- Dr Rachel O’Connell and Penny Heyes, Co Founders The Trust Bridge
This panel will explore the principles that underpin GDPR, the changes to data handling, privacy, security and a range of business and oversight processes that organisations need to implement to align with the GDPR and related legislation. A speaker from the ICO will provide insights regulatory oversight and information rights for children
- Carol Tullo, Former Director, Information Policy and Services, The National Archives, Controller of Her Majesty’s Stationery Office and Queen’s Printer
Principles of the GDPR
- Lisa Atkinson, UK Information Commissioners Office,
ICO guidance: DPOs, Enforcement & Sanctions.
- Chiara Rustici, GDPR analyst, consultant, author
Applying the GDPR Privacy Rules for the Data Economy
- Dr Rachel O’Connell, Trust Bridge
Building trust in a post-GDPR environment
The connected retail market is expected to reach more than USD 50 billion by 2022. An increasing amount of personal data is used for customer intelligence, as well as production and supply chain optimization. IoT (Internet of Things) is driving such growth, as smaller and more efficient retail spaces become “fulfilment centres”, with an extensive usage of sensors that create unique customer experiences. Within this context, adequate data governance is fundamental, not only to manage risks but also as a market differentiator.
Helen Dickinson, OBE, CEO, British Retail Consortium (TBD)
Or David Clarke
- Steve Wright, Group Data Privacy & InfoSec Officer at John Lewis
What does the GDPR mean for the retail sector?
- Marcus Piotrowski , COO at Plexus Platform Ltd
The role of smart contracts and digital signatures in retail supply chains and customer transactions
- Nandini Jolly, CEO, Crypotmill
Creating circles of Trust
·Louise Bennett, BCS - The Chartered Institute for IT
GDPR guidelines apply to all the data that is gathered throughout the big data analytics ecosystem, whether it is willingly provided by customers or gathered by automated systems. This includes PII data stored and used in data lakes and big data analytic platforms. This panel will consider the impact of the GDPR, on Big Data businesses and digital rights.
- Colin Wallis Kantara Initiative
Data Protection by Default - setting technical standards
- Dr Krisztina Huszti-Orban Senior Research Officer at The Human Rights, Big Data and Technology Project,
How technology and big data are reshaping the conceptualisation of rights in today’s digital age.
- Giles Watkins Commercial Director – JLINC
Entrusted Data, Data Provenance and Information Rights
- James Neville CEO & Founder @ Citizen
Redefining Personal Data Relationships
Post-GDPR marketing compliance is a complex matrix of rights, rules, and risk mitigation combined with traditional marketing operations. It is far from a one-size-fits-all model. This panel will explore existing, evolving and new models and explores to what extent these can help to restore trust
- Lydnsi Plummer, Advertising Industry Executive
- Rupert Graves , CEO AdUnity
Ad platforms and Consent Based Advertising- advertisers and publishers
- Mark Lizar Open Consent Group
Consent receipts - machine and human readable
- Chris Cooper, CEO Consentua
- John Mitchison - Direct Marketing Association
For the first time, the GDPR will bring in special protection for children’s personal data, particularly in the context of commercial internet services such as social networking. If your organisation offers online services (‘information society services’) to children and relies on consent to collect information about them, then you may need a parent or guardian’s consent in order to process their personal data lawfully. Organisations need to assess whether systems should be put in place to verify individuals’ ages and to obtain parental or guardian consent for any data processing activity. Member States can choose the age at which parental consent is required, and there are some variations across Europe, for example, Sweden, Poland and the UK have opted for 13, Spain for 14, Hungary, Italy and the Netherlands have set the bar at 16 years of age.
The UK's Digital Economy Bill, which requires adult content providers to conduct age-checks, received Royal Assent in April 2017. From October, the British Board of Film Classification (BBFC) will operate as the UK's age-verification regulator. At a meeting, in July, of representatives from fifty-seven OSCE countries, there was broad agreement on a proposal that to protect children and young people's digital rights each country should follow the UK's lead and draft legislation that requires content providers to conduct age-checks before affording access to 18+ content.
In October, the British Standards institution will publish a technical standard entitled PAS 1296 Age Checking code of practice. The standard was written to assist those businesses that are mandated to comply with legal requirements in conducting age checks, such as 18+, below 7 or over 16 years old.
- Paul Herbert, Goodman and Derrick LLP
- Dr Rachel O'Connell, Co Founder, TheTrustBridge
Age Checking code of practice
- Lubos Kuklis, European Regulators Group for Audiovisual Media Services (ERGA)
The Audio Visual Media Services Directive and age-checking content
- David Clarke, Dr Rachel O'Connell, Penny Heyes, Co Founders, The Trust Bridge
Methodology and Case studies - How to achieve GDPR alignment