Resources

ICT vendors face privacy and security challenges from different points of view: they need to implement internally but also need to face customer requirements from a product, service and delivery point of view. We need a holistic approach which incorporate security and privacy into the DNA of the company

This session will discuss developments on the Personal Data Protection Act 2010 in Malaysia since its implementation in late 2013, including the 2015 Personal Data Protection Standards, highlights of the proposed provisions of various sector-specific Codes of Practice, and enforcement action/initiatives to date.

A common thread across Singapore's Smart Nation initiative and businesses going digital is the need to collect and comprehend vast amounts of data. How does this square with individuals’ growing concern over the privacy of their personal data and the ability to secure such data in this age of ‘data-terrorism’?

When it comes to personal data, you need to know who has access, who processes the data, what is the legal location, what are the considerations for law enforcement access, and answers to many other questions to avoid running afoul of data protection laws. How do you bring order to the chaos for better data governance?

In the past 36 months, five standards have been published to support Cyber Security Operations and Breach Response. How do you implement them within any organization size and what are the available technologies to automate and orchestrate incident management and response?

For most privacy laws across the globe, “identifiability” is a crucial threshold question that determines whether laws apply or not. In the age of big data, with improved techniques and technologies for re-identification, the collection and use of supposedly anonymous information is a growing challenge.

As a privacy professional responsible for GDPR, how do you determine the privacy impacts of your new products and services? A privacy impact assessment (PIA) in conjunction with data mapping practices to understand how data flows through an organization, is the perfect tool to document and track these new initiatives.

The new EU General Data Protection Regulation (GDPR) aims to align the different legislations, drive a single digital market and increase security cooperation across its member states. What are the core principles and applicability of the GDPR, and what must companies do to avoid missteps?

History has repeatedly demonstrated the dangers of unchecked government surveillance on citizens and companies conducting unchecked mass surveillance can be equally damaging. Where can we draw the line? How can we balance the value of our data to society with its personal nature?

New Chief Privacy Officers are being created all the time, as firms recognise the central role privacy is playing in our society and their businesses. However the scope of this role varies between companies and is often rapidly evolving. Will the GDPR influence the shape of things to come? What will and should happen?