ETIS Data Privacy Task Force meets in Dublin for peer-to-peer knowledge sharing.
Monday 27 November 2017
Posted by: Sepideh Javaherian
The next meeting of ETIS Data Privacy Task Force will take place on January 25&26 in Dublin (kindly hosted by eir). Like all our events, this meeting will provide our Members with an opportunity to have an open, honest discussion with their peers in a close group. Our events focus on meaningful peer-to-peer knowledge sharing, do not include “sales pitches”. This meeting will focus on practical side of GDPR implementation.
One of the main sessions will focus on status of GDPR Implementation at Our Member companies. Implementing GDPR is a huge task, and different companies approach it differently. In this round table presentation, all participants will share the status of GDPR implementation at their organization and discuss their biggest challenges and latest successes, allowing everyone to benchmark themselves and discuss common issues. Another round table will focus on consent methodology, where all participants will share their approach and status of implementation. The definition of consent in GDPR is significantly restricted. Where before many Telco’s relied on implicit and “opt-out” consent, the GDPR requires the data subject to signal agreement by “a statement or a clear affirmative action” “freely given, specific, informed and unambiguous.”
Other sessions will focus on specific Data Subject Rights such as Data Portability, Right to Access and right to restriction of processing. Data Portability is a concept to protect users from having their data stored in "silos" or "walled gardens" that are incompatible with one another, i.e. closed platforms, thus subjecting them to vendor lock-in.Data portabilityrequires common technical standards to facilitate the transfer from one data controller to another, thus promoting interoperability. But what are these standards, and how are Telco’s planning to approach this?The meeting will also have a session on GDPR and Information Security . While the GDPR mandates a number of measures to protect EU citizen data, achieving compliance in large measure comes down to good data security. The session will help answer the question "How do Telco’s ensure that security provided is inline with GDPR?"
A tradition at Data Privacy Task Force, the Q&A session will open the table for discussion on specific questions from participants, on topics not covered in other sessions. Are you unsure of the best KPI to use to measure your progress? Are you struggling to identify your role (processor or controller) in a specific case? Would you like to know what is your peer's experience with a specific tool? This is the perfect sessions to bring these questions up and let your peers help you by sharing their experience and expertise.
You can see the full agenda here.