7 Key GDPR Requirements and the Role of Data Governance
  Jonathan Adams   Jonathan Adams
Research Director
DATUM an Infogix Company 		 


 

Wednesday, April 25, 2018
07:30 AM - 08:15 AM

Level:  Introductory


Privacy and protection of personal information is a hot topic in data governance and security.  In large part this is driven by the General Data Protection Regulation (GDPR) deadline next month.  Any enterprise doing business in Europe or retaining European citizen data must comply with the GDPR directive. Furthermore, companies can be fined up to €20 million or 4% of their annual revenue (whichever is greater) if they do not comply. If you are just starting, what do you need to do now?  For those that are well on their way, how do you ensure that you make it as painless as possible?  What happens next as your organization addressed challenges around ensuring effective implementation and subsequent operational oversight of policies required for GDPR compliance?   How is your organization making sure it will avoid penalties, fines, and punishments?  This session will look at the key requirements of GDPR, critical first steps and “best practices” approaches towards company-wide compliance.

Jonathan Adams has over 20 years of experience in leading requirements, design, and implementation efforts for retailers, financial organizations, and federal agencies. For the past 12 years, Jonathan has focused on architecting and implementing analytical and data management solutions focused on fraud detection, regulatory compliance, and risk management. While at Booz Allen Hamilton, as part of the risk and compliance analytics team, he was a member of the CMMI Data Management Maturity Model development team. He is a certified Enterprise Data Management Expert (EDME). Leveraging the DMM, Jonathan has created an execution framework for data management and analytical and risk management best practices, that aligns data governance and analytical governance with the emerging requirements created by big data, analytics, and the integration of both, in the operational context. Most recently, his work has focused on integrating GDPR and ISO 27001 security requirements into best practices around implementation and operation.