Home
Use our global calendar of privacy events to locate an event near you.
FILTER BY
| Accountability is one of the key pillars of the GDPR. Organisations are to ensure their privacy program meets the legal requirements and need to be able to demonstrate this upon request. Those organisations already working with Binding Corporate Rules (now codified in Article 47 GDPR), are already familiar with the need to be accountable, if they want to be able to transfer data between all branches and establishments of their group. If you meet the requirements for BCRs, you are likely on track to meet your GDPR requirements. Vice versa, if you meet your GDPR requirements, a lot of the preparations for BCRs will likely be done already.
This webinar will address the differences between GDPR obligations and BCR obligations to understand the necessary investment in privacy management required to apply for BCRs. Also, this webinar will speak to the advantages of BCRs as a data transfer mechanism, helping you to make the assessment if BCRs are useful for your organisation. Finally, we will discuss if and how BCRs could become a certification mechanism under Article 42 GDPR. Registration Link: https://register.gotowebinar.com/register/4315455978401162497 |
| Not-to-be-missed Web Panel Event – “Don’t Lose Access to Data Analytics Under the GDPR”
-> Even if you can’t make it, register now to ensure you will receive both a summary of the discussion and the FAQ’s. We are pleased to invite you to attend a webinar featuring Gwendal Le Grand of the CNIL, Jules Polonetsky of the Future of Privacy Forum (FPF) and Gary LaFever of Anonos. Their discussion will focus on the misconceptions, challenges and opportunities surrounding Data Analytics under the GDPR – a topic that is critical to every business around the globe. Now is the time to take advantage of their expertise to learn how to take the necessary action to enable ongoing use of GDPR compliant data. The panelists have generously given us 90 minutes of their time to allow for a thorough discussion and Q&A session. It is our goal to answer as many of your questions as possible. Any questions that are not able to be addressed during the live webinar will be answered following the webinar and distributed to all who registered. Register now to ensure that you will receive both a summary of the discussion and the FAQs. |
K-12 cybersecurity mishaps and incidents dot the country. As we enter a new school year, with new digital tools and services, what have companies and districts learned about safeguarding sensitive information? How can buyers be savvier when reviewing privacy and security policies? (What questions do they neglect or don’t know to ask?)
In an age where no security measures are foolproof, how can educators and entrepreneurs be good partners—and be ready to act when trouble hits the fan?
Panelists include:
· Emily Tabatabai (Data Privacy and Cybersecurity Counsel, Orrick)
· Kyleigh Nevis (Instructional Technology Coordinator, Oakland Unified School District)
· Lynzi Ziegenhagen (CEO, Schoolzilla)
· Mollie Carter (VP of Marketing and Adoption, Edmodo)
EdSurge Managing Editor, Tony Wan, will facilitate the conversation. Light snacks and drinks will be provided, courtesy of Orrick.
Free IAPP Web Conference
Brought to you by OneTrust
Operationalizing GDPR and Privacy By Design
What to Automate in Your Privacy Program
Broadcast date: Thursday, September 21, 2017
Time: 11:00 a.m.—12:00 p.m. EDT, 3:00—4:00 p.m. UTC
To operationalize GDPR, companies will need to build the principles of privacy by design into all their business processes. Join us for this educational web conference, and learn about the different parts of a privacy program, from PIA/DPIAs, data mapping, consent management, and cookie compliance to subject rights requests and vendor risk management. Discover how your organization can streamline privacy management through software automation, and where people are absolutely essential in the process.
Panelists:
• Ron De Jesus, CIPP/A, CIPP/C, CIPP/E, CIPP/US, CIPM, CIPT, FIP, Coach, Inc. Director, Privacy Compliance
• Julie Inderlied, CIPM, Chief Privacy Officer, Brambles
• Brian Philbrook, CIPP/US, CIPP/E, CIPM, CIPT, Privacy Counsel, OneTrust
In connection with this sponsored web conference (called the “Innovation Series,”) the IAPP provides an attendee list to the sponsor(s) of the Innovation Series for that particular web conference, which includes attendee names, titles, organizations and email addresses.
We have contracted with the sponsors so that they are:
• Only allowed to contact you about the subject of the Innovation Series;
• Not allowed to pass your email to a third party;
• Not allowed to retain your email if they have not established a business relationship with you after six months; and
• Obligated to provide you with a proper opt-out mechanism to prevent subsequent communications.
If you do not wish for your information to be passed along to the Innovation Series sponsor(s), you should not sign up for this free web conference. Alternatively, you may access the archive of the Innovation Series without providing information to sponsors. However, access to the archive is not live and provides less functionality.
Eligible CPEs: CIPP/A, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPM and CIPT
1.0 CPE credit
The next Conference will be held in Hong Kong on 25-29 September for the 39th time. The Conference will have a closed session (only for accredited members and observers) and a public conference.
Click here to watch a promotional video on the 39th Conference.
Surveillance is one of the most disputed and debated policies of our time. Yet, an in-depth and more nuanced discussion is missing as to how surveillance affects various stakeholders and is perceived from different angles, both in the EU and the US.
Surveillance authorities currently face several challenges, ranging from tackling the consequences of the recent Paris and Brussels terrorist attacks, the issue of an alleged lack of data sharing for security purposes (prevention, detection and investigation of serious crimes, including terrorism), reconciling the migrant crisis and the challenges it brings along with border protection concerns. On a broader scale, the entry into force of the Privacy Shield and the General Data Protection Regulation are on the agenda.
