Events Calendar

GDPR- Plan to be Ready, Prepare to Set, Change to Go - Session 6: GDPR Bday Party
Friday 25 May 2018, 10:00am - 06:00pm
Hits : 2175
by This email address is being protected from spambots. You need JavaScript enabled to view it.


gdpr bannerweb


Data protection and data breach notification are no longer a media relations issue or opportunistic PR choice: It is law, with fines amounting up to 4% of the organization’s worldwide turnover. Not complying to the EU General Data Protection Regulation (GDPR) can lead to a financial drain equal to breaking EU Competition Law; a devastating amount for any business! The GDPR will affect almost every business that collects or handles the personal data of any European citizen. The legislation is welcome news for consumers who will get more say over how their data is handled, rights to be forgotten and transparency of data breaches. For organizations, the far-reaching nature of the GDPR means every aspect of a business will feel its impact and, in places, entire processes will need to be replaced or set up from scratch. GDPR covers a wide range of issues relating to personal data, such as privacy, monitoring and security. It compels businesses to apply privacy by design, disclose personal data breaches within 72 hours and encrypt the data they hold.

 

Session Materials:

Materials are now available for download. Attending to the event was free, but we charge a minor fee for the materials in order to ensure some income for the organization. As a non-profit organization, due to tax reasons, a small charge is asked to cater for the incurred costs. You will be transferred to Payloadz.com and be asked to pay for 121 € (100 € excl, 21% VAT). You will be able to receive an invoice if you leave your company details and PO number. Once paid, you will receive a downloadlink to download the .zip with all materials. 

 



LSEC GDPR Activities 2016-2018

The EU General Data Protection Regulation is the most important change in data privacy regulation in 20 years…and we're here to make sure you're prepared ! Our aim is to provide at least 5 sessions where different aspects of the GDPR implementation will be investigated in depth, on the basis of the legal principles, experiences on implementation and indication which tools might be supportive of these implementations. The seminars are oriented towards DPO’s & other privacy officers, CISO’s, CIO’s, legal counsel, compliance officers, tax & audit, Company Directors, Business and Technology Managers, business people who should be involved in the data protection of their customers and partners. It is a unique combination of regulatory requirements, business impact and challenges for practice that we are focusing on, a difference from either the pure legal or technology perspectives. In a first session, on December 19Th, the aim is to present the basics and the general overview, already with some current challenges and ideas, followed by the detailed sessions in 2017 & 2018

Session 6: GDPR Bday Party & Cybersecurity and Data Protection Management with Digital Identities 

Topics:

• GDPR birthday party
• Major Risks and challenges
• Data Protection Management with Digital Identities
• Help companies connect with European networks and benefit from research and research opportunities


1. Setting the Stage:

  • 10.00 Happy Birthday GDPR, let’s be aware of child diseases - Ulrich Seldeslachts, CEO of LSEC
    Ulrich Seldeslachts is the executive director of LSEC, a not for profit industry association focused on Information Security in Europe, based out of Belgium. Since 2012, LSEC has been leading industrial developments in transactional security and cyber security. Based upon its prior expertise in IT Systems Security and cyber security, LSEC is playing an active role in the development of security policies and practices in the domain. Prior to LSEC, Ulrich was responsible for the corporate development of a US-European Broadband wireless operator, a broadband internet operator, a security engineering company, and many other innovative projects. He is a corporate advisor to various VC’s in security, telecoms, ICT and media. He works as an independent columnist for various professional publications. Ulrich holds a BA in Communication Sciences, postgraduates in Computer Sciences and Economics and an MBA from LBS

