GDPR requires organizations to implement “appropriate technical and organizational measures” to protect personal data. This session will provide practical guidance to enable you to determine what is appropriate for your organization—based on an analysis of regulatory guidance, enforcement and relevant case law.
1: Understand the factors that a regulator will use to determine what’s appropriate.
2: Discover the published regulatory guidance and regulatory action that show how regulators “think.”
3: Develop the confidence to determine what are the appropriate technical measures for an organization.