IBM Collaboration Solutions Readiness for GDPR IBM Corporation
|
|
- Godwin Leonard
- 5 years ago
- Views:
Transcription
1 IBM Collaboration Solutions Readiness for GDPR
2 Disclaimer Notice: Clients are responsible for ensuring their own compliance with various laws and regulations, including the European Union General Data Protection Regulation. Clients are solely responsible for obtaining advice of competent legal counsel as to the identification and interpretation of any relevant laws and regulations that may affect the clients business and any actions the clients may need to take to comply with such laws and regulations. The products, services, and other capabilities described herein are not suitable for all client situations and may have restricted availability. IBM does not provide legal, accounting or auditing advice or represent or warrant that its services or products will ensure that clients are in compliance with any law or regulation. IBM s statements regarding its plans, directions, and intent are subject to change or withdrawal without notice at IBM s sole discretion. regarding potential future products is intended to outline our general product direction and it should not be relied on in making a purchasing decision. The information mentioned regarding potential future products is not a commitment, promise, or legal obligation to deliver any material, code or functionality. about potential future products may not be incorporated into any contract. The development, release, and timing of any future features or functionality described for our products remains at our sole discretion. Performance is based on measurements and projections using standard IBM benchmarks in a controlled environment. The actual throughput or performance that any user will experience will vary depending upon many factors, including considerations such as the amount of multiprogramming in the user s job stream, the I/O configuration, the storage configuration, and the workload processed. Therefore, no assurance can be given that an individual user will achieve results similar to those stated here. 4
3 An Introduction to GDPR
4 $7.8B is how much Global 500 companies will spend on GDPR compliance Financial Times, Companies face high cost to meet new EU data protection rules 6 6
5 GDPR enforcement begins on May 25, 2018 What is the purpose of this new regulation? Unify data protection across the 28 EU Member States Enhance the level of personal data protection for EU data subjects Simplify the regulatory environment for international business Modernize regulations in line with existing and emerging technologies It s likely that GDPR will fundamentally change the way organizations manage their people, policies, processes and technologies 7
6 Six key things you need to know about the GDPR 1 GLOBAL IMPACT Any organization anywhere that handles personal data of EU data subjects 2 DATA SUBJECT RIGHTS Significant enhancements put control into the hands of data subjects 3 UP TO 4% OF GLOBAL ANNUAL TURNOVER OR UP TO 20M Potential fines for non-compliance, whichever is greater 4 PRIVACY BY DESIGN Must be embedded by default into new products, systems and services 5 72-HOUR BREACH NOTIFICATION In the event of a data breach, regulators need to be notified in 72 hours 6 TOMs (TECHNICAL AND ORGANIZATIONAL MEASURES) What you have to implement in response to identified risks 8
7 Are you a data controller, a data processor or both? I m a data controller if I collect, use, share, transfer or otherwise manage personal data Example: I m a bank that is responsible for the privacy and security of my customers data My responsibilities include: Mapping data end-to-end so I know where it is, either within or outside of my organization Determining the Technical and Organizational Methods (TOMs) required to keep that data safe, and providing them to any processors I use Auditing my processors to make sure TOMs are followed I m a data processor if I am a third party who in some way handles data on behalf of a controller Example: I process, print and mail monthly statements on behalf of my customer, the bank that controls the data My responsibilities include: Agreeing to a binding contract with the controller Handling data and doing business in accordance with the TOMs provided by the controller Demonstrating compliance with TOMs and GDPR obligations, including security, privacy and breach notification 9
8 GDPR provides an enhanced level of protection for data subjects Higher standards for privacy policies and statements and for obtaining consent Easier access to personal data by a data subject Enhanced right to request the erasure of their personal data Right to transfer personal data to another organization (portability) Right to object to processing now explicitly includes profiling The definition of personal data includes virtually anything that identifies an individual, and now explicitly includes: 1. online identifiers 2. location data 3. biometric/genetic data Which do you collect? 10
