23rd Annual Data Protection Compliance Conference (UK)

23rd Annual

DATA PROTECTION

COMPLIANCE CONFERENCE

 

Tuesday 24th - Thursday, 26th September 2024

CENTRAL LONDON / VIRTUAL

DAY-1-SPEAKERS-BUTTON DAY-2-WORKSHOPS-BUTTON DAY-3-WORKSHOPS-BUTTON

 

 

Workshops - Day 2 & Day 3

25th & 26th September 2024


Led by Industry Experts, each Workshop is highly practical and explores a range of key topics/themes through case-studies and group activities.

 

 

Day 2 Workshops - in-Person

Day 2 - In-Person Workshops

(Wednesday, 25th September 2024)

On the second day, delegates select an initial two Workshops (from a choice of six) to attend in-person at the Conference venue in Central London.

 

 

Day 3 Workshops - Virtual

Day 3 - Virtual Workshops

(Thursday, 26th September 2024)

On the third day, delegates select a further two Workshops conducted via the Virtual meetings platform, Webex
 
 


 

Morning Workshops - Day 2 & Day 3


James Clark

Laura Dobson

WORKSHOP A:  

Adapting a Data Protection Compliance Framework to Address AI Risks

 

James Clark - DLA Piper

Laura Dobson - DLA Piper

 

As the pace of AI adoption continues to intensify, privacy professionals are grappling with the question of how to build an effective framework to assess and mitigate the data protection risks associated with the use of AI systems. Fortunately, there is a close relationship between existing principles of data protection law and the principles that are fast becoming accepted as the recognised standards for ensuring the safe and ethical use of AI technologies. Consequently, data protection teams are well-placed to help their organisations address the opportunities and challenges of AI. This Workshop:
 
  • Considers what AI actually is and why data protection law is relevant to the development and use of AI systems
  • Looks at the relationship between the data protection principles and ‘AI safety’ principles
  • Considers in detail the automated decision making framework under the GDPR and why this is central to the relationship between data protection law and AI
  • Looks at how DPIAs and other privacy assessments can be re-engineered to address AI-specific risks
  • Examines supply chain issues associated with data processors that provide AI enabled data processing services
  • Examines how data protection authorities are regulating the use of AI

 

 


 

Claire HallWORKSHOP B:

Subject Access Requests: How to Decide What To Disclose

 

Claire Hall - VWV 


Responding to subject access requests is a key part of a data protection professional's job. As SARs are often made in the context of disputes and complaints, deciding exactly what to disclose can involve weighing up various competing factors. Disclosing too much and too little both carry risks.  This practical workshop includes:
  • How to decide when to disclose information about other people
  • How to choose between redacting non-disclosable information or extracting disclosable information
  • Applying the frequently used exemptions, such as confidential references, management planning and forecasting, legal professional privilege and negotiations
  • The rules around specific types of data
  • What the requester is entitled to in addition to a copy of their personal data

 


Peter Given - EY

WORKSHOP C:   

NextGen Privacy Governance

 

Peter Given - EY

 

The world is changing at a phenomenal pace, fueled in part by advances in technology, digital transformation and increasingly data-hungry businesses. In parallel, across the globe we are seeing the rapid expansion of privacy laws, together with the evolution of existing privacy legislation and the growth of non-privacy laws that either affect privacy governance or form part of its remit. The privacy governance function must evolve if it is to survive these changes and deliver on its purpose. Using case studies, this Workshop:

  • Unpacks the challenges facing today’s privacy governance function
  • Identifies how best to solve for those challenges
  • Considers how to evolve the privacy governance function so that it is fit for the future
  • Considers the role of technology and privacy governance metrics in the function of the future

 

      

Afternoon Workshops - Day 2 & Day 3


Andrew Kimble WORKSHOP D:  

Use of AI and Other Technologies in the Workplace

 

Andrew Kimble - Womble Bond Dickinson

 

The use of new technologies is both inevitable and valuable in order to save time and improve efficiency. However, organisations must deploy new technologies, including AI, both fairly and lawfully. This Workshop considers:

  • The challenges of ensuring compliance with data protection laws when using AI and other new technologies in the workplace at all stages of the employment lifecycle, including recruitment
  • The competing interests of an employer's legitimate interest to ensure productivity and an employee's right to privacy
  • What employers can lawfully monitor and what they cannot, and the practical challenge this presents when employers can utilise increasing opportunities for monitoring the workforce
  • The future regulatory landscape for AI in the UK and EU and the practical steps that HR teams should take now

 

 


Liz FitzsimonsWORKSHOP E:  

CCTV / Facial Recognition

 

Liz Fitzsimons - Eversheds Sutherland

 

The lawful use of CCTV and facial recognition systems has long been a challenge to organisations, as the nature of the data each captures can be particularly high risk and intrusive. Development and adoption of increasingly complex and advanced video surveillance systems, including those making use of AI-based technologies, carry greater risks of more intrusive surveillance. Recognition of the changes in risk profile are evidenced by enhanced regulatory scrutiny and activity, especially where large volumes of data are obtained and combined. These concerns have resulted in new regulatory guidance and decisions, which organisations must ensure they understand. This workshop provides practical advice on the key issues, including:

  • Considering the particular risks related to video surveillance systems
  • Understanding additional concerns arising from adoption of facial recognition technologies, AI type technology and ‘big data’ use within such systems
  • Understanding the legal issues and challenges that apply to running these systems, including where data being processed is of a higher risk
  • Considering practical steps to be taken when implementing or managing such video surveillance systems

