Compliance - GDPR - Process - Strategy
Thursday 10th December 2020
8:00am - 4:30pm GMT
The must-attend online event for the Data Protection and Technology community, featuring live keynote talks, breakouts and an interactive exhibition hall - all hosted live on a virtual platform. Free to attend for end-users working in IT, data protection and information security.
The Virtual Summit
When GDPR came into force it significantly raised the bar of obligation and accountability, ensuring that all organisations that handle personal data adhere to strict regulations around privacy, security and consent.
Over 2 years on from implementation and the landscape continues to shift, with the Schrems II ruling, geo-political tensions, and uncertainty around a post-Brexit adequacy decision creating a challenging environment for data protection practitioners.
The DP 2020 Summit will consider how data protection has progressed, with insight from frontline practitioners reflecting on key trends, challenges and best practice. The event will also provide an update from the ICO; discussing the Age Appropriate Design Code, the Data Sharing Code of Practice, and examining some of the persisting areas of misconception and non-compliance.
Core conference topics for the online event include:
• Key legal issues and obligations
• Data protection and information security
• Privacy Impact Assessments
• Databases, data mapping and classification
• Data flows and information sharing
Toby HayesGlobal Data Protection Controller, Pladis Global
Vivienne ArtzChief Privacy Officer, Refinitiv
Ken MacdonaldHead of ICO Regions, ICO
Maureen FalconerRegional Manager, ICO
Caitlin FennessyResearch Director, IAPP
Scott BarnettHead of Information Security & Cyber, NHS NSS
Jenny BrotchieSenior Policy Officer, ICO
Mark StephenJournalist & Broadcaster, BBC Scotland
Kami VanieaLecturer in Cyber Security & Privacy, University of Edinburgh
Alasdair AndersonGM EMEA, Protegrity
Joe ByrnePrivacy Solutions Engineer, OneTrust
Sorcha LorimerData Governance & Privacy, Global Open Finance CoE & Founder of Trace
DIGIT has rapidly grown into the largest independent business technology community in Scotland. We run an extensive series of virtual conferences and online events focused on core areas of emerging Technology, Digital and IT. We also run Scotland's leading IT & Digital News Platform with over 100,000 page views per month.
The virtual events provide a unique platform for knowledge exchange, drawing stakeholders together to explore best practice, technological innovation and business outcomes. Our conferences attract a senior delegate following and have become renowned as an important forum for high-level networking.
We are delighted to announce that DIGIT will be running our conference programme in a virtual environment. Not only will you be able to enjoy our full events line-up, but you’ll be able to log-in remotely and join us from anywhere in the world.
The opening session will consider how the data protection landscape has shifted over the last year; exploring how regulation and enforcement has progressed and how organisations have adapted their information security and privacy measures to adapt to the challenges of 2020. The session will also discuss effective organisational engagement, examining how practitioners can engage with the board and embed privacy within organisational culture.
09:15 Welcome from the Conference Chair
Mark Stephen, Journalist & Broadcaster, BBC Scotland
09:20 Regulator Update
Landscape update from the ICO
Areas of focus and development over 2020
New and upcoming guidance
Promoting the transition from compliance to best practice
Ken MacDonald, Head of ICO Regions, ICO
09:40 Proactive Information Security Architecture
How to build a proactive security architecture that aligns with the organisation
Adapting to the challenges and the changing working environment of 2020
Embedding security culture across the organisation
Choosing security standards and moving the bar
Scott Barnett, Head of Information and Cyber Security, NHS NSS
10:00 Privacy in the Boardroom: The Metrics, KPIs and Reporting You Need
Stakeholder support for a privacy program is key
With so much information at play, how do you know what to present in the boardroom?
Key metrics, deliverables, dashboards and reports that demonstrate functionality and success
How to take privacy compliance beyond the frameworks and build a strong program and culture of privacy
How to present key metrics that the board is interested in
Joseph Byrne, Privacy Solutions Engineer, OneTrust
10:20 Combined Q&A
Session 2 will explore a variety of key topics in a smaller and more interactive breakout setting. The breakouts will be run in 30-minute slots across three parallel streams, providing delegates the opportunity to attend three of the options live. The remaining breakouts will be accessible on-demand after the event.
11:00 Breakout A. The ICO Data Sharing Code of Practice
Finally, it’s here!
Why the delay and why the update;
What’s the take-away for you?
Maureen Falconer, Regional Manager, ICO
11:30 Breakout D. The Children’s Code: Introduction to the Age Appropriate Design Code
Provide you with an overview of the new statutory code, which services it applies to and how it will be enforced.
Understand the 12 Standards.
Help you identify how your organisation can conform and incorporate the Code’s standards into your design processes.
Jenny Brotchie, Senior Policy Officer, ICO
12:00 Breakout G. The Human Factor: Effective InfoSec Advice for the Remote Working Environment
An overview of human factors of security
Designing organizational security with people in mind
How employer/employee trust dynamics impact organizational level security
Thinking about human factors when designing security advice and requirements
Kami Vaniea, Lecturer in Cyber Security & Privacy, University of Edinburgh
12:30 Lunch, Networking & Exhibition
The closing session will consider the most prominent data protection trends that have emerged in 2020 and examine the associated challenges facing practitioners. From the increasing volume of sensitive personal data and the limitations of consent, to the shift to data localisation and the impact of the Schrems II decision on international data flows.
13:30 When Consent Won’t Cut It
2020 has brought its challenges, not least for data protection
Increased pressure and new types of sensitive personal data
Greater awareness of equality, diversity and inclusion issues
This data carries increased legal risks, and errors can have serious implications
on controllers and data subjects alike. This session will explain why
Why consent is not always the most appropriate basis, and what options are there
Toby Hayes, Global Data Protection Controller, Pladis Global
13:50 The Shift to Data Localisation
Data localisation is becoming an increasingly familiar trend
This is a sharp contrast to a world where trade is becoming increasingly digital
Understanding the different forms of data localisation
The drivers behind data localisation measures
The reality of the economic impact of data localisation
Vivienne Artz, Chief Privacy Officer, Refinitiv
14:10 Schrems II and Global Data: What’s Next?
July’s ECJ decision invalidated the EU-US Privacy Shield adequacy determination
Understand the implications of the “Schrems II” ruling
Learn how companies around the world are currently responding
Consider how U.S. EU and UK policymakers could respond
Caitlin Fennessy, Research Director, IAPP
14:30 Combined Q&A
14:55 Closing Remarks
15:00 Session Close
15:00 Networking & Exhibition
16:30 End of Day
*The agenda is provisional and subject to change