Dr. Claire Cassar
GDPR & Information Security
The Links and the Overlap
About this session
GDPR requires businesses to implement technical and organisational measure to ensure high standards of information security. Art. 32 for instance speaks about the security of data processing. GDPR however cites the principles but not the best practices of implementation.
On the other hand, the ISO 27001 standard for information security provides best-practice requirements for the implementation of an information security management system (ISMS).
This course explores the various requirements under GDPR and you can achieve these through implementing an ISMS within your business. In this manner you will achieve compliance with GDPR.
Some of the topics covered are:
- overlapping principles in GDPR and Information Security such as confidentiality;
- risk management and impact assessments;
- data subject consents and rights;
Designed for all employee levels within an organisation.
After attending this session you will have a strong basis on GDPR principles and how these can be applied by adopting an ISMS.