Se ha denunciado esta presentación.
Se está descargando tu SlideShare. ×

GDPR and Data Breach notifications

18 de abr de 2018
2 recomendaciones 279 visualizaciones
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Próximo SlideShare
Experiencing the Mobile Mainframe
Experiencing the Mobile Mainframe
Cargando en…3
×

Eche un vistazo a continuación

GITA April 2015 Newsletter
Kevin Moore MSIT, MISM
Data Protection Scotland Summit 2019
Ray Bugg
Technology_Industry_Survey_2015
Jenna Hughes-Gage
Tech 15
Joseph Foy
The #BigData Dilemna
Vivendi Content
Role of CAs in cyber world
CA. (Dr.) Rajkumar Adukia
25 of the Best Tips from Twitter on Ethics, eDiscovery, and GTD
Oregon Law Practice Management
Smart Data Module 5 d drive_legislation
caniceconsulting
1 de 60 Anuncio

GDPR and Data Breach notifications

18 de abr de 2018
2 recomendaciones 279 visualizaciones

Descargar para leer sin conexión

Derecho

Probably the best & most relevant GDPR presentation on Slideshare for Data Breach notifications and DPIA

Presented April 2017 at Cyber Talks London

Probably the best & most relevant GDPR presentation on Slideshare for Data Breach notifications and DPIA

Presented April 2017 at Cyber Talks London

Derecho
Anuncio

Recomendado

Experiencing the Mobile Mainframe
Philip Likens
1.7k vistas
53 diapositivas
A Farmers Market of Open Data
Megan Taylor
671 vistas
47 diapositivas
News Applications: WAN-IFRA Presentation, Oct. 2011
Scott Klein
327 vistas
40 diapositivas
Seguridad inform tica
GloriaJazz95
324 vistas
41 diapositivas
2016 IQPC DDX Keynote - Paul Ricketts - Oracle
Paul Ricketts
194 vistas
16 diapositivas
SnW18: opening slide
NECST Lab @ Politecnico di Milano
140 vistas
29 diapositivas
Aplicaciones web 2_0_google_docs
Vivi Aguilar
436 vistas
10 diapositivas
Aplicaciones web 2_0_google_docs
Tefiit Paredes
307 vistas
10 diapositivas
Anuncio

Más Contenido Relacionado

Similares a GDPR and Data Breach notifications (20)

GITA April 2015 Newsletter
Kevin Moore MSIT, MISM
270 vistas
Data Protection Scotland Summit 2019
Ray Bugg
301 vistas
Technology_Industry_Survey_2015
Jenna Hughes-Gage
83 vistas
Tech 15
Joseph Foy
184 vistas
The #BigData Dilemna
Vivendi Content
6.3k vistas
Role of CAs in cyber world
CA. (Dr.) Rajkumar Adukia
636 vistas
25 of the Best Tips from Twitter on Ethics, eDiscovery, and GTD
Oregon Law Practice Management
163 vistas
Smart Data Module 5 d drive_legislation
caniceconsulting
252 vistas
Virtual Gov Day - Introduction & Keynote - Alan Webber, IDC Government Insights
Splunk
2.7k vistas
A Pratical Guide to GDPR - F.Coin
Franco Coin
203 vistas
Cyber Security Incident Response
PECB
9.7k vistas
Data and Ethics: Why Data Science Needs One
Tim Rich
1.3k vistas
Weekly eDiscovery Top Story Digest - March 5, 2014
Rob Robinson
624 vistas
2015 Conference Brochure - Trust Security Agility - Businesses Better Prepare...
Neil Curran MSc CISSP CRISC CGEIT CISM CISA
1k vistas
Capturing Opportunity involving Big Data & IoT at the age of IR 4.0 in Bangla...
Md. Refaul Karim Chowdhury FCA, FFA, FIPA
67 vistas
Spotlight on Technology 2017
Craig Devlin
335 vistas
Privacy in the digital era
CHEMISTRY AGENCY
2.7k vistas
IoT: How Data Science Driven Software is Eating the Connected World
DataWorks Summit
699 vistas
Big data 4 4 the art of the possible 4-en-web
Rick Bouter
1.2k vistas
Empowering Digital Lifestyle in Internet of Things
Dr. Mazlan Abbas
497 vistas
GITA April 2015 Newsletter
Kevin Moore MSIT, MISM
270 vistas
8 diapositivas
Data Protection Scotland Summit 2019
Ray Bugg
301 vistas
156 diapositivas
Technology_Industry_Survey_2015
Jenna Hughes-Gage
83 vistas
48 diapositivas
Tech 15
Joseph Foy
184 vistas
48 diapositivas
The #BigData Dilemna
Vivendi Content
6.3k vistas
64 diapositivas
Role of CAs in cyber world
CA. (Dr.) Rajkumar Adukia
636 vistas
50 diapositivas