9 IBM s Journey to GDPR Readiness
10 IBM s Journey to GDPR Readiness 12
11 Our GDPR Readiness Programme GDPR Programme Management Office IBM as a Data Controller IBM as a Data Processor IBM GDPR Common Services IBM Vendor Management IBM Client & Contract Management GDPR Go-To- Market Mission: Address IBM s obligations for managing internal data. Mission: Ensure compliance and governance for all IBM offerings and services that process personal data. Mission: Deploy enterprise tools and common services to facilitate GDPRrelated policy, system and business process changes. Mission: Align our supply chain to the upstream obligations we make to our clients and to our internal responsibilities. Mission: Help make the client buying process GDPR ready. Mission: Create a unified GDPR solution to help our clients with their GDPR readiness programmes. 13
12 The IBM GDPR Framework Phase Assess Design Transform Operate Conform Activity Conduct GDPR risk and privacy assessments across governance, people, processes, data, security Develop GDPR Readiness Roadmap Identify and map personal data Design governance, training, communication and process standards Design privacy, data management and security management standards Develop and embed procedures, processes and tools Deliver GDPR training Develop and embed standards and policies using Privacy by Design, Security by Design Detailed Data Discovery Execute relevant business processes Monitor security and privacy using TOMs Manage consent and data subject access rights Monitor, assess, audit, report and evaluate adherence to GDPR standards Outcome Assessments and roadmap Defined implementation plan Process enhancements completed Operational framework in place Ongoing monitoring and reporting Identify GDPR impact and plan Technical and Organisational Measures (TOMs) Includes Data Protection controls, processes and solutions to be implemented TOMs in place: Personal Data discovery, classification and governance in place Begin the new GDPR ready way of working Monitor TOMs execution: deliver compliance evidence to internal and external stakeholders 14
13 Assess Projects for Fortune 750 Companies 60+ countries 100 years of collective experience Text or image 15
14 Design Text or image 16
15 Transform Phase 1: Data & Risk Classification High Level Assessment Phase 2: Detailed Assessment & Priority Data Remediation Phase 3: Operationalise GDPR Capabilities Regulatory Response Dashboard Privacy Risk Assessments Data Maps Data Sources Discovery Data Catalogues Detailed Data Discovery Initial Record of Processing Priority Data Remediation Cognitive Analytics Solutions Contract Management Customer Portal Vendor Repository & Workflow Compliance Validation Consent Management Data Subject Access Requests Incident Response Data Remediation 17
16 Operate Text or image 18
17 Conform Text or image Text or image 19
18 IBM Collaboration Solutions
19 Contents IBM Collaboration Solutions and GDPR Readiness Individual Rights to Data for Cloud Offerings IBM Cloud Services Contractual Framework IBM Collaboration Solutions Services Description Updates 21
20 IBM Collaboration Solutions and GDPR Readiness IBM is committed to GDPR readiness across IBM Collaboration Solutions by May 25 th Each IBM Collaboration Solution cloud offering has been assessed and is being updated to support GDPR Readiness by following the IBM GDPR Readiness Framework. Those offerings will : provide the ability to search for personal data provide the ability to correct an error in personal information provide a method to delete or anonymize personal information provide a method to export personal information In addition, our contractual commitments are being updated to support GDPR readiness 22
21 Responsibilities as Data Controller and Data Processor - Examples Offering Name Cloud Offerings Data Controller (collects, uses, shares, transfers or otherwise manages personal data ) Data Processor (third party who in some way handles data on behalf of a controller) IBM Watson Workspace Customer IBM Box Relay Customer IBM IBM Connections Social Customer IBM IBM Connections Engagement Center Customer IBM) IBM Verse/SmartCloud Notes Customer IBM IBM Connections Cloud Chat Customer IBM IBM Connections Cloud Meetings Customer IBM Trial/Preview Offerings in Cloud IBM Watson Workspace Preview IBM IBM IBM Connections Cloud S1 Trial IBM IBM IBM Connections Social Trial IBM IBM On-Premise Offerings IBM Notes/Domino/Verse On-Premise Customer Customer IBM Connections Customer Customer IBM Sametime Customer Customer 23
22 Individual Rights to Data Target for May 25 th 2018 Offering Name Search for Personal Correct Personal Delete/Anonymize Personal Export Personal IBM Watson Workspace Box Relay IBM Connections Social IBM Connections Engagement Center IBM Verse/SmartCloud Notes IBM Notes/Domino/Verse On-Premise IBM Connections Cloud Chat IBM Connections Cloud Meetings 24
