Preparing for the GDPR: Attaining and Demonstrating Compliance

Privacy. Security. Risk. 2016

Joseph Alhadeff, VP, Global Public Policy and Chief Privacy Strategist, Oracle; Paul Breitbarth, Director, EU-U.S. Data Protection Projects, Senior Solutions Advisor, Nymity

How will you comply with the EU GDPR? What approach will you take? What resources will you need and where will they come from? This session outlines an accountability approach to attaining and maintaining GDPR compliance through the “appropriate technical and organizational measures” required by Article 24. Allow your organization to take a running start by first understanding what accountability infrastructure is in place; identifying the gaps needing remediation; strategies for prioritizing; and the resourcing of activities that will enable and maintain GDPR compliance. The session will also show how existing technical and organizational measures can be mapped to GDPR articles to help achieve another obligation found in Article 24, “the ability to demonstrate that processing is performed in accordance with the Regulation.”

What you’ll take away:

  • How to identify the “appropriate technical and organizational measures” required by Article 24
  • How to address the accountability requirements in the GDPR
  • An approach to meet the obligation found in Article 24, “the ability to demonstrate that processing is performed in accordance with the Regulation”

Presentation