2. The Law in Practice

  • 10.15 : Experiences from GDPR implementation throughout Europe and with CPNI Data Protection : Nick Caley, Vice President Privacy & Security at ForgeRock: With twenty years' experience covering all aspects of Information Security, Nick Caley has advised global clients in industry and government on security strategy and the operational capabilities that enable organisations to protect their most valuable assets. With ForgeRock, Nick is responsible for Financial Services and Regulatory with a focus on guiding organisations to deliver successful outcomes beyond compliance with GDPR, PSD2 and Open Banking
  • 10.45 : GDPR Implementation Case @ Large Public Organization, by Florin Georgescu [ Lead Legal Privacy Expert, Legal Counsel, DPO] and Fabrice Hecquet of Excellium: During this presentation Florin will guide us through the the implementation of the GDPR via a testimonial and use case. The testimonial is based on practical points like the issues encountered during the different processes: The importance of the preparation on the customer side, what is working and what not, how the legal and technical approach must be organized, what risk is acceptable for a customer, how to setup the planning for a GDPR implementation Project, define what results are expected and how to measure them


3. Practicing the Law:


  • 11.15 : Data Protection in a Global perspective for a dataprotection technology company and the impact of GDPR on American headquartered companies,Richard Weaver, Global Data Protection Officer of FireEye: Richard Weaver is the Global Data Protection Officer of FireEye. Prior to FireEye, Richard was Subject Matter Expert on the Privacy Act, E-Government Act, and Security and Privacy Controls for Federal Information Systems and Organizations (NIST 800-53 Appendix J) for the Federal Aviation Administration, the Agency for Healthcare Research and Quality (Department of Health and Human Services), and the Centers for Medicare and Medicaid Studies. Special fields of expertise include: Compliance with EU Data Protection Authority Obligations/GDPR; Privacy Policies and Notices, Evaluation and Evolution; Evaluation of Data Partners; Merger/Acquisition Privacy Review; Product Review; Data Breach Planning; Privacy Threshold Analyses (PTA); Privacy Impact Assessments (PIA); E-Government Act Compliance
  • 11.45 : Implementing GDPR within a BNPPF – practical use case, by Stéphanie De Clercq, Head of Data Protection and Privacy at BNP Paribas Fortis
  • 12.15 : Practical Experiences from GDPR implementations support tools by Martin Claich, Privacy Solution Consultant at OneTrust: Martin Claich is Privacy Solution Consultant at OneTrust. Prior to this, Martin was Implementation Consultant for enterprise accounts at WCN, a leading provider of graduate recruitment solutions for 2 years. CIPP/E and CIPM qualified, he is also a part time student at the Birkbeck School of Law in London. Now responsible for the practical implementation of GDPR and privacy best practice advice for multi-national clients, Martin brings over 6 years of experience in successful delivery of enterprise software implementation. A proactive and customer focused consultant, Martinhas been successful in helping companies streamline and automate processes, making compliance easier while reducing the impact on the business.
  • 12.45 : panel 1 : preach and practice
  • 13.15 : lunch

 

4. The Fundamentals for Data Protection are.....Identities

  • 14.00 : Identity - Based Decryption - Security that follows the Data, by Symantec
  • 14.30 : Enterprise-level identity management and governance approach to meet GDPR compliance across enterprise applications & data; by Wim Feyants, Identity and Access Governance Expert at IBM

 

5. GDPR Compliance and Privacy by Design

  • 15.00 : ERP & SAP Role concept: The key success factor for GDPR compliancy and User Provisioning process in SAP environments, by Johan Hermans, CEO at CSI – Tools: Johan started his career at Coopers & Lybrand in 1992 as a Financial Auditor and evolved to IT Auditor when leaving Coopers & Lybrand in 1997 to start his own company CSI Tools and axl & trax. Johan is a regular speaker at international conferences and a guest-professor at universities
  • 15.30 : coffee break & cake
  • 16.00 : SecDevOps and Agile in practice Privacy by Design and Data Protection (How I hacked LinkedIn and why we build BitSensor) by Ruben van Vreeland, CEO & Co-Founder of BitSensor

 