23 Individual Rights to Data IBM Watson Workspace Approach Delivery Mechanism Search for Personal Correct Personal Delete/Anonymize Personal Export Personal 1. Searching for PI used and collected as part of Watson Workspace is IBM responsibility 2. Searching for PI in conversations and files is the responsibility of the business owner 1. Correcting PI used and collected as part of Watson Workspace is IBM responsibility 2. Correcting PI in conversations and files is the responsibility of the business owner 1. Deleting PI used and collected as part of Watson Workspace is IBM responsibility 2. Deleting PI in conversations and files is the responsibility of the business owner 1. Exporting PI used and collected as part of Watson Workspace is IBM responsibility 2. Exporting PI in conversations and files is the responsibility of the business owner 1. Ticket opened with support which is handled manually by Watson Work 2. New search functionality in Watson Workspace and Work Services 1. Ticket opened with support which is handled manually by Watson Work 2. New search & edit functionality in Watson Workspace and Work Services 1. Ticket opened with support which is handled manually by Watson Work 2. New search & delete functionality in Watson Workspace and Work Services 1. Ticket opened with support which is handled manually by Watson Work 2. New search & export functionality in Watson Workspace and Work Services 25
24 Individual Rights to Data Box Relay Approach Delivery Mechanism Search for Personal Correct Personal Delete/Anonymize Personal Export Personal Searching for Personal used and collected as part of Box Relay Searching for Personal in workflow contents of Box Relay Correcting Personal used and collected as part of Box Relay Correcting Personal in workflow contents of Box Relay Deleting Personal used and collected as part of Box Relay Deleting Personal in workflow contents of Box Relay Exporting Personal used and collected as part of Box Relay Exporting Personal in workflow contents of Box Relay Available via ticket opened with support Available via new search functionality in Box Relay Available via ticket opened with support Available via new search & edit functionality in Box Relay Available via ticket opened with support Available via new search & delete functionality in Box Relay * Available via ticket opened with support Available via new search & export functionality in Box Relay 26
25 Individual Rights to Data IBM Connections Social, IBM Engagement Center Approach Delivery Mechanism Search for Personal Correct Personal Delete/Anonymize Personal Export Personal To allow users to find places where their name might be associated - the user can do a search (my content). IBM is also implementing a role called Connections Auditor (already available in private cloud) which will allow a 'functional user' to search through the system to find any content regardless of access. This user can search the content, but cannot otherwise interact with the content if they do not have access. Personal can be updated to correct or anonymize via a change to the users profile record. When the profile record is changed, that change will be applied to all the user information stored. Content can be deleted by the initial creator of the content or an organizational administrator. To selectively change the author of content, the customer would need to export via API and recreate as another user. The user or an administrator can print and/or Safe as PDF on any Connections content Available via existing Feature AND new role to be created within IBM Connections Update user record : self-service Edit/delete content: self-service Update authorship of content on cloud: orgadministration task to entirely anonymize the user Self-service 27
26 Individual Rights to Data IBM Verse/SmartCloud Notes Approach Delivery Mechanism Search for Personal Correct Personal Delete/Anonymize Personal A mechanism exists for an Administrator to set access controls on a user s mail file that will allow an Administrator or delegate, to view and search all user s mail files where the ACL is set to allow access. The admin then is able to search a specific users mail file using the notes client User Interface for Search. Alternatively Verse can also be used to search User Account.. If the proper access and edit rights have been assigned to a user for a specific mail file, they can delete, change or anonymize the exiting information using Notes Client on an individual . If the proper access and edit rights have been assigned to a user for a specific mail file, they can delete, change or anonymize the exiting information using Notes Client on an individual . Available via existing Capability Available via existing Capability Available via existing Capability Export Personal If the proper access and edit rights have been assigned to a user for a specific mail file, they can export s and documents. Available via existing Capability 28
