A_PPP_9902 (1).jpg

5th Annual

DP22 LOGO 1200MM.png

Scotland's Largest Data Protection Conference for Data, Privacy and Technology professionals. Free to attend

Thursday 24th March 

Dynamic Earth, Edinburgh, Scotland and online


2022 Lead Sponsor


Speakers & Supporters

cyber academy.png

The Summit

When GDPR came into force in 2018 it signalled a seismic shift for data protection. Four years on from implementation and the landscape continues to evolve, with the UK Government now looking to reform data protection legislation after exiting the EU.


The recent consultation, launched in September, sets out 70+ new proposals with an aim to reduce barriers to innovation and data flow while improving public services. But the proposals have faced criticism for deviating from the European consensus and raised concerns of an erosion in UK data protection standards.


​The DP 2022 Summit will contextualise the latest developments within the data protection field, with insight from frontline practitioners reflecting on key trends, challenges and best practice. The event will also provide an update from the ICO, looking at regulatory priorities; the Age Appropriate Design Code and anonymisation.


Core conference topics include:

  • Data Protection reform

  • Information security and breach notification

  • Databases, mapping and classification

  • Global data flows and information sharing post Schrems II

  • Anonymisation, pseudonymisation and encryption

  • Impact of emerging technologies: AI, Cloud, Biometrics

The Summit will be planned as a hybrid event, with sessions hosted live at Dynamic Earth with an in-person audience and streamed via a virtual platform. This is FREE* to attend for Data, Privacy, IT & Digital end users only (*see the registration page for full T&Cs)


You can also read our Health & Safety guidance around attending in-person events during the pandemic, here. 


DIGIT has rapidly grown into the largest business technology community in Scotland. We host an extensive series of events focused on emerging technology and practical innovation. We also run Scotland's leading IT & Digital News Platform www.digit.fyi with over 100,000 page views per month.

The events provide a unique platform for knowledge exchange, drawing stakeholders together to explore challenges, best practice, and business impact. Our conferences attract a senior delegate following and have become renowned as an important forum for high-level networking.

You can contact us with any questions on events@digit.fyi










2022 Speakers 


2022 Agenda



08.30      Registration desk and exhibition area opens. Light refreshments provided. 




The opening session will consider how the data protection landscape has shifted over the last year and explore some of the latest developments facing practitioners. Starting with a look at the implementation of the national data strategy and the response to the recent data reform consultation; then turning to the growing issue of monitoring in the workplace, and the perennial issue of consent. 

09:15    Welcome from the Conference Chair

Mark Stephen, Journalist & Broadcaster, BBC Scotland

09:25    Implementing the National Data Strategy

  • ​Overview of the National Data Strategy and update on implementation

  • Recent developments of the NDS mission to improve international data flows

  • The latest on the recent data reform consultation

  • Insights and learnings gained through the consultation and next steps

Lee Pope, Senior Policy Advisor: National Data Strategy Team, DCMS

09:45    Monitoring and Surveillance in the Workplace Post Pandemic

  • Is it ever appropriate, ethical or fair to monitor or surveil the workforce?

  • If it is, when, by whom and how? 

  • Unpicking the key issues and questions

  • Providing some answers and guidance

Lesley Holmes, DPO, MHR 

10:05    Valid Proof of Consent: How to Cultivate Trust & Demonstrate Compliance

  • Data, trust, and compliance are three big focus areas for businesses

  • Learn how obtaining valid proof of consent is key to acquiring and using sales and marketing data ethically

  • Learn how to empower your business to be an industry leader in customer trust and compliance

  • Discover the value of expanding your marketing-consented database

  • Gain an understanding of how to properly demonstrate regulatory compliance with records of consent

James Miller, Privacy Consultant, OneTrust

10:25    Combined Q&A

11:00    Refreshments & Networking



Session 2 will explore a variety of key topics in a smaller and more interactive breakout setting. The breakouts will be run in 30-minute slots across three parallel streams, providing delegates the opportunity to attend two options live. The alternative breakouts will be accessible on-demand post event.

