Legal, IT or Business—Who is Breaking the Personal Data Protection Rules??

Wednesday, October 30

9:45 AM - 10:45 AM

Location: Northern E3

Speaker(s)

Biljana Cerin, CISSP

CEO
Ostendo Consulting

GDPR has given headaches to businesses around the world, despite a two-year lead up to its implementation. Looking backwards, it is easy to notice that many companies are struggling with obstacles coming "from within" their environments, causing data breaches that are left undiscovered or discovered late, being unable to fulfill data subject rights and adequately protect data, being unsure how to deal with data erasure or access requests and having complaints logged with the data protection authorities. Higher awareness of data subjects makes it even more complicated to deal with them "easily." Why do companies struggle? Is it due to "technical difficulties" in the GDPR application, lack of management support or the wrong interpretation of legal requirements? Let's discuss everything in this session based on recent use cases.

Learning Objectives:

Use techniques that have already been proven effective in dealing with GDPR implementation struggles.
Understand how to best position themselves toward data subject requests based on internal technical and organizational capabilities.
Recognize problem areas within their organization and methods of dealing with them based on presented case studies.