Presented By O’Reilly and Cloudera
Make Data Work
21–22 May 2018: Training
22–24 May 2018: Tutorials & Conference
London, UK

Executive Briefing: GDPR - Getting Your Data Ready for Heavy New EU Privacy Regulations

Mark Donsky (Cloudera)
11:1511:55 Wednesday, 23 May 2018
Executive Briefing, Law, ethics, and governance, Strata Business Summit
Location: Capital Suite 17 Level: Intermediate
Secondary topics:  Security and Privacy

Who is this presentation for?

Every company that does any business in Europe: DBA, SysAdmin, VP Data Management, CIO, Analytics lead

Prerequisite knowledge

General understanding of regulation and big data concepts

What you'll learn

Attendees will develop an understanding of the breadth and impact of the General Data Protection Regulation, as well as the strategies they need to deploy to simplify compliance.


General Data Protection Regulation (GDPR) will go into place on May 25, 2018 for all organizations – both EU and non-EU – that offer services to EU residents, as well as anyone who controls or processes data within the EU.

GDPR compliance is an enterprise-wide business problem requiring a massive cross-departmental effort that touches upon oversight, technology, processes, and people. With fines for violations that could be as high as €20 million or 4% of global annual revenue, now is the time to ensure your data environment is flexible enough to be meet the needs of current and future regulatory regimes.

Unlike familiar regulations that deal with financial and security matters, GDPR deals specifically with broad data privacy, and grants individuals in the EU have the following rights:

  • Right to personal data protection – ensuring that personal data is handled with industry-standard data security controls and best practices, including data protection by design and cross-border data transfer prevention.
  • Right to data portability – so that individuals can choose to take their data elsewhere
  • Right to be forgotten and to erasure – so that individuals can request deletion
  • Right to notification of personal data breach – ensuring that any data breach is communicated to both authorities and users

While simple and straight-forward from a political perspective, the datacenter implications of this legislation are complex. This session will cover GDPR rules, and then the requirements your datacenter will likely need to be compliant, including:

  • Metadata classification on ingest
  • Integration with speciality tools that can profile and tag data sets
  • Column-level lineage to view how impacted data is used
  • Fine-grained data authorization so only users that need data access have data access
  • Comprehensive encryption at-rest and in-motion, with separation of duties so admins can’t access user data
  • Data organization and anonymization minimizing the locations of personal data
  • Data erasure strategies for compliance with the right to be forgotten
Photo of Mark Donsky

Mark Donsky


Mark Donsky leads data management and governance solutions at Cloudera. Previously, Mark held product management roles at companies such as Wily Technology, where he managed the flagship application performance management solution, and Silver Spring Networks, where he managed big data analytics solutions that reduced greenhouse gas emissions. He holds a BS with honors in computer science from the University of Western Ontario.

Leave a Comment or Question

Help us make this conference the best it can be for you. Have questions you'd like this speaker to address? Suggestions for issues that deserve extra attention? Feedback that you'd like to share with the speaker and other attendees?

Join the conversation here (requires login)