Speakers
- To Be Announced!, More information to follow.
Five years on from the coming into effect of the General Data Protection Regulation (GDPR), it’s time to take stock: Has the GDPR truly improved data protection? How have organisations implemented the law’s requirements? And what questions remain unanswered after nearly half a decade of GDPR?
PrivSec Focus: GDPR Five Years On will celebrate and critique the EU’s best-known regulation, bringing industry leaders and subject matter experts together to explore what we’ve learned about data protection since May 2018.
We’ll explore the most significant enforcement action, consider how the GDPR’s interpretation has changed—and even provide some constructive criticism around the areas of GDPR compliance causing the most frustration among privacy professionals.
This free-to-attend live-stream event will stimulate lively debate and provide actionable insights into improving your GDPR compliance program.
Attending PrivSec Focus: GDPR Five Years On will bringing industry leaders and subject matter experts together to explore what we’ve learned about data protection since May 2018
Benefits of attending:
→ Take away actionable insights and best practices to deploy immediately
→ Gain instant access to a content-packed library to browse in your own time
→ Have your questions answered by leading experts from within your region
→ Discover fresh perspectives and understanding to give you competitive edge
And much more…
(Timings shown in British Summer Time (BST)
PrivSec Focus: GDPR Five Years On Agenda | Timings shown in British Summer Time (BST)
BST | Thursday 25th May 2023 |
---|---|
9:45 | Opening Remarks Speakers
|
10:00 | Enforcement Highlights From the GDPR’s Fourth Year
Since May 2022, data protection authorities have made some high-profile and important enforcement decisions. The Irish Data Protection Commission has imposed multiple highly consequential decisions on big tech firms, and the UK’s Information Commissioner has set out a new enforcement strategy. Meanwhile, France has continued to hit international companies with multi-million euro cookie fines. In this session, our panel will explore the most significant enforcement actions since the GDPR’s last birthday and consider their impact on all organisations. Speakers
|
10:15 | |
10:30 | |
10:45 | |
10:50 | Sponsored session |
11:00 | |
11:20 | |
11:25 | Should You Trust the EU-US Data Privacy Framework? The EU-US data transfer problem remains unsolved after another year of GDPR enforcement. But is the light at the end of the tunnel with the EU-US Data Privacy Framework? Or will the adequacy decision go the same way as its two predecessors? In this session, our panel will evaluate the EU-US Data Privacy Framework’s strengths and weaknesses and explain what businesses should be doing to safeguard against the scheme being overturned in court. Speakers
|
11:30 | |
11:45 | |
12:10 | |
12:15 | What’s Wrong With the GDPR? The EU’s best-known regulation is not without its critics. Some argue that the law hampers innovation and imposes unnecessary costs. Others claim that the GDPR’s only problem is that regulators don’t go far enough in enforcing the law. This session will be a frank and critical discussion of where the GDPR has arguably failed—and what legislators could do to improve it. Speakers
|
12:30 | |
12:45 | |
13:00 | |
13:05 | Beyond Europe: How the GDPR Is Shaping Data Protection Globally Jurisdictions worldwide are improving their data protection frameworks—sometimes in the hope of obtaining EU adequacy, sometimes because the public demands them to do so. From definitions and principles to data subject rights, the influence of the GDPR is clear. This panel will explore how the GDPR continues to influence international data protection laws from Utah to the United Arab Emirates and highlight the key upcoming legal developments you need to know about Speakers
|
13:15 | |
13:30 | |
13:50 | |
13:55 | Sponsored Session |
14:00 | |
14:15 | |
14:25 | |
14:30 | Can the GDPR and Widespread AI Co-Exist? Since the GDPR’s last anniversary, the use and adoption of AI have skyrocketed. But chatbots like ChatGPT and image generators like Midjourney present a unique challenge to data protection regulators. The GDPR already covers so much of the data processing relevant to AI. But is it possible to develop and maintain large-scale AI systems in a GDPR-compliant way? And are some large language models and generative AI applications already “too big to fail”? In this session, panellists will explore AI's many potential GDPR pitfalls and address the “elephant in the room”: Is the AI industry fundamentally incompatible with a robust data protection regime? Speakers
|
14:45 | |
15:00 | |
15:15 | |
15:20 | The GDPR’s ‘Risk-Based Approach’: How It Works and When to Use It The GDPR recognises a “risk-based approach” in several areas of data protection compliance. Controllers can adjust some data protection and security practices, taking into account factors such as the nature of the data, the resources of the organisation, and the “state of the art”. In this session, a panel of experienced practitioners will offer guidance on when the “risk-based approach” applies—and how best to balance the needs and resources of your organisation with data subjects’ rights. Speakers
|
15:30 | |
15:45 | |
16:05 | Closing Remarks |
16:10 |