Más de Steve Hilton (16)

How Smart Are Cities
Steve Hilton
10 vistas
Meetups
Steve Hilton
9 vistas
Manchester College
Steve Hilton
60 vistas
Amazon Go
Steve Hilton
100 vistas
AI and Jobs
Steve Hilton
83 vistas
Liberty Apps Culture Deck
Steve Hilton
1.2k vistas
Appocalypse, or How I Learned to Stop Worrying and Love AI
Steve Hilton
133 vistas
What Touring 3 Tech Giants Taught Liberty Apps About Culture
Steve Hilton
105 vistas
Netflix
Steve Hilton
361 vistas
Google
Steve Hilton
398 vistas
Linkedin
Steve Hilton
339 vistas
The Revolution Will Not Be Televised… It’s screenless
Steve Hilton
87 vistas
Manchester Tech Community 2.0
Steve Hilton
110 vistas
Digital Transformation
Steve Hilton
332 vistas
User Experience for Android
Steve Hilton
223 vistas
Maximising UX for Mobile Applications
Steve Hilton
493 vistas
How Smart Are Cities
Steve Hilton
10 vistas
18 diapositivas
Meetups
Steve Hilton
9 vistas
14 diapositivas
Manchester College
Steve Hilton
60 vistas
18 diapositivas
Amazon Go
Steve Hilton
100 vistas
17 diapositivas
AI and Jobs
Steve Hilton
83 vistas
21 diapositivas
Liberty Apps Culture Deck
Steve Hilton
1.2k vistas
20 diapositivas
Anuncio

Más reciente (20)

DOA ARWAH 17323.docx
MultidigitalService
0 vistas
What is Consumerism.pptx
Saritha Krishnakumar
3 vistas
Representation of Weaker Sections in Judiciary.pdf
sabrangsabrang
9 vistas
IRS Form 8300.pdf
Todd Spodek
0 vistas
Product and Service Offerings Discussion.docx
sdfghj21
1 vista
Nature and Patterns of Urban Crimes With Special Reference to Colombo City in...
International Journal of Research and Innovation in Social Science (IJRISS)
3 vistas
conflictmanagementppt-120912065503-phpapp02.pdf
AmanShawRollno127C
0 vistas
Representation of Women (1).pdf
sabrangsabrang
0 vistas
Vicarious Liability - Unit II.ppt
AkshayTathe6
2 vistas
Indian Constitution unit II.ppt
vhjfjfjmgkkgj
2 vistas
UTILITARISMO.pptx
JamesHuamani3
3 vistas
Constitutional Law II.pdf
RanjitKumarGudipati
5 vistas
The Special Marriage Act, 1954.pptx
DeborahAR1
0 vistas
Ed-230317 FINAL Rajasthan table on HW and trishul.pdf
sabrangsabrang
43 vistas
Trafficking of Karamoja Women and Girls From North-Eastern Uganda into Nairob...
International Journal of Research and Innovation in Social Science (IJRISS)
2 vistas
Anti-Drunk and Drugged Driving Act (RA 10586).pptx
HaroldEstacio
2 vistas
Republic act 9262 LECTURE.ppt
KinseSac
2 vistas
Alternative Dispute Resolution methods Level III - B.Sc QS (Salford) March ...
TheGimhan123
0 vistas
2-kinematics.ppt
RahulGupta257719
1 vista
Week 11 - Professional Undertakings.pptx
VikyNstain
0 vistas
DOA ARWAH 17323.docx
MultidigitalService
0 vistas
1 diapositiva
What is Consumerism.pptx
Saritha Krishnakumar
3 vistas
12 diapositivas
Representation of Weaker Sections in Judiciary.pdf
sabrangsabrang
9 vistas
3 diapositivas
IRS Form 8300.pdf
Todd Spodek
0 vistas
5 diapositivas
Product and Service Offerings Discussion.docx
sdfghj21
1 vista
2 diapositivas
Nature and Patterns of Urban Crimes With Special Reference to Colombo City in...
International Journal of Research and Innovation in Social Science (IJRISS)
3 vistas
9 diapositivas

