Data Protection & Privacy Conference November 2019
Ian Williams Limited
Next Event - 14th Nov 2019 - Madejski Football Stadium, Reading
Europe is now covered by the world's strongest data protection rules. The mutually agreed General Data Protection Regulation (GDPR) came into force on May 25, 2018, and was designed to modernise laws that protect the personal information of individuals. Companies covered by the GDPR are accountable for their handling of people's personal information. This can include having data protection policies, data protection impact assessments and having relevant documents on how data is processed. One of the biggest, and most talked about, elements of the GDPR has been the ability for regulators to fine businesses that don't comply with it. If an organisation doesn't process an individual's data in the correct way, it can be fined. If it requires and doesn't have a data protection officer, it can be fined. If there's a security breach, it can be fined. In the UK, these monetary penalties will be decided upon by Denham's office and the GDPR states smaller offences could result in fines of up to €10 million or two per cent of a firm's global turnover (whichever is greater). Those with more serious consequences can have fines of up to €20 million or four per cent of a firm's global turnover (whichever is greater). These are larger than the £500,000 penalty the ICO could previously issue.
We believe the ICO will start making an example out of companies over the next few years with bigger fines more frequently, is your business ready?
In the session Ardi will describe how GDPR forces us to press the reset button and look at reviewing and measuring the maturity level of your Data Governance.
The sporting world throws up a range of GDPR challenges.
From fan consents to the holding of player medical records. From working with minors through the academy structures to the interaction between clubs and their foundations. Mike Bohndiek, Managing Director at PTI Consulting – a specialist sports technology and compliance advisory group – will share insight from their client base which ranges from the Ryder Cup to Premiership Rugby clubs and a wealth of football clubs.
Actionable strategies to significantly increase your lead generation and sales ROI from marketing campaigns in a post GDPR world.
With changes to company marketing strategies brought around by data protection, James provides expertise if you're looking to maximise return on your marketing investment in a post GDPR world. Small or large, your company will benefit from these advanced strategies in addition to learning how to prepare for future changes to the marketing and data protection relationship.
James Oakley is a serial entrepreneur, author and speaker. He leads James Oakley Media; the ROI focused Digital Marketing Agency. He is recognised as one of the leading mobile marketing strategists, and was featured on the BBC and Radio 5’s Wake up to Money.
We often focus on the obligations and costs of GDPR compliance. While these are very real, the time has perhaps come to envisage GDPR also as an investment for new business opportunities. From enhancing customer service to improving supplier selection, optimizing business processes and clarifying roles and responsibilities including strategizing on corporate liability and security risk profile, GDPR may also be approached as a business differentiator leading to revenue growth. In fact, EU institutions claim that companies seeking to expand in Europe will create a whopping 2.3 billion euros in revenue per year by adopting GDPR-compliant cross-border data transfer schemes. This session looks at how to mitigate the regulatory risks while also attracting and retaining new business to eventually turn GDPR into a profit centre.
We are all immersed in a world that is increasingly fuelled by data. But there is an growing disconnect between those that build, control and benefit from the technology and the individuals whose personal information sits at its heart.
Data has the power to change people’s lives, influence elections and make or break businesses. But the law is only ever going to be one of a myriad of factors influencing people’s behaviour and attitudes and the speed of technological advancement means that law will always be playing catch up.
Enforcement and big fines matter to raise awareness, punish and deter poor compliance but the harm is almost always already done and data harms are real.
How can we reframe and broaden the conversation to ensure we embed the protection of data into everything we do, retaining the human qualities and freedoms we all too often take for granted both in our professional as well as our personal lives?
Now that the spotlight on data protection is dimming the challenge for data protection officers is embedding into an organisations processes and practices.
Dr Reeve focuses on data protection by design, a legal requirement to embed data protection at the design of new services and processes.
This paper looks at the practical examples and approaches to this new requirements
A brief look at the implications of Article 32 and the organisational measures needed to ensure the appropriate level of security.
This session will look at what organisations need to consider when embedding Data Protection into the psyche of their employees day to day work.
Specialties: Employment, benefits, data protection, investigations
Hooked on being at the heart of the big policy debates of the technology era. Extensive UK and EU digital & tech public policy knowledge, track record of developing campaigns from inception to launch and engaging government and stakeholders across industry.
I've spent more than 25 years learning in IT (the last 8 in Legal and Finance), but all the time designing, developing, managing (mainly people) and delivering transformational data governance, privacy and security programmes, but my role at John Lewis proved a great test of my skills.
At John Lewis, I was fortunate enough to be in the unique position of reporting directly into the Group Financial Director (CFO), but answerable to the Board and Audit & Risk Committee. This empowered me to ensure that when it came to data privacy and data security compliance, I was able to set the strategy, policy, direction and the tone (rate) of change necessary to take that great British icon into its optimal position of leveraging the data it collects, whilst at the same time protecting the rights of customers and Partners, by ensuring legal and regulatory compliance, delivering and enhancing Privacy and Security capabilities - whilst ensuring Trust and Transparency remains at the heart of our fantastic Brands - Waitrose and John Lewis.
Pragmatic and creative privacy professional with a passion for privacy and data protection. Over seven years’ experience, including three years of General Data Protection Regulation (GDPR) implementation along with regular speaking engagements at European privacy and GDPR conferences.
Director in the dispute resolution team at Freeths LLP, a leading national firm, working primarily from their Oxford office. I specialise in:
I am a solicitor-advocate with higher rights of audience enabling me to conduct trial advocacy up to Court of Appeal level, and have considerable experience of advocacy at County Court and High Court levels. Until 2018 I was the Chair of the Solicitors Association of Higher Court Advocates and remain an active committee member.