GDPR & Information Security
The Links and the Overlap
The enactment of the GDPR (General Data Protection Regulation) brought to the fore a number of information security requirements. These requirements are intrinsic to the successful operation of GDPR in any organisation in practice. From handling of online cookies and consents, to timely handling of data subject requests.
This course aims to highlight the links and overlap between privacy and information security.
Trainers
Dr. Claire Cassar
Attila Hetey
GDPR & Information Security
The Links and the Overlap
About this session
GDPR requires businesses to implement technical and organisational measure to ensure high standards of information security. Art. 32 for instance speaks about the security of data processing. GDPR however cites the principles but not the best practices of implementation.
On the other hand, the ISO 27001 standard for information security provides best-practice requirements for the implementation of an information security management system (ISMS).
This course explores the various requirements under GDPR and you can achieve these through implementing an ISMS within your business. In this manner you will achieve compliance with GDPR.
Some of the topics covered are:
- overlapping principles in GDPR and Information Security such as confidentiality;
- risk management and impact assessments;
- data subject consents and rights;
Target Audience
Designed for all employee levels within an organisation.
Session Duration
3 hours
Session Outcomes
After attending this session you will have a strong basis on GDPR principles and how these can be applied by adopting an ISMS.