Emerging Themes Summit: General Data Protection Regulation (GDPR)

This summit will address General Data Protection Regulation (GDPR), reviewing what it is and what it means to your institution. The panel structure will allow for Q&A engagement between legal experts and the audience.

What is General Data Protection Regulation?

General Data Protection Regulation (GDPR) is a European Union law that will come into force in May 2018, significantly improving data protection for individuals in the European Union and internationally by introducing new restrictions for companies that process the data of EU residents. The new regulation requires organizations to adopt stricter data protection controls, and specifies procedures and timeframes for breach notification. The GDPR also broadens the rights of individuals with respect to their personal data, and involves larger penalties for violations.

What does it mean for higher education in the US?

GDPR applies to any US business or public body that stores or processes the data of EU residents. This includes every employer in the EU, businesses that offer products and services to EU citizens and residents, and companies that process personal data on behalf of other organizations. GDPR impacts companies that do not have a presence in the EU.

GDPR protects almost all types of personal data, including basic identity information, financial data, web data and more. According to Article 9, certain types of data cannot be processed unless data subject has given explicit consent; this list includes biometrics, racial or ethnic origin, political opinions, and data concerning health.

Higher education institutions, especially those with high levels of international research, global commercial activities, study abroad or enrollment of people based in the EU, should be mindful of GDPR.

Agenda

• 9:30-10:00 – Registration & Networking, Coffee and Pastries Served
• 10:00-10:15 Welcome Remarks by Edge
• 10:15-11:00 GDPR Overview by Samantha Kim – Attorney, Robert Half Legal
  This overview includes practical and interactive content to help you understand and answer key aspects of the regulation, including:
  • Expanded definition of personal data
  • Article 32 security requirements
  • The right to Erasure and Data Portability
  • Vendor management and use of cloud technology
  • Business Impact — How will the GDPR affect your organization and your business teams?
  • Compliance Program — What are the key steps to address this regulation on time?
• 11:00-12:00 Panel Discussion
  Panel Moderated by Michael Reekie, Director of Network and Security Operations, Edge
  • Samantha Kim – Attorney, Robert Half Legal
  • Rob Sobers – Senior Director, Varonis
  • Brad Dispensa – Senior Solutions Architect – Amazon Web Services, Worldwide Public Sector Group
• 12:00-1:00 Lunch
• 1:00-2:00 Edge Networking and Security Communities of Practice Member Meeting

Presenter Details

Samantha Kim – Attorney, Robert Half Legal

Rob Sobers – Senior Director, Varonis

Rob Sobers has been writing and designing software for over 20 years and is co-author of the book Learn Ruby the Hard Way, which has been used by millions of students to learn the Ruby programming language. Prior to joining Varonis in 2011, Rob held a variety of roles in engineering, design, and professional services.

Brad Dispensa – Senior Solutions Architect – Amazon Web Services, Worldwide Public Sector Group

Brad works as a subject matter expert in the AWS security group and specializes in compliance workloads and high performance compute.  Prior to joining AWS, Brad worked with the University of California as a technology and security director as well as a researcher in computational fluid dynamics for intracranial aneurysms and genetic research.

Sponsored by:

Middlesex County College

2600 Woodbridge Ave.
Brunswick Room, Cabriel Hall
Edison NJ

Website: https://www.middlesexcc.edu/