Surveillance often encompasses the general public and is not targeted to particular individuals who are suspects of being involved in serious crime activities, including the preparation of a terrorist attack. Within this perspective, it will be discussed how surveillance should be better regulated in order to achieve its goal most efficiently, whether the expansion of surveillance means is always beneficial to security and what are data subjects’ rights with regard to surveillance.
A further issue addressed will be the perspective of the means of surveillance and the interplay between, on the one hand, legal limitations and possibilities in this regard and, on the other hand, the constant technical development of innovative means of surveillance. Encryption, Privacy by Design and by Default, anonymization, dealing with big and raw data have become a part of constant legal and political debate in Europe and the world. The recent Apple dispute in the US epitomizes the importance of this debate.
The Pacific Rim is a hot bed of innovation in observational technologies and applying them to practical applications driven by advanced analytics and artificial technologies. For these applications to be sustainable there needs to be policy mechanisms that are respectful of the diverse ethical and legal cultures in the region, and interoperable with other regions. This session will explore the application of information policy governance for new technologies emerging in the region.
Organizers: Information Accountability Foundation and FPF
When: September 25, 2017; 3:30pm – 5pm
Where:
Kowloon Shangri-La
Kowloon Room II (M/F)
Hong Kong
This is an official side event of the 39th International Conference of Data Protection and Privacy Commissioners.
This event builds on the first Demonstrating Compliance event, hosted by Nymity during the 38th International Privacy Conference In Marrakesh, Morocco. The event is part of a three-year Nymity-funded research project into Demonstrating Compliance to a Rule of Law and into Certification of a Privacy Program. Our team of experts is preparing a 90 minutes interactive session in which we will present and discuss a number of topics with the participants:
•an evidence-based structured approach to accountability, that will help organisations to comply with a rule of law in any jurisdiction, and will help regulators/data protection authorities with compliance assessments during investigations, inspections and audits;
•benchmark data from a multitude of companies, providing insight in the technical and organisational measures implemented to meet their legal requirements
•a possible approach to obtain certifications based on the evidence, that could serve as a based for cross-border data transfers.If you wish to attend, will only need to register via this page. We will communicate further details about the event as soon as they are available.
Regulator Projects
With the General Data Protection Regulation (GDPR) in sight, Nymity has launched its next research projects: Demonstrating Compliance to Regulators, Based on a Rule of Law and The Possible Introduction of a New Certification Mechanism Tied to a Rule of Law. The outcomes of this project will be relevant for both organisations and regulators. During the course of these two Regulator Projects we will cooperate with data protection authorities and data controllers in order to test our ideas. The GDPR is the driver for the research and is the main example used throughout the Regulator Projects. As has been the custom for all of Nymity’s previous research, the outcomes of the projects will be jurisdiction-neutral and thus, can be applied around the world.The first paper of the Regulator Project can be downloaded here. The second paper will be made available during the Hong Kong side event.
Webinars
If you are not able to attend the 39th International Privacy Conference, or the Nymity side event, why don’t you join us for a webinar discussing the outcomes of the Conference? This webinar will take place on 11 October 2017 at 10:00 (EDT) / 16:00 (CET). More information is available here.Other webinars that may be of interest to you are:
•Demonstrating Compliance to Regulators – 14 September 2017
•Certify Your Privacy Program: Why and How? – 26 October 2017Registration Link: https://www.nymity.com/workshops-and-webinars/demonstrating-compliance-to-regulators-from-theory-to-practice.aspx
A challenging aspect of GDPR compliance is integrating the law’s requirements into existing vendor management relationships, agreements, policies and procedures. The GDPR makes the data controller explicitly responsible to ensure that its vendors handle personal data entrusted to them properly. This webinar will look at the controller’s GDPR compliance in relation to vendor management.
The Privacy Office plays a key role in vendor management, and is a stakeholder in the outcomes of the vendor management process in order to ensure compliance. With Information Security and Vendor Management, the Privacy Office identifies when 3rd-party processors are being used, engages the right policies and procedures to ensure privacy is covered in contracts, ensure proper due diligence is conducted and has ongoing reporting for all privacy related vendor management support. The privacy office offers the proper mix of guidance, support and oversight to ensure privacy compliance with laws and policies when processing is conducted outside of the organisation.
Registration Link: https://register.gotowebinar.com/register/4354384187582610433
Join us for a special edition of SmartPrivacy, an official side event at the International Conference of Data Protection & Privacy Commissioners (https://www.
Topic: Operationalise Accountability and Privacy by Design: What to Automate in Your Privacy Programme
Speakers:
• Andrew Clearwater, Director of Privacy, OneTrust
• Dr. Philipp Raether, Group Chief Privacy Officer, Allianz
Description:
With impending data protection regulation requirements, global organizations will need to build the principles of privacy by design into all of their business processes and be able to demonstrate accountability. In this session, learn about the different parts of a privacy programme from PIA/DPIAs, data mapping, consent management, and cookie compliance to subject rights requests and vendor risk management. Discover how your organisation can streamline privacy management through software automation, and where humans are absolutely essential.
Key Takeaways:
• How to best implement efficient and effective data handling practices in the face of the new GDPR requirements.
• Learn how to use PIAs and data maps to document and track new initiatives and demonstrate compliance.
• Practical tips for how privacy practitioners assess current practices to determine what can and cannot be automated.
Following SmartPrivacy, OneTrust is hosting an evening social event open to all.
Experience a unique view of Hong Kong from the harbour on a traditional Chinese sailing ship. Space is limited. Reserve your spot today!
https://www.eventbrite.com/e/