27 Individual Rights to Data IBM Notes/Domino/Verse On-Premise Approach Delivery Mechanism Search for Personal Correct Personal Delete/Anonymize Personal A mechanism exists for an Administrator to set access controls on a user s mail file that will allow an Administrator or delegate, to view and search all user s mail files where the ACL is set to allow access. The admin then is able to search a specific users mail file using the notes client User Interface for Search. Alternatively Verse can also be used to search User Account.. If the proper access and edit rights have been assigned to a user for a specific mail file, they can delete, change or anonymize the exiting information using Notes Client on an individual . If the proper access and edit rights have been assigned to a user for a specific mail file, they can delete, change or anonymize the exiting information using Notes Client on an individual . Available via existing Capability Available via existing Capability Available via existing Capability Export Personal If the proper access and edit rights have been assigned to a user for a specific mail file, they can export s and documents. Available via existing Capability 29
28 Individual Rights to Data IBM Connections Cloud Meetings Approach Delivery Mechanism Search for Personal Correct Personal Delete/Anonymize Personal Export Personal 1. Searching for PI used and collected as part of IBM Cloud Meetings is IBM responsibility 2. Searching for PI in a user s Cloud meeting room data, meeting recordings or files shared in meetings is the responsibility of the business owner 1. Correcting PI used and collected as part of IBM Cloud Meetings is IBM responsibility 2. Correcting PI in meeting recordings and files shared in Meetings is the responsibility of the business owner 1. Deleting PI used and collected as part of IBM Meetings is IBM responsibility 2. Deleting PI in meeting recordings and files shared in Meetings is the responsibility of the business owner 1. Exporting PI used and collected as part of IBM Meetings is IBM responsibility 2. Exporting PI in meeting recordings and files shared in meetings is the responsibility of the business owner 1. Searching for PI in a user s Cloud account is an existing capability for the Org Admin 2. Searching for PI in log files or the meetings database would require opening a support ticket and be handled manually by the Ops team 1. Correcting PI in a user s Cloud account is an existing capability for the Org Admin 2. Correcting PI in log files or the meetings database would require opening a support ticket and be handled manually by the Ops team 1. Deleting PI in a user s Cloud account is an existing capability for the Org Admin 2. Personal information that is collected in Connections Cloud Meeting log files and meeting actions stored in the database will recycle so information will be automatically removed 3. Deleting PI in log files or the meetings database prior to the automatic deletion would require opening a support ticket and be handled manually by the Ops team 1. Exporting PI in a user s Cloud account is an existing capability for the Org Admin 2. Exporting PI in log files or the meetings database would require opening a support ticket and be handled manually by the Ops team 30
29 Individual Rights to Data IBM Connections Cloud Chat Approach Delivery Mechanism Search for Personal Correct Personal Delete/Anonymize Personal Export Personal 1. Searching for PI used and collected as part of IBM Cloud Chat is IBM responsibility 2. Searching for PI in conversations and files shared in Chat is the responsibility of the business owner as IBM service does not retain. 1. Correcting PI used and collected as part of IBM Cloud Chat is IBM responsibility 2. Correcting PI in conversations and files shared in Chat is the responsibility of the business owner as IBM service does not retain. 1. Deleting PI used and collected as part of IBM Chat is IBM responsibility 2. Deleting PI in conversations and files shared in Chat is the responsibility of the business owner as IBM service does not retain. 1. Exporting PI used and collected as part of IBM Chat is IBM responsibility 2. Exporting PI in conversations and files shared in chat is the responsibility of the business owner 1. The only personal information that is collected in Connections Cloud Chat is in log files and related to contact lists. Log files roll over. 2. Search for PI in a log file or contact list would require opening a support ticket and be handled manually by the Ops team 1. Personal information for a Chat user can be updated or corrected by the user or by an Org admin in the users profile. This is existing functionality in Connections Cloud 2. Correcting information in another users contact lists would require a PMR to have Ops update a DB 1. Personal information in the user s profile can be deleted or modified 2. Personal information related to contact lists would require opening a support ticket and be handled manually by the Ops team. 3. The only other personal information that is collected in Connections Cloud Chat is in log files which recycle so information will automatically be removed. 1. Export of PI in a log file or Contact list would require opening a support ticket and be handled manually by the Ops team. 31
