GDPR: Lessons Learned From 200 Companies Who Got It Wrong

Presented by

Speaker: Scott M. Giordano, Esq., V.P., Data Protection, Spirion

About this talk

About: Since EU supervisory authorities began GDPR enforcement in May of 2018, over 200 companies and government agencies have been punished for privacy and security failures by EU authorities. Those companies include both marquee and non-household brands where close to €400M in proposed fines were issued. The failures to comply were attributable to not having basic privacy and security practices in place. In this webinar, we will review several post-mortems, determine what went wrong, and discuss the implications for not complying with the privacy and security requirements of the GDPR going forward. Key takeaways include: -Understanding what regulators consider when issuing a penalty -Generating better privacy success measurements by leveraging the NIST Privacy Framework and ISO 27701 -Applying these lessons for California Consumer Privacy Act (CCPA) compliance Speaker: Scott M. Giordano, Esq., V.P., Data Protection, Spirion Scott M. Giordano is an attorney with more than 20 years of legal, technology, and risk management consulting experience. An IAPP Fellow of Information Privacy and a Certified Information Security Systems Professional (CISSP), Scott serves as Spirion’s subject matter expert on multinational data protection and its intersection with technology, export compliance, internal investigations, information governance, and risk management. Scott has held senior positions at several legal technology firms and is listed as co-inventor on Intelligent Searching of Electronically Stored Information, patent application no. 13/842,910. In addition, he taught the first law school course anywhere on electronic evidence and e-discovery. Scott is a member of the bar in Washington state, California, and the District of Columbia.

Related topics:

More from this channel

Upcoming talks (4)
On-demand talks (54)
Subscribers (7131)
Spirion has relentlessly solved real data protection problems since 2006 with accurate, contextual discovery of structured and unstructured data, purposeful classification, automated real-time risk remediation, and powerful analytics and dashboards to give organizations greater visibility into their most at-risk data and assets. Spirion’s privacy-grade™ data protection software enables organizations to reduce risk exposure (protect against data breaches and avoid costly fees), gain visibility into their data footprint—wherever it lives, improve business efficiencies and decision-making while facilitating compliance with ever-changing data protection laws and regulations. With solutions offered both in a highly-scalable cloud architecture or on-premise, Spirion is equipped to help protect what matters most—the personal data of our customers, our colleagues, and our communities.