
5th Annual

Scotland's Largest Data Protection Conference for Data, Privacy and Technology professionals. Free to attend
Thursday 24th March
Dynamic Earth, Edinburgh, Scotland and online
The Summit
When GDPR came into force in 2018 it signalled a seismic shift for data protection. Four years on from implementation and the landscape continues to evolve, with the UK Government now looking to reform data protection legislation after exiting the EU.
The recent consultation, launched in September, sets out 70+ new proposals with an aim to reduce barriers to innovation and data flow while improving public services. But the proposals have faced criticism for deviating from the European consensus and raised concerns of an erosion in UK data protection standards.
The DP 2022 Summit will contextualise the latest developments within the data protection field, with insight from frontline practitioners reflecting on key trends, challenges and best practice. The event will also provide an update from the ICO, looking at regulatory priorities; the Age Appropriate Design Code and anonymisation.
Core conference topics include:
-
Data Protection reform
-
Information security and breach notification
-
Databases, mapping and classification
-
Global data flows and information sharing post Schrems II
-
Anonymisation, pseudonymisation and encryption
-
Impact of emerging technologies: AI, Cloud, Biometrics
The Summit will be planned as a hybrid event, with sessions hosted live at Dynamic Earth with an in-person audience and streamed via a virtual platform. This is FREE* to attend for Data, Privacy, IT & Digital end users only (*see the registration page for full T&Cs)
You can also read our Health & Safety guidance around attending in-person events during the pandemic, here.
About DIGIT
DIGIT has rapidly grown into the largest business technology community in Scotland. We host an extensive series of events focused on emerging technology and practical innovation. We also run Scotland's leading IT & Digital News Platform www.digit.fyi with over 100,000 page views per month.
The events provide a unique platform for knowledge exchange, drawing stakeholders together to explore challenges, best practice, and business impact. Our conferences attract a senior delegate following and have become renowned as an important forum for high-level networking.
You can contact us with any questions on events@digit.fyi
Participants
300
Topics
12
Sessions
4
Speakers
12
2022 Speakers
Head of ICO Regions, ICO
Partner & Head of Regulatory Law, Davidson Chalmers Stewart
DPO, MHR
Senior Policy Advisor: National Data Strategy, DCMS
Information Governance Officer, HS2
IT Partner, Johnston Carmichael
Director of Policy & Compliance, DMA
Regional Manager, ICO
Principal Policy Advisor, ICO
Head of Regulatory Strategy, ICO
Voltage Data Privacy & Protection, Micro Focus
Privacy Consultant, OneTrust
Journalist & Broadcaster, BBC Scotland
Senior Systems Engineer, Cohesity
Founder, DIGIT
2022 Agenda
THURSDAY 24TH MARCH 2022
08.30 Registration desk and exhibition area opens. Light refreshments provided.
SESSION 1
The opening session will consider how the data protection landscape has shifted over the last year and explore some of the latest developments facing practitioners. Starting with a look at the implementation of the national data strategy and the response to the recent data reform consultation; then turning to the growing issue of monitoring in the workplace, and the perennial issue of consent.
09:15 Welcome from the Conference Chair
Mark Stephen, Journalist & Broadcaster, BBC Scotland
09:25 Implementing the National Data Strategy
-
Overview of the National Data Strategy and update on implementation
-
Recent developments of the NDS mission to improve international data flows
-
The latest on the recent data reform consultation
-
Insights and learnings gained through the consultation and next steps
Lee Pope, Senior Policy Advisor: National Data Strategy Team, DCMS
09:45 Monitoring and Surveillance in the Workplace Post Pandemic
-
Is it ever appropriate, ethical or fair to monitor or surveil the workforce?
-
If it is, when, by whom and how?
-
Unpicking the key issues and questions
-
Providing some answers and guidance
Lesley Holmes, DPO, MHR
10:05 Valid Proof of Consent: How to Cultivate Trust & Demonstrate Compliance
-
Data, trust, and compliance are three big focus areas for businesses
-
Learn how obtaining valid proof of consent is key to acquiring and using sales and marketing data ethically
-
Learn how to empower your business to be an industry leader in customer trust and compliance