6. GDPR Management:

  • 16.30 : Catrine Søndergaard Byrne, Partner & owner at Labora Legal Lawfirm, and Member of the Board and Spokesman at at Dataethics [Denmark]: Catrine is Certified Information Privacy Professional (CIPP/E), and with offset, first in the international law firm Eversheds, Catrine has earned a highly specialized knowledge within data protection and GDPR, including cross-border projects with the Eversheds Data Protection Group. She has been a valued advisor and cooperating partner for clients and collaborators both in Denmark, as well as internationally. Furthermore, Catrine is an experienced lecturer, and is lecturing among others for The Association of Danish Law Firms, The Danish Technological Institute, The Danish Property Federation, and CfL-Center for Leadership. Catrine is the co-chair for IAPP’s KnowledgeNet (Denmark), member of the data protection working group with the Association of Danish Law Firms, and member of the Danish Data Protection Association. Catrine is author of the book “Data protection in HR” (Danish: “Persondata i HR”) published by Andersen Publications and is writing a book on general data protection regulation in Denmark. Finally, Catrine has a huge personal interest within the data ethical challenges companies are facing. Data ethics being the competitive advantage and an increasing focus on sustainable growth in the years to come. This has brought her together with likeminded people as project lead with the think-do-tank Dataethics.eu, organizing the annual European Dataethic Forum
  • 17.00 : panel 2 : Major Identified Challenges from Industry and last bits to do over the next months 
    - Ulrich Seldeslachts, CEO LSEC
    - Richard Weaver, Global DPO at FireEye
    - Sieben De Roovere, Privacy Practice Leader at Toreon
    - Florin Georgescu, Lead Legal Privacy Expert, Legal Counsel, DPO at Excellium Services


7. Now it's your Turn

  • 18.15 : Now its your turn, closing notes
  • 18.30 : Birthday Networking Drink


Practical Details:

GDPR Bday Party & Cybersecurity and Data Protection Management with Digital Identities
Friday, 25th of May at the IBM Innovations Center
IBM INNOVATION CENTER BRUSSELS
Bourgetlaan 42
1130 Brussel, Belgium

Audiences and Entrance Fees

  • Members of the LSEC Community: Free of Charge based on Priority Check In *
    This event is free of charge only for Members of the LSEC Community: LSEC Expert Members & LSEC Friends from the CISO & DPO Community & based on priority check in, whom received a registration link with password to the event. By this, LSEC creates events with a healthy balance between participation of cyber security suppliers and ' end users '; community driven activities where participants feel free to share their experiences and learn from each other.
  • End Users: Discounted Entrance Fee
    LSEC supports organizations that are subjected to the GDPR [End users]. Experts from these organizations receive a significant discount to the conference, only to cover some of the incurred costs by the organizers. 
  • Suppliers: Regular Entrance Fee & Limited Tickets Available

 

Session Materials:

Materials are now available for download. Attending to the event was free, but we charge a minor fee for the materials in order to ensure some income for the organization. As a non-profit organization, due to tax reasons, a small charge is asked to cater for the incurred costs. You will be transferred to Payloadz.com and be asked to pay for 121 € (100 € excl, 21% VAT). You will be able to receive an invoice if you leave your company details and PO number. Once paid, you will receive a downloadlink to download the .zip with all materials. 

 

Suppliers are also welcome to participate against the regular entrance fee; to join the discussions and network with speakers, organizers & visitors.

 

 


Terms & Conditions: For LSEC Members & LSEC Friends using the priority check in tickets, this event is free of charge, but not optional ! A cancelation later then 2 days prior to the event, or not showing up at the conference without any notice will result in a No Show of 150 € (excl. VAT)


Special Thanks to LSEC Member and our Host of the Day:


IBM


LSEC for Security Professionals

lsec-prof

LSEC for Security Companies

lsec-com

 

LSEC for enterprise & government

lsec-gov

 

LSEC for academia & research institutes

lsec-research

Request information about LSEC Membership

Click here

Sign up for our newsletter

Click here

Learn more about current projects & industry collaborations

Click here

Contact us

Click here

logo-acdcec

Privacy | Disclaimer | Responsible Disclosure Copyright LSEC - Leaders In Security 2002 - 2017 - Kasteelpark 10, 3001 Heverlee - Leuven | tel. +32.16.32.85.41