Many thanks to Hrvatski Telekom for hosting the latest Data Privacy Task Force meeting in Croatia!
Friday 14 June 2019
Posted by: Michele Lalic
The ETIS Data Privacy Task Force (DPTF) gathered June 13 to 14, 2019 for their second meeting of the year, which was kindly hosted by Hrvatski Telekom at their offices in Zagreb, Croatia. Many thanks for their support!
The objective of the Data Privacy Task Force is to share experiences related to data privacy and the implementation of regulations such as GDPR and e-Privacy. Participating Members explore common interest areas and determine best practices.
As usual the meeting was kicked off with a roundtable discussion, where participants shared the current projects and challenges they’ve faced as they have moved from the implementation to maintenance phase of ensuring GDPR compliance. Internal awareness trainings and governance are key priorities and challenges in many member companies at the moment as well as working in an agile way--for example in regards to privacy impact assessments and efficiently ensuring compliance in the product development phase.
There were also a number of interesting sessions including one on how to implement a practical DPIA process and evaluate a privacy risk as well as a case-based discussion in which participants presented their most common dilemmas in determining the roles and responsibilities of controller, processor and joint Controller scenarios.
One highlight of the meeting was the session on Data Privacy Management Systems. Christian Miciecki of Swisscom explained the process and hurdles they have overcome in internally developing their solution "Data Scout," which identifies privacy data across their systems (and which they now sell as a service to Swiss Banks as well!) Manfred Lehner of A1 Telekom Austria also discussed their approach to governance and support processes such as trainings, tools and audits to ensure both compliance and an increased understanding of privacy and their roles and responsibilities.
Another highlight was the “GDPR enforcement around Europe” session, where each participant discussed the fines and/or warnings—including those outside of the telecommunications industry—that had been issued by their local Data Protection Authority, giving their peers insights into developments and cases across Europe. This was particularly insightful as Patricia Le Large from Orange France was able to give an overview of her experience and the latest guidelines and rulings from the CNIL, which is widely seen as influential and precedent setting for the rest of Europe.
Many thanks to all those that participated and again to Hrvatski Telekom for hosting. The next Data Privacy Task Force meeting will coincide with the annual ETIS Community Gathering, which will take place in Vienna, Austria from October 17-18 this year. The agenda will be developed in the coming weeks, but topics will range from privacy and competition law to data processing design to a discussion of the results of a DPIA guidelines survey (which will compile internal guidelines used to translate data privacy impact assessment requirements in an understandable way to colleagues in business, IT, etc).
If you would like to know more about the group and its activities, please visit the Data Privacy Task Force page or contact Michele Lalic, the ETIS Central Office representative of this group.
ETIS is the trusted community for telecom professionals. Our goal is to enable our members to reach their strategic objectives and to improve their business performance by sharing knowledge on industry challenges and by collaborating where possible.