GDPR - How to embrace PCI’s big brother

If your organization stores, processes and transmits cardholder data, PCI’s big brother - the EU General Data Protection Regulation - could affect your ability to do business in the EU. Impacted PCI US companies may have EU residents as employees or customers. The GDPR has become a primary item on most organizations' agenda this past year, yet a disproportionate amount of focus has fallen on the fines that are set to come in force May 25, 2018. We want to take a more optimistic look at the regulation, why it came to be and how it can be a massive opportunity to strengthen your reputation and (re)gain customer confidence. We will also look at how the implementation and ongoing maintenance of compliance can be addressed through an analytical approach to the Articles themselves; the rules of the regulation. What attendees will learn: • How US ecommerce and other companies involved in payment card transactions can be impacted by the GDPR. • Why the world’s most valuable resource is no longer oil, but data. • Why the GDPR is far more than a simple check-box compliance exercise. •Why the GDPR is a massive opportunity in disguise for organizations who take it seriously. •How the GDPR aims to change company culture by turning risk assessments on their head. •An analytical breakdown of the GDPR Articles that uncovers those that are applicable to your organization, and how to tackle these through a risk based approach. •Key areas of focus for any GDPR program based on personal and client feedback. •How to effectively implement GDPR by expanding upon existing compliance programs and management systems (ISO 27001).