30 IBM Connections Cloud Software as a Service Contractual Approach 1 2 Data Security & Privacy Principles (DSP) 4 Data Processing Addendum (DPA) Existing New Updates 6 Customer Notifications DPA Exhibits (Data Sheets) 3 5 Customer Contract Portal (2Q18) Base Terms (IBM Client Relationship Agreement, IBM Cloud Services Agreement, IBM Passport Advantage Agreement ) Updated Service Descriptions** 32
31 IBM Connections Cloud Service Description Section 3 updated with terms for Content and Data Protection : Content and Data Protection The Data Processing and Protection Data Sheet (Data Sheet) provides information specific to the Cloud Service regarding the type of Content enabled to be processed, the processing activities involved, the data protection features, and specifics on retention and return of Content. Any details or clarifications and terms, including Client responsibilities, around use of the Cloud Service and data protection features, if any, are set forth in this section. There may be more than one Data Sheet applicable to Client s use of the Cloud Service based upon options selected by Client. IBM will update Data Sheets as required when changes are made to the Cloud Service. The Data Sheet may only be available in English and not available in local language. Despite any practices of local law or custom, the parties agree that they understand English and it is an appropriate language regarding acquisition and use of the Cloud Services. The following Data Sheet(s), as may be modified by IBM, apply to the Cloud Service and its available options. Please access Service Description online for most current version : 33
32 Links to Additional General IBM s GDPR Readiness Journey Contracts and Agreements Cloud Service Agreement IBM Passport Advantage Agreement Client Relationship Agreement Data Processing Addendum IBM Connections Cloud Service Description IBM Online Privacy Statement 34
33 35
2017 IBM Corporation. IBM s Journey to GDPR Readiness
IBM s Journey to GDPR Readiness IBM s Journey to GDPR Readiness At IBM, we have a deep rooted understanding that privacy is foundational to trust. We are approaching the GDPR in the same spirit, both internally
More informationSAP and SAP Ariba Solution Support for GDPR Compliance
Frequently Asked Questions EXTERNAL The General Data Protection Regulation (GDPR) SAP Ariba Source-to-Settle Solutions SAP and SAP Ariba Solution Support for GDPR Compliance The European Union s General
More informationIBM Business Automation Content Services on Cloud
Service Description IBM Business Automation Content Services on Cloud This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized
More informationPreparing for the General Data Protection Regulation (GDPR)
Preparing for the General Data Protection Regulation (GDPR) ServiceNow Governance, Risk, and Compliance Table of Contents What is the GDPR?...3 Key Requirements for the GDPR...4 Accountability, Policies,
More informationPrepare for GDPR today with Microsoft 365
Prepare for GDPR today with Microsoft 365 2 Table of contents 01. 02. 03. 04. 05. Executive Sumary Landscape Assess and manage your compliance risk Protect your most sensitive data Closing 3 01. Executive
More informationEU General Data Protection Regulation ( GDPR ) FAQs External Version - 16 March 2018
EU General Data Protection Regulation ( GDPR ) FAQs External Version - 16 March 2018 This document is a broad overview of the GDPR and does not provide legal advice. We urge you to consult with your own
More informationWHITE PAPER EU General Data Protection Regulation Compliance
WHITE PAPER EU General Data Protection Regulation Compliance Table of Contents 1. SAP is ready for GDPR 04 1.1. Data Protection Processes 04 1.2. Data Protection Thresholds 05 1.3. Technical & Organizational
More informationThe General Data Protection Regulation (GDPR) FAQ
The General Data Protection Regulation (GDPR) FAQ Introduction The General Data Protection Regulation ( GDPR ) is the new legal framework that will come into effect on the May 25, 2018 in the European
More informationGDPR and Canadian organizations: Addressing key challenges GDPR and Canadian organizations: Addressing key challenges
GDPR and Canadian organizations: Addressing key challenges GDPR and Canadian organizations: Addressing key challenges Cyber Risk 1 GDPR and Canadian organizations: Addressing key challenges The regulation
More informationThe GDPR Are you ready?