GDPR and Data Breach notifications

  1. 1. @LibertyAppsUK@CYBERTALKLDN GDPR Understanding the risks
  2. 2. @LibertyAppsUK@CYBERTALKLDN Steve Hilton
  3. 3. @LibertyAppsUK@CYBERTALKLDN Trusted Reviews
  4. 4. Apps That Mobilise Lives 4 Public Health England Hackathon winners
  5. 5. @LibertyAppsUK@CYBERTALKLDN Liberty Apps
  6. 6. @LibertyAppsUK@CYBERTALKLDN
  7. 7. @LibertyAppsUK@CYBERTALKLDN THE IMPORTANT STATS
  8. 8. @LibertyAppsUK@CYBERTALKLDN
  9. 9. @LibertyAppsUK@CYBERTALKLDN
  10. 10. @LibertyAppsUK@CYBERTALKLDN
  11. 11. @LibertyAppsUK@CYBERTALKLDN
  12. 12. @LibertyAppsUK@CYBERTALKLDN
  13. 13. @LibertyAppsUK@CYBERTALKLDN GDPR compliance timeline
  14. 14. @LibertyAppsUK@CYBERTALKLDN
  15. 15. @LibertyAppsUK@CYBERTALKLDN
  16. 16. @LibertyAppsUK@CYBERTALKLDN Phase 1: Need to understand
  17. 17. @LibertyAppsUK@CYBERTALKLDN Phase 2: Assess Risk
  18. 18. @LibertyAppsUK@CYBERTALKLDN Phase 2: Assess Risk (1 of 2)
  19. 19. @LibertyAppsUK@CYBERTALKLDN Phase 2: Assess Risk (2 of 2)
  20. 20. @LibertyAppsUK@CYBERTALKLDN Phase 3: Implement
  21. 21. @LibertyAppsUK@CYBERTALKLDN
  22. 22. @LibertyAppsUK@CYBERTALKLDN
  23. 23. @LibertyAppsUK@CYBERTALKLDN Do we have a data retention policy? It is down to the board of directors to decide what that retention policy is, when and how will this approval be received? – data must not be kept for any longer than is deemed necessary.
  24. 24. @LibertyAppsUK@CYBERTALKLDN
  25. 25. @LibertyAppsUK@CYBERTALKLDN • How would we erase an individuals’ data? • What is our process for correcting individuals’ data? • Can we manage / remove consent for direct marketing and automated decision making?
  26. 26. @LibertyAppsUK@CYBERTALKLDN What will we do if a customer exercises their rights? How would we handle a request? What processes & policies do we have in place should we plan to refus What will our partners whom we share data with need to do? Do we have confidence that these partners are compliant and would no
  27. 27. @LibertyAppsUK@CYBERTALKLDN
  28. 28. @LibertyAppsUK@CYBERTALKLDN
  29. 29. @LibertyAppsUK@CYBERTALKLDN Employers can’t rely on employee consent to process HR data
  30. 30. @LibertyAppsUK@CYBERTALKLDN Employers can’t rely on employee consent to process HR data
  31. 31. @LibertyAppsUK@CYBERTALKLDN
  32. 32. @LibertyAppsUK@CYBERTALKLDN
  33. 33. @LibertyAppsUK@CYBERTALKLDN  What will we do if there is a breach?  How would we detect, report and investigate a breach?  To manage effective & efficient investigation: Assess which types of data are held. Document which types fall within the notification requirement and the process to be followed if there is a breach.
