Presented By O’Reilly and Cloudera
Make Data Work
21–22 May 2018: Training
22–24 May 2018: Tutorials & Conference
London, UK

Executive Briefing: GDPR—Getting your data ready for heavy, new EU privacy regulations

Mark Donsky (Cloudera), Syed Rafice (Cloudera)
11:1511:55 Wednesday, 23 May 2018
Executive Briefing, Law, ethics, and governance, Strata Business Summit
Location: Capital Suite 17 Level: Intermediate
Secondary topics:  Financial Services, Security and Privacy

Who is this presentation for?

  • DBAs, SysAdmins, vice presidents of data management, CIOs, and analytics leads at companies that do any business in Europe

Prerequisite knowledge

  • A general understanding of regulation and big data concepts

What you'll learn

  • Understand the breadth and impact of the General Data Protection Regulation
  • Learn strategies to simplify compliance


The General Data Protection Regulation (GDPR) will go into effect on May 25, 2018, for all organizations that offer services to EU residents, as well as anyone who controls or processes data within the EU. Unlike familiar regulations that deal with financial and security matters, GDPR deals specifically with broad data privacy and grants individuals in the EU the following rights:

  • The right to personal data protection, ensuring that personal data is handled with industry-standard data security controls and best practices, including data protection by design and cross-border data transfer prevention
  • The right to data portability so that individuals can choose to take their data elsewhere
  • The right to be forgotten and to erasure so that individuals can request deletion
  • The right to notification of personal data breach, ensuring that any data breach is communicated to both authorities and users

Within companies, GDPR compliance is an enterprise-wide business problem requiring a massive cross-departmental effort that touches upon oversight, technology, processes, and people. With fines for violations that could be as high as €20 million or 4% of global annual revenue, now is the time to ensure your data environment is flexible enough to meet the needs of current and future regulatory regimes. While simple and straightforward from a political perspective, the data center implications of this legislation are complex. Mark Donsky and Syed Rafice outline the capabilities your data environment needs to simplify compliance with GDPR and future regulations.

Topics include:

  • Metadata classification on ingest
  • Integration with speciality tools that can profile and tag datasets
  • Column-level lineage to view how impacted data is used
  • Fine-grained data authorization so only users who need data access have data access
  • Comprehensive encryption at rest and in motion, with separation of duties so admins can’t access user data
  • Data organization and anonymization, minimizing the locations of personal data
  • Data erasure strategies for compliance with the right to be forgotten
Photo of Mark Donsky

Mark Donsky


Mark Donsky leads data management and governance solutions at Cloudera. Previously, Mark held product management roles at companies such as Wily Technology, where he managed the flagship application performance management solution, and Silver Spring Networks, where he managed big data analytics solutions that reduced greenhouse gas emissions. He holds a BS with honors in computer science from the University of Western Ontario.

Photo of Syed Rafice

Syed Rafice


Syed is a Principal System Engineer at Cloudera specializing in Big Data on Hadoop technologies since 2009. He is responsible for designing, building, developing and assuring a number of enterprise level Big Data platforms using the Cloudera distribution. He has a focus on security specializing in both Platform and Cyber Security. He has worked across multiple sectors including but not limited to government, telecoms, media, utilities, financial services and transport.

Leave a Comment or Question

Help us make this conference the best it can be for you. Have questions you'd like this speaker to address? Suggestions for issues that deserve extra attention? Feedback that you'd like to share with the speaker and other attendees?

Join the conversation here (requires login)


Ray Collyer |
7/02/2018 15:21 GMT

Having been to 18 various GDPR consulting/training events in the last 6 months,I have been disappointed almost disgusted that at no time during these presentations has electronic data destruction and ethical IT asset disposals been mentioned of discussed. I would be happy to discuss this topic further if you so wish? Cheers Ray – 07823 320960