With 2018 being just around the corner, in enterprise-speak, the challenges around compliance with the new EU General Data Protection Regulations must be resolved yesterday. Will two years be enough to get it all done? Do you know everything you need to put together a solid game plan? Have any lingering questions, perhaps specific to your unique situation, which a local law expert can help answer?
2. Presenters
2
Jennifer Sand
VP of Product Management,
CloudLock
Russell Miller
Director of Product Marketing,
CloudLock
Andrew Dyson
Partner, DLA Piper
3. Continuing Professional Education (CPE) Credits
Claim your CPE credit for attending this webinar
https://www.isc2.org/
For more information or questions please contact us
info@cloudlock.com
3
4. Agenda
01
02
03
04
What is happening when
What do you need to know?
What do you need to do today?
What do you need to do in the next 2 years?
4
05 Questions
7. 777
8 New Provisions
1 No ambiguity. One law across all 28 countries of the EU.
2 The law is global.
3 Increased fines. Up to 4% of global turnover or €20,000,000.
4 Breach notification. Mandatory within 72 hours.
5 New individual rights.
6 Liability extended to data processors as well as data controllers.
7 Information governance through the supply chain.
8 Privacy by design.
15. Cloud Vendor Readiness Questions
Add bit.ly
151515
Dedicated Security Team?
Systems subjected to
penetration testing?
Terms for ownership of data?
Share most recent
vulnerability scan
results?
Formal procedure for reporting
a suspected security violation?
Access security of data facilities?
http://bit.ly/cloud-questions
What is security policy?
16. 161616
What You Need to Do - Today
Tomorrow’s Task:
5
MAY
1 Document where
and who process
data
2 Audit and Prioritize
Cloud Vendors
3 Consider
technology at hand