Privacy Management and the GDPR

Presented at BSides Austin 2018, March 9, 2018, 11 a.m. (60 minutes)

The EU's General Data Protection Regulation (GDPR) is coming into force this May, with a comprehensive approach to protecting the privacy of European consumers and employees. With its global (!) reach and potential fines of up to twenty (20) million Euros or more, multinational organizations advertising services to (or otherwise profiling) Europeans are scrambling to become compliant. We will provide a high-level overview of the regulation, and then dive into details on the embedded user rights and "Privacy by Design" criteria. Attendees will acquire a practical understanding of the principles that inform how users' personal information should be managed in accordance with norms that are becoming more prominent in compliance frameworks across the world.

Presenters:

• David Ochel
  David Ochel is a security & privacy technologist with extensive experience in pragmatic information risk and compliance management. He serves as the Director of Security and Compliance at AllClear ID.

Links:

• https://bsidesaustin2018.sched.com/event/DuG8/privacy-management-and-the-gdpr

Similar Presentations:

• RVAsec 2018 / GDPR and You
• Black Hat USA 2019 / GDPArrrrr: Using Privacy Laws to Steal Identities
• AppSec USA 2017 / An Agile Framework for Building GDPR Privacy and Data Protection Requirements into SDLC