Workshop 3 - Prevention and response - 14 November 2019
In this workshop, participants will learn why prevention is important and what this means in practice, from the implementation of security measures to the introduction of procedures and processes for dealing with data breaches, responding to data subjects' privacy rights and outsourcing the processing of personal data. Through interactive sessions, participants will understand the different roles in the processing of personal data, from the controller to the processor and joint controllers and their practical implications when working with third parties.
- You understand why it is important to invest in prevention and what this means in practice;
- You know how to apply the risk-based approach for implementing appropriate data security measures in accordance with the GDPR and FADP requirements and learn how international security and data protection standards such as ISO/IEC 27001/27002, BSI 10012 to SOC 1,2 and 3 can be used as effective security controls;
- You know how to deal with a data breach, from detection to notification and resolution, and how to handle the data subjects’ privacy rights, from the right of access to the right to be forgotten, the restriction of processing and data portability;
- You are familiar with the concept of controllers, processors and joint controllers and their practical implications and know how to manage the relationships between the parties, from the evaluation of the third party to the contractual structure and review.
Thursday, November 14, 2019 - 12:15
Privacy in Practice