ANNUAL CONFERENCE ON EUROPEAN DATA PROTECTION LAW 2016. Focus on the new EU General Data Protection Regulation , Brussels, 7-8 April 2016
With the General Data Protection Regulation (GDPR) about to be passed, time has come to assess the concrete novelties it will introduce and to focus on how to implement and apply it in practice. The Annual Conference on European Data Protection Law 2016 aims to provide legal practitioners and data protection specialists with the necessary guidance to prepare for GDPR implementation and to realise its full potential.
- GPDR (extra-)territorial, personal and material scope, key definitions and key principles, special regimes (archiving, historical, statistical and scientific research, journalistic activities, legitimate public interest)
- Ensuring citizens’ digital rights & enhancing consumers’ trust:
data portability, purpose limitation, right of access to personal data, right to rectification, erasure and object, harmonisation of remedies and new rules on standing
- Adapting controllers’ and (sub-)processors’ compliance strategy:
principles of accountability, privacy by design and privacy by default; obligations regarding data minimisation and pseudonimisation, data subjects’ consent, data protection impact assessment (DPIA) and data protection authority (DPA) consultation, appointment of data protection officers (DPO) & third-country representatives; security risk management and draft Network and Information Security (NIS) Directive, mandatory data breach notification; scope of legitimate interest justification
- A harmonised governance: one-stop-shop principle, DPAs coordination and determination of lead-DPA in cross-border cases, role of the new European Data Protection Board (EDPB) and new consistency mechanism
- Strengthened enforcement and redress mechanisms: new DPAs’ enforcement powers and harmonisation of sanctions; national and European judicial review
- Securing international transfers: adequacy mechanism, standard data protection clauses, binding corporate rules (BCR), contractual clauses, approved codes of conduct and certification mechanisms; post-Schrems Safe Harbour 2.0?