GTC Data Privacy & Security Training
November 3, 2017
Juniper Networks – Sunnyvale, CA
9:00am – 12:30pm Pacific
Presentations/Decks:
- Data Privacy in the News (loop deck – prior to start of event)
- Kickoff
- Mergers & Acquisitions – Data Privacy & Security (Panel #1)
- Beyond the Basics: Recent Developments in Global Data Privacy & Security (Speaker: David Bender)
- Vendor Risk Management – Data Privacy & Security (Panel #2)
- Closing
Additional Resources:
- Data Risk in the Third-Party Ecosystem, Ponemon Institute LLC report from April 2016 (used with permission from the Ponemon Institute)
- When is a vendor a processor?, Rita Heimes, IAPP September 29, 2017 (may require a subscription)
- Top 10 Operational Impacts of the GDPR: Part 7 – Vendor Management, Anna Myers, IAPP (used with permission of the IAPP)
- A Strategic Approach to Vendor-Management Under the GDPR, Alexandra Ross, IAPP (used with permission of the IAPP)
- Guide to the General Data Protection Regulation, Bird & Bird, January 2017 (used with permission from Bird & Bird)
- Selected GDPR Articles related to Vendor Management:
- Article 28 (1)-(3): Processor Obligations
- Article 24(1): Controllers
- Article 29: Processing under the authority of the controller or processor, and
- Article 46(1): Transfer subject to appropriate safeguards.
- EU revised proposed draft of e-Privacy Regulation (published Sept. 8, 2017)
- Selected California Laws: California Civil Code Section 1798.80-84
- Data Security Breach Reporting, California Department of Justice (link)
- New York Dept. of Financial Services – Cybersecurity Requirements for Financial Services Companies – new for 2017
- Illinois Biometric Information Privacy Act – new for 2017
- NIST CyberSecurity Framework
- Data Protection Laws of the World – DLA Piper (link)
- US Incident Notification Laws – Perkins Coie Security Breach Notification Chart (link)
PRIOR GTC DATA PRIVACY CONFERENCES:
European Data Privacy (GDPR) Compliance (April 6, 2017)
Data Breach Simulation Training (January 12, 2017)
Toolkit for Data and Privacy Security (September 29, 2016)