The GDPR Are you ready? kpmg.ie The GDPR - Overview The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) will come into force from 25th May 2018, replacing the existing data protection
More informationEU-GDPR and the cloud. Heike Fiedler-Phelps January 13, 2018
. EU-GDPR and the cloud Heike Fiedler-Phelps January 13, 2018 Disclaimer SAP does not provide legal advice The following presentation is only about a high level discussion about GDPR. 2 EU-GDPR Summary
More informationAccelerate GDPR compliance with the Microsoft Cloud Henrik Mønsted
Accelerate GDPR compliance with the Microsoft Cloud Henrik Mønsted Cloud Solutions Architect Microsoft Denmark This presentation is intended to provide an overview of GDPR and is not a definitive statement
More informationIBM Operational Decision Manager on Cloud
Service Description IBM Operational Decision Manager on Cloud This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized users and
More informationIBM Control Desk on Cloud
Service Description IBM Control Desk on Cloud This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized users and recipients of
More informationGDPR General Data Protection Regulation
GDPR General Data Protection Regulation Compliance Information Guide - May 2018 About this document Ticket Arena & Event Genius Disclaimer DISCLAIMER: This is a brief presentation for information purposes
More informationPlanning for the General Data Protection Regulation
IBM Analytics White Paper Planning for the General Data Protection Regulation Protect, govern and know your data with help from IBM 2 Planning for the General Data Protection Regulation Overview Customer
More informationIBM Incentive Compensation Management on Cloud
Service Description IBM Incentive Compensation Management on Cloud This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized users
More informationGetting Ready for May 25, 2018
Data Protection and Privacy at SAP Getting Ready for May 25, 2018 Part 2: Product and Services Compliance How SAP is implementing the requirements of the General Data Protection Regulation (GDPR) in its
More informationIBM Emptoris Spend Analysis on Cloud
Service Description IBM Emptoris Spend Analysis on Cloud This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized users and recipients
More informationAmsterdam. Accelerate digital transformation with the cloud for smarter business. Reimagining applications & data for growth and innovation
Accelerate digital transformation with the cloud for smarter business Amsterdam Reimagining applications & data for growth and innovation Andrew Brown Vice President IBM Cloud Software Europe @AndyBrown74
More informationWHAT DOES THE GDPR MEAN FOR HR PROFESSIONALS?
