6 months to go: what are the risks of non-compliance with the gdpr? [webinar slides]
TRANSCRIPT
![Page 1: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/1.jpg)
© 2017 TrustArc Inc Proprietary and Confidential Information
PRIVACY INSIGHT SERIES
Summer / Fall 2017 Webinar Program
PRIVACY INSIGHT SERIES
6 Months to Go: What are the Risks of
Non-Compliance with the GDPR?
November 15, 2017
https://iapp.org/resources/article/getting-to-gdpr-compliance-risk-evaluation-and-strategies-for-mitigation/
![Page 2: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/2.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
Today’s Speakers
Sam Pfeifle
Content Director
IAPP
Hilary Wandall, CIPP/E, CIPP/US, CIPM
General Counsel & Chief Data Governance Officer
TrustArc
2
![Page 3: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/3.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
Survey methodology
• 10-minute survey sent to readers
of the Daily Dashboard
• 498 responses
• 88 percent believe they are
within the GDPR’s jurisdiction
• Only those covered continued
3
![Page 4: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/4.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
Survey methodology
4
![Page 5: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/5.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
With which is it most risky not to comply?
• Operationalizing the right to be forgotten.
• Operationalizing data portability.
• Obtaining/managing user consent.
• Complying with international data transfer requirements.
• Preparing for data breach notification.
• Conducting data protection impact assessments.
• Establishing legitimate interest for data processing.
• Conducting data inventory/mapping.
• Maintaining records of processing (e.g. Article 30 reports).
• Managing data subject requests.
• Appointing a data protection officer (DPO).
5
![Page 6: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/6.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
With which is it most risky not to comply?
6
![Page 7: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/7.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
Compare that to perceived difficulty…
7
![Page 8: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/8.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
How will you mitigate that risk?
• Investing in privacy/data protection training.
• Increasing number of privacy staff.
• Investing in additional outside legal assistance.
• Investing in additional outside consulting
assistance.
• Investing in privacy/data protection technology.
• Continuing the status quo privacy program.
8
![Page 9: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/9.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
How will
you
mitigate
that risk?
9
![Page 10: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/10.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
How will
you
mitigate
that risk?
10
![Page 11: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/11.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
2017 sees
large
increases in
most of the
steps firms
say they’re
taking to
prepare for
GDPR
11
![Page 12: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/12.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
What is the biggest barrier to compliance?
• Inadequate budget.
• Lack of qualified privacy staff.
• Too little time.
• Complexity of the law.
• And shortage of technical tools.
12
![Page 13: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/13.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
What is the biggest barrier to compliance?
13
![Page 14: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/14.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
What is the biggest barrier to compliance?
14
![Page 15: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/15.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
When will you be compliant?
From June 2017 From Sept. 2017
15
![Page 16: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/16.jpg)
© 2017 TrustArc Inc Proprietary and Confidential Information
PRIVACY INSIGHT SERIES
Summer / Fall 2017 Webinar Program
PRIVACY INSIGHT SERIES
Questions?
![Page 17: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/17.jpg)
© 2017 TrustArc Inc Proprietary and Confidential Information
PRIVACY INSIGHT SERIES
Summer / Fall 2017 Webinar Program
Contacts
Sam Pfeifle [email protected]
Hilary Wandall [email protected]
![Page 18: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/18.jpg)
© 2017 TrustArc Inc Privacy Insight Series - trustarc.com/insightseries
18
To register for Summer/Fall webinars and/or past webinar recordings
visit: www.trustarc.com/insightseries
Privacy Insight Series – 2017 Calendar
![Page 19: 6 Months to Go: What are the Risks of Non-Compliance with the GDPR? [Webinar Slides]](https://reader034.vdocuments.net/reader034/viewer/2022050614/5a647a607f8b9a2c568b4969/html5/thumbnails/19.jpg)
© 2017 TrustArc Inc Proprietary and Confidential Information
PRIVACY INSIGHT SERIES
Summer / Fall 2017 Webinar Program
Thank You!
Register for the next webinar in our Series – December 6th
“Demonstrating Compliance & the Role of Certification Under the GDPR