08:30

Registration

09:10

Welcome

09:20

Keynote

UK Data Protection

  • Where are we now and where are we headed?

09:40

Data protection – the big picture

  • UK Data Protection in the context of Brexit
  • International considerations for data protection and cyber security
  • Global regulatory landscape at a glance
    • Corporate impact and top line mitigation strategies

10:40

Break

11:10

Breakout sessions

A choice of one of the following options

Breakout option 1: Data Protection 1

  • Maintaining enthusiasm, ongoing compliance and accountability
  • What are the pressures on people whilst conducting normal business?
    • Pressure from management
    • The grey areas
  • Operational challenges
  • Claire Robson LLM Head of Governance Legal and Compliance, Great Ormond Street Hospital Children’s Charity
  • Yukiko Lorenzo Senior Managing Counsel Privacy and Data Protection, Mastercard
  • Helen Woollett Group Compliance Counsel & Data Protection Officer, The Body Shop
  • Paul Breitbarth Director of Strategic Research and Regulator Outreach, Nymity

Breakout option 2: Cyber 1

  • Live hack against your home
  • So, you’ve been hacked what next?
  • Nation state attacks
  • Proliferation of “hacking as a service” and their availability
    • How does this affect corporates
  • Evolving cyber landscape and Resilience of companies

Breakout option 3: Marketing and technology 1

  • Making sales and marketing work in a GDPR-compliant organisation
  • Operationalising GDPR & PECR within your marketing function
  • Remaining compliant in an increasingly online-focused marketing agenda
    • Focused marketing agenda

12:10

Lunch

13.00

Breakout sessions

A choice of one of the following options

Breakout option 4: Interactive 1

Data Protection Impact Assessments

  • The benefits of doing a DPIA
  • Understand what a DPIA should contain
  • Understand when a DPIA is required
  • Decide who should be involved in doing a DPIA/ When consultation with a DPO is required
  • How to best record/document a DPIA
  • How not to do a DPIA with examples
  • Ian Evans Managing Director, EMEA, OneTrust
  • Claire Robson LLM Head of Governance Legal and Compliance, Great Ormond Street Hospital Children’s Charity
  • Matt Ginn Head of information Governance/Data Protection Officer, London Borough of Lambeth
  • Jak Bowtell Senior Information Governance Officer, London Borough of Lambeth

Breakout option 5: The international scene

  • How do you leverage your GDPR programme to work in other jurisdictions?
  • Developing frameworks and a risk-based approach
  • Challenges faced and business push-back
  • Considerations post-Brexit

14:00

Breakout sessions

A choice of one of the following options

Breakout option 6: Data Protection 2

  • Incoming regulations and the privacy pipeline
    • ePrivacy
    • PECR
  • What does the Data Protection Act mean for me?
  • Robert Gillis Senior Legal Counsel: IP Technology and Data Protection, Citi
  • Kate Wilson Barrister, One Brick Court Chambers

Breakout option 7: Marketing and technology 2

  • Is technology the problem or solution?
  • Technology’s role in compliance: what are the potential quick wins and common challenges faced?
  • Do you have the necessary tools and understanding?
  • Does everyone need to be an expert to be compliant?

14:50

Break

15:10

Interactive 2

Breach notifications and incidence response strategies

16:10

What is it you are trying to achieve?

  • Back to basics; privacy laws are here because of: Human rights, freedom, and responsibilities
  • What is it you are trying to achieve? (remembering the above)
  • The role of culture in DP & cyber security
  • How does your strategy feed into the day-to-day practical issues?

16:50

Emerging tech, AI, and its role in DP & Cyber

  • Emerging tech, AI, and its role in DP & Cyber
  • The interplay between data protection and cybersecurity in light of the ICO’s increased profile in this area
  • Data trusts
  • Ethics and AI: how are companies using data?

 

  • Peter Brown Acting Head of Technology Policy, Information Commissioner’s Office
  • Adam Green Chief Risk Officer, Equiniti Group plc

17:30

Drinks reception

*Please note the agenda is subject to change

The page will be updated with further details on the agenda once they are confirmed.