11:35    First Breakout Option
12:05    Transition
12:15    Second Breakout Option
12:45    Lunch & Networking

11:35 Breakout Option: Select from A,B or C

A. Developing a Culture of Information Governance

  • A FAIL-safe approach to information governance 

  • Fair: Culture, Human failure

  • Approachable: Reputation, communication

  • Implemented: Practical, beyond the legal, hearts and minds

  • Long-term: Technically, organisationally

Cedric Krummes, Information Governance Officer, HS2

B. The Data Protection Journey During Periods of Change

  • Ensuring data protection is aligned to the culture of an organisation

  • Personal Data breaches - engaging teams on their responsibilities  

  • What are the challenges presented by our ongoing migration to the Cloud

  • Processor diligence challenges

  • Challenges of managing remote working cyber security

Douglas Rintoul, IT Partner, Johnston Carmichael 

C. Legislation, Codes and Best Practice

  • It’s easy to get confused on good marketing practice and legal obligations

  • We have created a simple hierarchy of information to help people make the right choices

  • The hierarchy: The Law, Codes of Practice, Codes of Conduct, Best Practice, The DMA Code

  • The DCMS Consultation – Data: A new direction

  • The benefits of Codes of Conduct 

John Mitchison, Director of Policy & Compliance, DMA 


12:15 Breakout Option: Select from D,E or F

D. How to Monetise Sensitive Personal Data in a GDPR world

  • Evaluation of data value to the business

  • See how personal data can be safely used in analytic or external monetisation use cases

  • Learn what is required to use production data in test and development environments in a GDPR-compliant manner

Brendan Rizzo, Voltage Data Privacy & Protection, Micro Focus


E. Threat Defense Architecture - Securing Next-Gen Data Management


  • Reasons to protect your data, maintain strict access controls and gain deep visibility to stay ahead of modern cybersecurity threats.

  • How and why cyber-criminals have evolved their tactics to become more aggressive

  • How to be prepared to recover if your organization falls victim to an attack

Richard Tilney, Senior Systems Engineer, Cohesity

F. Help: There's Been a Data Breach!


  • Large GDPR fines from the ICO and big class action claims for data breaches have hit the headlines

  • But small data breach claims are on the increase

  • Learn about what the courts have identified as a valid claim for a data breach - and what is not

  • Identify issues that may lead to claims in the future

Laura Irvine, Partner, Davidson Chalmers Stewart

SESSION 3     


The afternoon session will be hosted by a team from the Information Commissioner’s Office, providing an update from the regulator and honing in on key areas of focus and guidance, including the Children’s Code, Data Sharing and Anonymisation. The session will then close with a combined Q&A, giving delegates the opportunity to ask questions and discuss regulatory issues with the ICO panel. 

13:30    Regulatory Update from the ICO

  • The role of the ICO Scotland Office

  • An update on key pieces of guidance

  • Areas of focus for the regulator over 2022

Ken Macdonald, Head of Regions, ICO

Jenny Brotchie, Regional Manager, ICO

13:40    Lessons Learned on Implementing the Children’s Code

  • What is the Children’s code?

  • Industry awareness and implementation

  • How is the ICO supervising the code?

  • Key lessons learned to date

Michael Murray, Head of Regulatory Strategy, ICO

14:15    Building on the Data Sharing Code: Plans for Updating Anonymisation Guidance


  • Our updated guidance plans

  • The spectrum of identifiability 

  • PETs and their role in safe data sharing

  • Current progress and next steps

Paul Comerford, Principal Policy Advisor, ICO

14:50    Ask the ICO - Combined Q&A Session

15:00    Close of Session

15:00    Networking & Drinks

16:00    Close of Conference

*The draft agenda is provisional and content is subject to change


2022 Sponsors


2022 Exhibitors

DCS Logo with strap RGB.jpg

For enquiries about sponsorship and exhibitor opportunities, contact Ray Bugg on ray@digit.fyi