Presenter: Diya Obeid, CEO - JobDiva Inc.
Europe’s General Data Protection Regulation took effect on May 25th, 2018. A far-reaching legal framework, the GDPR represents a paradigm shift in data privacy, not only in the European Union, but across all democratic countries.
Now, in America, voices are rising on both sides of the aisle in favor of reining in major tech companies. A version of the GDPR will likely enter the American scene soon. What are you doing to prepare?
In this session, we’ll explain what data privacy’s new normal looks like in the European Union. We’ll connect that to the United States, explaining how these rules might migrate into American business and tech—and how they already have, in the form of a program called Privacy Shield. We’ll help you prepare for the future’s privacy climate and show you what you can do to protect your business.
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
The New Normal: The Privacy Laws of Tomorrow and How to Prepare
1. GDPR
Presented By: Diya Obeid, Founder & CEO, JobDiva, Inc.
Alec Niedenthal, Technical Communications Officer, JobDiva, Inc.
2. • US companies that
operate in Europe
and process
European personal
data
• Trade pact
between US and
Europe
Privacy Shield
3. • GDPR: reasons – primary
role – importance and
impact on US companies
• Penalties
• Scope: applies to all
companies, anywhere, who
service Europeans living in
Europe
GDPR: the Basics
4. • Processing of personal data
• Controlling of personal data
• Data subjects
• Consent
• The "right to be forgotten"
Controller, Processor, Data Subjects,
Consent: Definitions
5. • Consent vs. legitimate interest: "The legitimate interests of a controller,
including those of a controller to which the personal data may be disclosed, or
of a third party, may provide a legal basis for processing…" – Recital 47 of
GDPR text
• Email marketing: "If the company has a justified interest in 'cold' acquisition
through email marketing, the marketing emails can be allowed to potential
customers without consent." – the GDPR's 'Email Marketing' summary
• Email marketing consent and consent for processing
• The "right to be forgotten": some contradictions
GDPR: Consent, Data Privacy and Staffing
6. • Marketing to individuals in the EU?
• Control data for EUclients?
• Data protections in the US
• The role of players under the SAAS model
• Third party responsibilities
• Respect for individual requests
• JobDiva has GDPR tools
Tips for US Staffing Organization
7. • Transparency is paramount in
GDPR compliance
• Source, purpose, use and
destination of data
• Content of data
Transparency