism, all attendees have evaluated the value of the presented materials and can easily contribute to the future activities. 

Practical Details & Registration:
GDPR Conference the Netherlands
Jaarbeurs Utrecht
Julianagebied
Jaarbeursplein, Utrecht