 

 


Olivia WhitcroftWORKSHOP F: 

Picking the Right Lawful Basis for your Processing Activity

 

Olivia Whitcroft - Solicitor, OBEP

 

How do you know which lawful basis to use for a particular processing activity? Of the six options, consent is first on the list, but is often not the best one, particularly as the data subject could say no! The other bases require a test of necessity, which can be challenging to apply in practice. This practical Workshop looks at:
  • What are the six lawful bases, and in what circumstances you can consider using each one
  • When consent should (or should not) be used, and how to obtain a valid consent
  • What "necessary" means
  • How to carry out a legitimate interests assessment, and the imminent changes to the legitimate interests lawful basis under the DPDI Bill
 
 
 
 
 
The lawful use of CCTV and facial recognition systems has long been a challenge to organisations, as the nature of the data each captures can be particularly high risk and intrusive. Development and adoption of increasingly complex and advanced video surveillance systems, including those making use of AI-based technologies, carry greater risks of more intrusive surveillance. Recognition of the changes in risk profile are evidenced by enhanced regulatory scrutiny and activity, especially where large volumes of data are obtained and combined. These concerns have resulted in new regulatory guidance and decisions, which organisations must ensure they understand. This workshop provides practical advice on the key issues, including:

•    Considering the particular risks related to video surveillance systems
•    Understanding additional concerns arising from adoption of facial recognition technologies, AI type technology and ‘big data’ use within such systems
•    Understanding the legal issues and challenges that apply to running these systems, including where data being processed is of a higher risk
•    Considering practical steps to be taken when implementing or managing such video surveillance systems
 
 

Book Now

Sign up to PDP's email News Updates

View conferences by:


 

FREE SAMPLE ARTICLE

 

 

 

Qualify as a Data Protection Practitioner



This Event is

sponsored by:

  

Eversheds Sutherland

 

PDP Training

   PDPJ-conference-advert

 

 

  


 

 

 

Conference
Testimonials

 

 

“Excellent!”
Simon Hall
IBM


“The updates on existing subjects were particularly useful.”
David Pickersgill
Johnson & Johnson


“The networking opportunities were very good. Very useful. Will attend again.”
John Pendleton
Old Mutual


“Speakers delivered good insights into various aspects of the GDPR”
Paul Woods
Government Legal Department


“Very informative and well executed conference”
Claire Robson
Kent & Medway NHS Trust


“The hotel facilities were excellent”
Andrew Dyke
Operation Mobilisation


“An interesting day packed with a plethora of useful materials. The conference never disappoints with the quality of speakers, providing insightful and pragmatic views and interpretations.”
Stephanie Allen
Shop Direct Group


“Very enjoyable day! Well worth attendance. Very good speakers.”
Sarah Rudge
OFQUAL


“All the sessions were informative and well presented. Very enjoyable!”
Fiona Cadger
Standard Life Aberdeen PLC


“Great conference with diverse topics”
Sara Ewen
Ashurst


“The presentations were excellent and thought provoking”
Catherine Bowen-Walker
Close Brothers


“A very well put together and well run conference”
Helen Worthington
Jerrold Holdings


“This conference cannot be improved. Excellent!”
Caroline Mair
Registers of Scotland


“A very useful and well organised conference”
Alistair Browne
British Council


“Very useful, practical and thought provoking”
Ben Moreland
LV=


“I'm extremely impressed by the quality of speakers and content covered. An excellent balance of public and private sectors”
Julie Hinault
States of Jersey Taxes Office


“The mix of speakers meant that a lot of ground was covered effectively.”
Karen Russell
British Arab Commercial Bank


“As usual the Conference was very well organised”
Paul Byrne
British Airways


“Excellent”
Greg Steel
Confused.com


“The conference content was excellent and thought provoking”
Kim Walker
Royal Air Force


“A very helpful conference. Took away some good ideas.”
Lesley Richardson
Financial Conduct Authority


“I found all the presentations very useful. The discussion panel was excellent... thoroughly enjoyed this conference and would not hesitate on coming back”
Scott McFarlane
National Trust for Scotland


“Good variety of relevant topics discussed throughout the day.  Speakers were engaging!”
Ellis Bryant
Saga Plc


“Great to see so many different sectors represented. Well organised!”
Jane Davy
University of Southampton


“Overall, an excellent, informative and useful day. Well worth attending"”
Colin Cluney
Department of Finance and Personnel


“All fantastic”
Leslie Waghorn
Virgin Media


“Another excellent year - very current and topical"
Stuart Gittings
Eli Lilly and Co.


“A very useful conference, a good broad range of speakers that were able to give practical advice"
David Mayers
Lisburn City Council


“All topics very relevant – most particularly the bits about social networking and security breaches.”
Jackie Evans
South Wales Fire & Rescue


“Once again a great conference, which gives me plenty to think about and implement!”
Kevin Giles
Glasgow Housing Association


“Very useful conference”
Alan White
Pitney Bowes


“Excellent. A well run event.”
David Higginson
ING Direct


“Great venue, superbly organised, very professional.”
Julie Barclay
Gambro Lundia


“Another excellent conference.”
Lynn Young
British Library


“Excellent venue, delegate packs and catering. Very focussed, practical and relevant.”
Albert Chan
Greater London Authority