  34. 34. @LibertyAppsUK@CYBERTALKLDN Data Breach Notification https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/personal-data-breaches/
  35. 35. @LibertyAppsUK@CYBERTALKLDN Optimal data breach notification timeline
  36. 36. @LibertyAppsUK@CYBERTALKLDN Incident occurs
  37. 37. @LibertyAppsUK@CYBERTALKLDN Clock starts
  38. 38. @LibertyAppsUK@CYBERTALKLDN Key decisions
  39. 39. @LibertyAppsUK@CYBERTALKLDN Notifications
  40. 40. @LibertyAppsUK@CYBERTALKLDN Post notification period
  41. 41. @LibertyAppsUK@CYBERTALKLDN Data Breach Notification
  42. 42. @LibertyAppsUK@CYBERTALKLDN How would we implement an assessment in our organisation? Who would carry it out? Would it be run centrally or locally?
  43. 43. @LibertyAppsUK@CYBERTALKLDN A data protection impact assessment (DPIA) is a process to help you identify and minimise the data protection risks of a project. Data protection impact assessments (DPIA)
  44. 44. @LibertyAppsUK@CYBERTALKLDN Data protection impact assessments (DPIA)
  45. 45. @LibertyAppsUK@CYBERTALKLDN
  46. 46. @LibertyAppsUK@CYBERTALKLDN
  47. 47. @LibertyAppsUK@CYBERTALKLDN Phase 4: Demonstrate
  48. 48. @LibertyAppsUK@CYBERTALKLDN Control over processes that collect and use personal data?
  49. 49. @LibertyAppsUK@CYBERTALKLDN Appropriate measures?
  50. 50. @LibertyAppsUK@CYBERTALKLDN Ability to respond?
  51. 51. @LibertyAppsUK@CYBERTALKLDN Records of what we do?
  52. 52. @LibertyAppsUK@CYBERTALKLDN A published Privacy Notice
  53. 53. @LibertyAppsUK@CYBERTALKLDN Consent and individual rights management.
  54. 54. @LibertyAppsUK@CYBERTALKLDN
  55. 55. @LibertyAppsUK@CYBERTALKLDN Difficulty identifying and reporting a breach within 72 hours 2017 VERITAS GDPR REPORT https://www.veritas.com/content/dam/Veritas/docs/reports/gdpr-report-ch2-en.pdf
  56. 56. @LibertyAppsUK@CYBERTALKLDN Are former employees able to access company data? 2017 VERITAS GDPR REPORT https://www.veritas.com/content/dam/Veritas/docs/reports/gdpr-report-ch2-en.pdf
  57. 57. @LibertyAppsUK@CYBERTALKLDN The enemy within? 2017 Varonis Data Risk Report https://info.varonis.com/hubfs/docs/research_reports/2017-data-risk-report.pdf
  58. 58. @LibertyAppsUK@CYBERTALKLDN GDPR is an Evolutionary Process
  59. 59. @LibertyAppsUK@CYBERTALKLDN Key Takeaway
  60. 60. @LibertyAppsUK@CYBERTALKLDN Questions?Questions? Steve@LibertyApps.co. uk @SteveHiltonCEO +44 0161 883 2450 LibertyApps.co.uk

×