GDPR

What is the GDPR

• What is personal data / sensitive data
• Understanding GDPR terms
• Privacy by design and privacy by default
• Information about Data Protection Authorities in France, Spain, Romania, Germany, Italy, UK, Ireland.

Appointing a team

• Choosing the people to help with GDPR (legal, marketing, IT, hr)
• What is a DPO and do you need one?

Rights and obligations

• Data Subjects and their rights
• Controller’s obligations
• Processor’s obligations
• Dealing with data requests
• What is a data breach
• Fines and penalties
• Third-party services

Developing policies and procedures (ISMS)

• Creating a data privacy policy for employees and clients
• Create an ISMS (Information Security Management System)
• Examine outside third-party contracts with other suppliers

Maintenance

• Updating data – you need to ensure data you hold is updated
• Update contracts as needed.