Call to book: 01983 861133

GDPR Employee Data Conference for Employers, One Year On: An Essential Update

Danubius Hotel Regents Park , 18 Lodge Road, St. John's Wood, London NW8 7JT

The implementation of the GDPR in May 2018 has forced employers to rethink how they process and store data, and in some cases, to transform workplace culture in order to comply. A recent survey indicated that 12 months on, one in three UK companies are still not fully GDPR compliant.

Registration fee: £395 + VAT

Employees and other staff members are increasingly aware of their Data Protection rights, and the numbers of staff, consultants and agency workers requesting SARs is increasing. Does your HR function have the knowledge and policy to manage this? Most organisations still need to learn how to minimise the costs and difficulties of managing SARs.

The ICO is recording a huge rise in complaints, and the punitive measures for non-compliance are serious. Alongside sizable fines, there is also the risk of prosecution and damage to your organisation’s reputation and shareholder value.

This event, building on several year’s delivery of successful GDPR preparation events, draws on unparalleled expertise and experience in this tricky area to deliver a comprehensive programme to ensure your staff can spot potential data protection issues and implement solutions before the problem grows.
Attendees will learn how to avoid costly employment disputes and take steps to protect your organisation through a thorough review, preparation and implementation of workable policies.

BFI ran 11 GDPR planning and preparation conferences for employers, and 8 workshops across the UK in 2017 and 2018. These events featured the most respected practitioners and lawyers in this space.

What you will learn:

  • Key policy changes and a comprehensive checklist of potentially vulnerable areas
  • A thorough understanding of content, processing, transfer and disposal: have you done enough?
  • How to implement a data protection assessment
  • Clarification of difficult areas such as special categories, agency workers and consultants
  • Lessons from the latest cases and rulings: enforcement and compensation
  • Key technical measures to implement
  • How to plan for and respond to a data breach
  • A comprehensive policy and practice checklist you can implement in your own organisation

Past GDPR Conference delegates said:

“Speakers were very knowledgeable, was well delivered and the sessions were engaging.”- Dept of Work & Pensions

“Speakers were informative, professional, very engaging and tailored it well to the audience.”- Office for National Statistics

“Excellent”- Skipton Building Society & Imperial Brands

Which functions will benefit from attending

  • HR, Pay roll, HR Operations and Admin, Security and Compliance, HR Information Services Management

Hear from

Schedule

Coffee and registration

CHAIR’S INTRODUCTION AND ESTABLISHING LEARNING OBJECTIVES AND OUTCOMES

CRUCIAL POLICY CHANGES AND UPDATES: A CHECKLIST

  • Evaluating where your organisation should be now
  • Common mistakes and misunderstandings
  • What to expect from the ICO
  • E-privacy and regulation: the implications
  • Enforcement and the latest industry developments
  • Cases and lessons learned

CONTENT, PROCESSING, TRANSFER AND DISPOSAL: HAVE YOU DONE ENOUGH?

SARS

  • How should you react to a SAR and what are the GDPA (2018) exemptions?
  • What constitutes an ‘onerous request’?
  • Requests for non-data protection purposes: pros and cons of compliance
  • Reduced response time: streamlining your system
  • Staff training implications: policy, record-keeping, responses, information and identification requests

DATA PROTECTION IMPACT ASSESSMENTS

  • What is it and how does it differ from Privacy Impact Assessment?
  • Scope and timing of implementing a
  • DPIA

OTHER RIGHTS

  • The ‘right to be forgotten’: latest case law and guidance
  • The cost of non-compliance
  • Disciplinary warnings and records: clarifying the law
  • Personal data erasure, rectification, portability
  • Updating: grounds for objecting to processing: where do you stand?

Morning coffee and networking

DIFFICULT AREAS TO CLARIFY

  • ‘Special categories’ of personal data
  • Criminal convictions
  • Age verification for online services to children
  • Establishing Appropriate Policy Documents: procedures for complying, policy on retention and erasure of data – stand-alone vs combined documents
  • Consultants and agency workers

ENFORCEMENT AND COMPENSATION

  • An update: recent cases and outcomes
  • ICO guidance on reporting breaches
  • Current enforcement examples

OUTSTANDING QUESTIONS AND WRAP UP

Lunch and networking

TECHNICAL MEASURES

Kat Gibson

Kat Gibson

Legal Director
DLA Piper

View Bio
DLA Piper logo

Kat Gibson

Legal Director , DLA Piper

Katherine is an employment practitioner in DLA Piper's London office. She advises employers across all sectors, including Banking, Transport and Life Sciences. Katherine worked in-house for a number of years before returning to private practice. She advises employers across both domestic and international employment matters and data privacy issues. She is experienced across all types of employment work, including litigation, transactional support and business protection. In addition, Katherine regularly advises clients on the data protection aspects of employment, including employee monitoring and cross-border data transfers. Katherine provides strategic and commercially aligned advice, assisting clients to achieve their objectives and manage risk.

  • What should you do to ensure continuing compliance?
  • Recent data breaches and how they could have been prevented
  • Common IT mistakes that could maximise your organisation’s risk of a breach

PREPARING FOR AND RESPONDING TO DATA BREACHES

  • Risk assessment strategies: where are you vulnerable?
  • Proactive strategies to minimise risk
  • Reporting requirements and procedures
  • Reputational fallout and other issues
  • Key elements of a robust incident management policy

Afternoon tea and networking

POLICY AND PRACTICE CHECKLIST

  • Data protection and IT policies
  • Staff training: best practice and methodologies
  • Privacy notices: job applicants, staff and former staff
  • Key areas to check and update: a blueprint

OUTSTANDING QUESTIONS AND WRAP UP

End of conference

Contact us to book or discuss our events & services

Phone icon 01983 861133
Email icon info@bfi.co.uk

In-house training

We can tailor this course to run in-house. Find out more

Go

Twitter

The killer combination: Innovation strategies to #Attract #Recruit and #Retain talent. There's still time to regist… twitter.com/i/web/status/1…

Reply Retweet Favourite

Exclusive offers

Get early bird offers, discounts and useful HR content straight to your inbox

By signing up you agree to our privacy policy