2-day In-person Seminar
The EU General Data Protection Regulation (GDPR)
Time: 9:00 AM to 6:00 PM
Venue: Hilton Zurich Airport
**Please note the registration will be closed 2 days (48 Hours) prior to the date of the seminar.
On 25th May 2018 the EU-GDPR becomes effective, this date has been set to give organisations time to prepare and comply with the regulations. This may seem to be a long way off, but for most organisations there is a lot to be done.
With the escalation of data breaches, the sooner data is safe guarded the better. Often a data breach is not discovered for months, sometimes six months, implementing new policies, security systems, negotiations with suppliers and training people in an organisation will take time. The sooner you start the more time you have to make a good decision on the options you face.
This introductory course will give you an overview of the history of Data Protection within the EU and introduce you to the enhancements and new obligations imposed by the EU GDPR.
Why you should attend:
Data protection law in the EU is about to undergo the most significant changes since the 1995 EU Data Protection Directive. The new EU General Data Protection Regulation (GDPR) came into effect in May 2016 and you have until May 2018 to become fully compliant. The new law will require significant preparatory work that you should begin now.
Will the EU GDPR apply to my business?
Does your organisation acquire, store, process, distribute, manage, modify or analyse any data which can be used to identify an EU citizen OR does your organisation trade with EU citizens?
If you answered YES, then no matter whether your organisation is based in the EU or elsewhere in the world, then the EU GDPR will apply to your business. Even though the EU-GDPR is an EU regulation, it has a global reach. If an organisation is outside of the EU it MUST still comply IF it handles, stores, manages, or processes EU citizens' personal data.
The new Regulation will impose many legal obligations on organisations that control or process data and will afford new rights to those whose personal data is being held. The financial penalties for non-compliance will be very substantial so it is absolutely vital that your organisation is fully prepared as early as possible.
Areas Covered in the Session:
- Key definitions
- Bands of penalties and range of awards for breaches
- Timeline to application of GDPR
- Six data protection principles, lawfulness and consent
- Sensitive data
- Rights of data subjects
- Controllers and processors
- Data protection by design
- Securing personal data
- Reporting data breaches
- Transferring personal data outside the EU
- Powers of supervisory authorities
- Role of the EDPB (European Data Protection Board)
Who Will Benefit:
- Directors
- Company Secretaries
- Compliance Officers
- HR Staff
- IT Admin
- Any employee with a responsibility for managing data
Day 1 Schedule
Lecture 1:
GDPR Context, Definitions and Penalties
- Determine what type of personal information is subject to the GDPR
- Determine the organisational and geographic scope of the GDPR
- Correctly define terms from the GDPR
- Identify where data subjects have a right to lodge a complaint with respect to data processing
Lecture 2:
GDPR Context, Definitions and Penalties (Cont.)
- Identify rights of a data subject to compensation
- Identify the infringements that will be subject to fines of up to 2% of annual turnover
- Identify the infringements that will be subject to fines of up to 4% of annual turnover
- Identify the date on which the GDPR comes into force across the EU
Lecture 3:
GDPR Principles
- the six principles for the processing of personal data
- how to demonstrate compliance with each of the six principles
- how controllers can demonstrate compliance
- lawful grounds for processing data
- the legal conditions for consent
- the additional conditions necessary for a child's consent
- which special categories of data may not be processed
- the circumstances in which special data may be processed
Lecture 4:
Rights of Data Subjects
- Identify the tests to respond transparently to data subject requests
- Identify the requirements on controllers when obtaining personal data
- Identify actions necessary in respect of personal data not obtained directly from data subjects
- Identify a data subject's rights of access
- Identify the grounds that give the right to be forgotten
- Identify the grounds that give the right to restrict processing
- Identify a data subject's right to data portability
- Identify a data subject's right to object to processing
Day 2 Schedule
Lecture 1:
Controller and Processor
- Differentiate between controllers and processors
- Identify requirements on controllers in respect of processing activities
- Identify how organisations are required to approach data protection by design
- Identify the requirements in respect of controllers or processors who are not established in the EU
- Identify the obligations applied to processors
Lecture 2:
Transfers of personal data
- Identify the principles covering the transfer of personal data outside the EU
- Identify where the EU posts details of organisations and/or countries that meet its adequacy test
- Identify the requirements in respect of binding corporate rules
Lecture 3:
Supervisory authorities
- Identify the powers of supervisory authorities
- Identify the role of a lead supervisory authority
Lecture 4:
Co-operation and consistency
- Identify the tasks of the European Data Protection Board (EDPB)
- Identify how the EDPB ensures consistency of application of the GDPR across the Member States
Want to register by P.O/Check?
We facilitate registration by P.O/Checks!Complete your registration in just a few easy steps
Please just download, fill out the registration form and send it to us either by email to support@globalcompliancepanel.com or just fax us at 302 288 6884.
Once the form is received, an invoice will be generated and sent back to your fax number.
Following this just send us your purchase order by fax at 302 288 6884
In case you wish to register by using check
NetZealous LLC,
DBA GlobalCompliancePanel,
161 Mission Falls Lane,
Suite 216, Fremont, CA 94539, USA
Phone: 1800 447 9407
Want to register by Wire Transfer?
Group participations
Get fabulous discounts by participating in groups of two or more.| No | Attendees | Discount |
|---|---|---|
| 1 | 2 Attendees | 10% off |
| 2 | 3 to 6 Attendees | 20% off |
| 3 | 7 to 10 Attendees | 25% off |
| 4 | 10+ Attendees | 30% off |
To avail the above group discounts, all the participants should register by making a single payment
Call our representative TODAY on 1800 447 9407 to have your seats confirmed!
Vanessa Cozens
CEO, The GDPR ClinicA Chartered Global Management Accountant (CGMA), Vanessa has many years experience working as a financial controller for multi-national businesses.
A holder of the EU GDPR Practitioner (EU GDPR P) qualification which is ISO 17024 accredited and issued by the International Board for IT Governance Qualifications (IBITGQ), she now works with businesses to help them with GDPR compliance and training.
She has vast experience working within senior management teams and has been involved with the establishment and implementation of corporate policies, ensuring that they meet the strict levels of both internal and external corporate standards.
Vanessa is now the CEO of The GDPR Clinic based in the UK and works with businesses to help them with GDPR compliance and training.