GENERAL DATA
PROTECTION REGULATION

A quick pragmatic introduction

Timeline of GDPR definition and enforcement

Quick GDPR overview: where is the rush?

QUICK GDPR OVERVIEW: MAIN CHANGES

What will change against the former 1995 EU Data Protection Directive ?

What will change against the former 1995 EU Data Protection Directive ?
QUICK GDPR OVERVIEW: A HELICOPTER VIEW

The requirements from the GDPR fall into five areas

QUICK GDPR OVERVIEW: HOW DOES IT IMPACT YOUR COMPANY IN REAL LIFE…

GDPR affects all organizational layers and lifecycle stages of data management

START PREPARING NOW!

SOME USEFUL THINGS TO KNOW:

GDPR AREA 1: DATA GOVERNANCE

GDPR AREA 2: DATA PROTECTION PRINCIPLES

GDPR AREA 3: DATA SUBJECT RIGHTS

GDPR AREA 4: SECURITY OF PERSONAL DATA

INTEGRITY AND CONFIDENTIALITY


• Art 32: Security of personal data
“Taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, the controller and the processor shall implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk”

DATA BREACH NOTIFICATION


• Art 33: Notification of a personal data breach to the supervisory authority
• Art 34: Communication of a personal data breach to the data subject

GDPR AREA 5: DATA TRANSFERS

HOW WE CAN SUPPORT YOU

TACKLING GDPR: OUR PRAGMATIC, HOLISTIC APPROACH

Consultant B.I. has a dedicated team of specialists with a deep, pragmatic and holistic expertise in data protection programs across large scale and complex organizations, embedding change and offering a full spectrum of GDPR related services:
Where to start: a layered, risk based approach leveraging on tested project methodology
Where to start: Focus on inception phase
Our GDPR methodology enables refining the assessment based upon rationalized principles and requirements