Presented By O’Reilly and Cloudera
Make Data Work
21–22 May 2018: Training
22–24 May 2018: Tutorials & Conference
London, UK

Executive Briefing: GDPR—Getting your data ready for heavy, new EU privacy regulations

Mark Donsky (Okera), Syed Rafice (Cloudera)
11:1511:55 Wednesday, 23 May 2018
Executive Briefing, Law, ethics, and governance, Strata Business Summit
Location: Capital Suite 17 Level: Intermediate
Secondary topics:  Financial Services, Security and Privacy

Who is this presentation for?

  • DBAs, SysAdmins, vice presidents of data management, CIOs, and analytics leads at companies that do any business in Europe

Prerequisite knowledge

  • A general understanding of regulation and big data concepts

What you'll learn

  • Understand the breadth and impact of the General Data Protection Regulation
  • Learn strategies to simplify compliance

Description

The General Data Protection Regulation (GDPR) will go into effect on May 25, 2018, for all organizations that offer services to EU residents, as well as anyone who controls or processes data within the EU. Unlike familiar regulations that deal with financial and security matters, GDPR deals specifically with broad data privacy and grants individuals in the EU the following rights:

  • The right to personal data protection, ensuring that personal data is handled with industry-standard data security controls and best practices, including data protection by design and cross-border data transfer prevention
  • The right to data portability so that individuals can choose to take their data elsewhere
  • The right to be forgotten and to erasure so that individuals can request deletion
  • The right to notification of personal data breach, ensuring that any data breach is communicated to both authorities and users

Within companies, GDPR compliance is an enterprise-wide business problem requiring a massive cross-departmental effort that touches upon oversight, technology, processes, and people. With fines for violations that could be as high as €20 million or 4% of global annual revenue, now is the time to ensure your data environment is flexible enough to meet the needs of current and future regulatory regimes. While simple and straightforward from a political perspective, the data center implications of this legislation are complex. Mark Donsky and Syed Rafice outline the capabilities your data environment needs to simplify compliance with GDPR and future regulations.

Topics include:

  • Metadata classification on ingest
  • Integration with speciality tools that can profile and tag datasets
  • Column-level lineage to view how impacted data is used
  • Fine-grained data authorization so only users who need data access have data access
  • Comprehensive encryption at rest and in motion, with separation of duties so admins can’t access user data
  • Data organization and anonymization, minimizing the locations of personal data
  • Data erasure strategies for compliance with the right to be forgotten
Photo of Mark Donsky

Mark Donsky

Okera

Mark Donsky leads product management at Okera, a software provider that provides discovery, access control, and governance at scale for today’s modern heterogeneous data environments. Previously, Mark led data management and governance solutions at Cloudera. Mark has held product management roles at companies such as Wily Technology, where he managed the flagship application performance management solution, and Silver Spring Networks, where he managed big data analytics solutions that reduced greenhouse gas emissions by millions of dollars annually. He holds a BS with honors in computer science from the University of Western Ontario.

Photo of Syed Rafice

Syed Rafice

Cloudera

Syed Rafice is a principal system engineer at Cloudera specializing in big data on Hadoop technologies and both platform and cybersecurity. He is responsible for designing, building, developing, and assuring a number of enterprise-level big data platforms using the Cloudera distribution. Syed has worked across multiple sectors including government, telecoms, media, utilities, financial services, and transport.

Comments on this page are now closed.

Comments

Ray Collyer |
7/02/2018 15:21 GMT

Having been to 18 various GDPR consulting/training events in the last 6 months,I have been disappointed almost disgusted that at no time during these presentations has electronic data destruction and ethical IT asset disposals been mentioned of discussed. I would be happy to discuss this topic further if you so wish? Cheers Ray – 07823 320960