Recently passed into law, the European Union General Data Protection Regulation (GDPR) imposes a long list of data privacy and security requirements on companies doing business in the EU or selling goods or services to EU residents.
With a global jurisdictional reach and the potential for fines exceeding €20M for non-compliance, the GDPR is perhaps on the most important privacy and security legislation in the past 20 years. In addition, the newly agreed upon Privacy Shield program for personal data transfers offers a 9-month grace period for companies that are able to complete their self-certification by September 30th.
In this webcast, Spirion LLC will demonstrate why data discovery & classification (DDC) is so important to complying with the GDPR and Privacy Shield, including:
How the expanded definition of “personal data” and “special data” requires a new approach to locating such data in your information ecosystem;
Meeting the new “technical and organizational [security] measures” and “risk mitigation” mandates; and
Jump starting your EU privacy program in time to meet the September 30th deadline for Privacy Shield self-certification.
Who should attend: CISOs, Information Security Directors, Staff Attorneys, Privacy and Compliance Professionals, HR Professionals
Presenter: Scott M. Giordano, Esq. CISSP, CIPP
Scott M. Giordano is a data privacy attorney and consultant with a specialization in multinational privacy and security. He most recently was the Data Privacy Project Manager at Esterline Technologies Corporation in Bellevue, WA, where he developed their global data protection program. Prior to that he was Corporate Technology Counsel at Exterro, an e-discovery technology vendor, where he led their supervised machine learning program. Scott is a member of the IAPP’s ISO 17024 Certifications Advisory Board, which oversees all the organization’s certification activities. He is also a frequent author and speaker, and holds multiple privacy and security certifications, including CIPP and CISSP.