GDPR One Year On – Key Developments in Data Protection for Employers
This event is brought to you by Legal Island, in association with Business Legal.
The General Data Protection Regulation was implemented throughout the EU by way of domestic legislation by 25th May last year. In Ireland, the new Data Protection Act highlights how the GDPR is to be implemented in this jurisdiction. The Act has some differences from the Regulation, where permissible, but, in effect, the GDPR and the 2018 Act are largely interchangeable.
The headlines point to fines of €20m euros for data breaches, although costs could actually be much higher, and criminal prosecutions with significant jail terms are also possible under the 2018 Act. There was officially no lead-in time for the GDPR after 25th May last year. However, the Data Protection Commissioner indicated her desire to focus on compliance, rather than enforcement, in the first year. We’ve largely been in a ‘phoney war’ of data protection compliance – we expect enforcement and fines to follow. You really don’t want it to be your organisation that pays the price.
This event is designed specifically employers who recognise data protection to be a major risk – but also a major opportunity. And we’ll provide you with many templates, ideas, priorities and recommended action points to help protect you after attending this event.
Why is this event important for YOU?
All organisations will have to comply with the new data protection laws or face massive fines, negative publicity and legal action that could potentially close the organisation down. Employers hold a huge amount of personal data and interact with many other organisations that also hold employee data.
- What are the key issues in the first year of the new data protection era? Our survey sets out the main developments, risks and opportunities.
- What are the compulsory documents that show you are GDPR-compliant? We set out those documents
- Few areas are cause more frustration than Data Subject Access Requests – we focus on four key areas that can lead to practical difficulties, major blockages and higher risks to employers
- Most organisations outsource some employee data – we analyse the practical implications of the GDPR for outsourcing
- We set out the law on Compulsory Breach Notifications and Damage Limitation – and how to distinguish situations where no notification to the DPC might be required.
- Finally, we consider simple, cost-effective ways that you can minimise the risks of a data breach in your organisation by training all employees about data security
After attending you will:
Be in a better position that when you started – you will have some template documents; you will have heard from leading data protection experts; you will know what must be reported and what need not; you will have many ideas on how to make your organisation much safer and data-protection compliant; and you will have received many suggestions on how the GDPR can be an opportunity, as well as a threat.
More value from this event
You will spend the day on deep analysis and practical exercises designed to help ensure you know what you have to do and how you have to do it now that the GDPR has been implemented and the ‘phoney war’ is over.
Each of the sessions will have a short presentation and an exercise and/or template for every attendee to work through to reinforce learning. There will be ample time for Q&A, including a panel discussion moderated by journalist Sarah Carey.
Course overview/outline programme
- Overview of the GDPR
- The GDPR Survey – Key Learning from GDPR Implementation
- Micro-Cyber Security - how each individual can make their organisation data safer
- Compulsory Documentation and Accountability
- Data Subject Rights and SARs
- Outsourcing and Controller/Processor Agreements
- Compulsory Breach Notifications and Damage Limitation
Who is it for?
This event is aimed at employers and HR professionals who wish their organisation to be GDPR-compliant and who wish to do all they can to ensure that data protection is prioritised in future – thereby minimising the risk of a data breach.
When and Where?
9:20am - 4:30pm on Thursday 6th June 2019
Crowne Plaza Hotel, Blanchardstown, Dublin
Early Bird Rate: €495 (deadline Friday 26th April 2019)
Standard Rate: €575
Charity/Small Company* Early Bird Rate: €445 (deadline Friday 26th April 2019)
Charity/Small Company* Rate: €495
Save an additional €20 if you pay online when booking.
This event is in association with Business Legal
*All organisations with fewer than 50 employees or charities qualify for our Charity/Small company rate. The number of employees includes all branches, subsidiary/parent companies, boards, trusts and federated organisations.
"The interactive nature of the event was very good, speakers were knowledgeable and quality of handout was very good."
Paula White, Beauchamps
"Very knowledgeable speakers, great debate and Q and A sessions."
Michelle Peate, Veolia Industries Global Solutions
"Very good course, really informative and have taken a lot back to my company to review."
Stephanie Corcoran, Coillte
"Very informative and speakers had a vast knowledge of the various scenarios." Catherine Miskella, IMPACT (or Forsa) Trade Union
"The materials provided and hand-outs are of great benefit."
Yvonne Corrigan, Office of the Director of Public Prosecutions
"Professional and comprehensive look at GDPR. Covered all potential risks."
Colm McGuinness, HR & Corporate Governance Executive, Safefood
"All the speakers were very knowledgeable and able to communicate this knowledge in language non-experts such as me could easily follow."
Tony Ross, Management Accountant, Lycee Francais d'Irlande.
"Course content was very relevant and the notes given are excellent."
Nikki McGoohan, HR Director, Abcon Industrial Products Ltd.
Sarah Carey Writer and Broadcaster
Sarah Carey is a writer and broadcaster. She has a degree in history from Trinity College, Dublin and a post-graduate Diploma in Business Studies from UCD. She began her career in marketing and public relations working first in telecommunications and then technology, both in Dublin and California.
David Fagan Director and Commercial Lawyer
David Fagan is a commercial lawyer. He was previously a partner in the largest international commercial law firm in Ireland, a law firm with offices in 47 locations around the globe, and with 200 staff in Ireland. He has established the data privacy unit, the employment law unit and the health and safety unit of that firm in Dublin. He then set up own consultancy practice in conjunction with a number of other equally experienced lawyers and professionals, Business Legal.
Scott Alexander Head of Training and Development
Scott Alexander joined the CIPD in 1987 and is a certified member of the Mediators’ Institute of Ireland and a member of the Association for Coaching Ireland. Scott was appointed as a member of the Governing Body of Southern Regional College from 1 August 2015. Scott is also a mentor under the CO3 Mentoring Programme for chief officers in the 3rd sector and an HR Committee member for the Bruiser Touring Theatre Company. Scott has over 30 years’ experience in employment relations and employment law. He worked for the Labour Relations Agency in Northern Ireland for 14 years in a variety of roles, including collective and individual conciliation and enquiry point manager, before joining Legal-Island as its Head of Learning and Development in January 2006.
Gail Chalmin Data Protection Practitioner
Gail Chalmin is a commercial and data protection consultant with over 21 years legal experience. She received a BCL from UCC in 1994 together with a BSC in 1990. She worked for many years in the legal compliance area and has experience drafting data protection policies and contracts
Ivan Kelleher Technical Director
A long term nerd and dedicated IT professional who always wants to do more to protect his clients from the dangers of the internet. Ivan has led technology at Etelligence for over 15 years and has helped drive his customers data security to become semi-autonomous using best-of-breed solutions from Microsoft, Solarwinds and SonicWALL. Always thinking about how to further combat threats, Ivan is an advocate of the Zero Trust Networks security model and was awarded the Community Leadership award in 2018 by Solarwinds MSP.