-
Discover the value of expanding your marketing-consented database
-
Gain an understanding of how to properly demonstrate regulatory compliance with records of consent
James Miller, Privacy Consultant, OneTrust
10:25 Combined Q&A
11:00 Refreshments & Networking
SESSION 2
Session 2 will explore a variety of key topics in a smaller and more interactive breakout setting. The breakouts will be run in 30-minute slots across three parallel streams, providing delegates the opportunity to attend two options live. The alternative breakouts will be accessible on-demand post event.
11:35 First Breakout Option
12:05 Transition
12:15 Second Breakout Option
12:45 Lunch & Networking
11:35 Breakout Option: Select from A,B or C
A. Developing a Culture of Information Governance
-
A FAIL-safe approach to information governance
-
Fair: Culture, Human failure
-
Approachable: Reputation, communication
-
Implemented: Practical, beyond the legal, hearts and minds
-
Long-term: Technically, organisationally
Cedric Krummes, Information Governance Officer, HS2
B. The Data Protection Journey During Periods of Change
-
Ensuring data protection is aligned to the culture of an organisation
-
Personal Data breaches - engaging teams on their responsibilities
-
What are the challenges presented by our ongoing migration to the Cloud
-
Processor diligence challenges
-
Challenges of managing remote working cyber security
Douglas Rintoul, IT Partner, Johnston Carmichael
C. Legislation, Codes and Best Practice
-
It’s easy to get confused on good marketing practice and legal obligations
-
We have created a simple hierarchy of information to help people make the right choices
-
The hierarchy: The Law, Codes of Practice, Codes of Conduct, Best Practice, The DMA Code
-
The DCMS Consultation – Data: A new direction
-
The benefits of Codes of Conduct
John Mitchison, Director of Policy & Compliance, DMA
---
12:15 Breakout Option: Select from D,E or F
D. How to Monetise Sensitive Personal Data in a GDPR world
-
Evaluation of data value to the business
-
See how personal data can be safely used in analytic or external monetisation use cases
-
Learn what is required to use production data in test and development environments in a GDPR-compliant manner
Brendan Rizzo, Voltage Data Privacy & Protection, Micro Focus
E. Threat Defense Architecture - Securing Next-Gen Data Management
-
Reasons to protect your data, maintain strict access controls and gain deep visibility to stay ahead of modern cybersecurity threats.
-
How and why cyber-criminals have evolved their tactics to become more aggressive
-
How to be prepared to recover if your organization falls victim to an attack
Richard Tilney, Senior Systems Engineer, Cohesity
F. Help: There's Been a Data Breach!
-
Large GDPR fines from the ICO and big class action claims for data breaches have hit the headlines
-
But small data breach claims are on the increase
-
Learn about what the courts have identified as a valid claim for a data breach - and what is not
-
Identify issues that may lead to claims in the future
Laura Irvine, Partner, Davidson Chalmers Stewart
SESSION 3
The afternoon session will be hosted by a team from the Information Commissioner’s Office, providing an update from the regulator and honing in on key areas of focus and guidance, including the Children’s Code, Data Sharing and Anonymisation. The session will then close with a combined Q&A, giving delegates the opportunity to ask questions and discuss regulatory issues with the ICO panel.
13:30 Regulatory Update from the ICO
-
The role of the ICO Scotland Office
-
An update on key pieces of guidance
-
Areas of focus for the regulator over 2022
Ken Macdonald, Head of Regions, ICO
Jenny Brotchie, Regional Manager, ICO
13:40 Lessons Learned on Implementing the Children’s Code
-
What is the Children’s code?
-
Industry awareness and implementation
-
How is the ICO supervising the code?
-
Key lessons learned to date
Michael Murray, Head of Regulatory Strategy, ICO
14:15 Building on the Data Sharing Code: Plans for Updating Anonymisation Guidance
-
Our updated guidance plans
-
The spectrum of identifiability
-
PETs and their role in safe data sharing
-
Current progress and next steps
Paul Comerford, Principal Policy Advisor, ICO
14:50 Ask the ICO - Combined Q&A Session
15:00 Close of Session
15:00 Networking & Drinks
16:00 Close of Conference
*The draft agenda is provisional and content is subject to change
2022 Sponsors

2022 Exhibitors



For enquiries about sponsorship and exhibitor opportunities, contact Ray Bugg on ray@digit.fyi