WHAT DOES THE GDPR MEAN FOR HR PROFESSIONALS? The General Data Protection Regualtion An introduction The General Data Protection Regulation comes into effect in mid-2018 and will introduce a number of
More informationA PRACTICAL GUIDE FOR HOW AN ADVERTISER CAN PREPARE FOR GDPR JANUARY 2018
A PRACTICAL GUIDE FOR HOW AN ADVERTISER CAN PREPARE FOR GDPR JANUARY 2018 1 PURPOSE OF THIS DOCUMENT 2 This document is to be used as a guide for advertisers on how they should work with their agencies,
More informationIBM Facilities and Real Estate Management on Cloud
Service Description IBM Facilities and Real Estate Management on Cloud This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized
More informationEU General Data Protection Regulation
Steve Norledge, UKI GDPR Leader Sol Barron, Information Governance Specialist February 2017 EU General Data Protection Regulation Getting Started with GDPR GDPR significantly extends EU member-state data
More informationIBM Facilities and Real Estate Management on Cloud
Service Description IBM Facilities and Real Estate Management on Cloud This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized
More informationIBM Emptoris Supplier Lifecycle Management on Cloud
Service Description IBM Emptoris Supplier Lifecycle Management on Cloud This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized
More informationIBM Watson Analytics for Social Media
Service Description IBM Watson Analytics for Social Media This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized users and recipients
More informationwith Xavier Darmstaedter Managing Partner GEDAPRE DACOTA Consulting
with Xavier Darmstaedter Managing Partner GEDAPRE DACOTA Consulting xada@gedapre.eu tel 0475-41.03.22 xavier.darmstaedter@dacota.eu Gent, 3 October 2017 4 facts 1. We are not really in control of our personal
More informationGDPR COMPLIANCE: HOW AUTOMATION CAN HELP
GDPR COMPLIANCE: HOW AUTOMATION CAN HELP September 2018 DISCLAIMER This white paper is a commentary on the GDPR, as Chef interprets it, as of the date of publication. We like to think we ve been thoughtful
More informationData protection in light of the GDPR
Data protection in light of the GDPR How to protect your organization s most sensitive data Why is data protection important? Your data is one of your most prized assets. Your clients entrust you with
More informationProtecting Your Personal Data Globally
Protecting Your Personal Data Globally How ADP s Adoption of Binding Corporate Rules Helps Your Company Comply with the General Data Protection Regulation We re passionate about protecting the privacy
More informationINTERNATIONAL WHAT GDPR MEANS FOR RECORDS MANAGEMENT
WHAT GDPR MEANS FOR RECORDS MANAGEMENT Presented by: Sabrina Guenther Frigo Overview Background Basic Principles Scope Lawful Processing Data Subjects Rights Accountability & Governance Data Transfers
More informationWhat does the GDPR mean for recruitment?
What does the GDPR mean for recruitment? www.recruitment.software Contents 04 What is GDPR? In May 2018, Europe s new data protection rules will come into effect. 04 Who is responsible? 05 What are the
More informationAmsterdam. (technical) Updates & demonstration. Robert Voermans Governance architect
(technical) Updates & demonstration Robert Voermans Governance architect Amsterdam Please note IBM s statements regarding its plans, directions, and intent are subject to change or withdrawal without notice
More informationEU General Data Protection Regulation (GDPR) A Point of View for Technology Sector Organisations. For private circulation only.
EU General Data Protection Regulation (GDPR) A Point of View for Technology Sector Organisations For private circulation only Risk Advisory Preface Does the EU GDPR impact organisations in India? Yes!
More informationIBM Clinical Trial Management System for Sites
Service Description IBM Clinical Trial Management System for Sites This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized users
More informationIBM Collaboration Solutions Application Development. Frequently Asked Questions. Niklas Heidloff, IBM
IBM Collaboration Solutions Application Development Frequently Asked Questions Niklas Heidloff, IBM IBM Collaboration Solutions App Dev Community Advocate OpenNTF Director and Technical Committee Chair
More informationGDPR The role of the Internal Audit Function
www.pwc.com/mt GDPR The role of the Internal Audit Function What should the Internal Auditor do? 24 MAY 2017 it s not your problem yet 2 How does GDPR feature in your 2017 audit plan? much of 2017 will
More informationEU General Data Protection Regulation (GDPR) Tieto s approach and implementation
EU General Data Protection Regulation (GDPR) Tieto s approach and implementation GDPR roles and positions Data subjects Information on processing Consent or other basis for processing Right requests High
More informationGDPR: What Every MSP Needs to Know
Robert J. Scott GDPR: What Every MSP Needs to Know Speaker Robert J. Scott Agenda Purpose GDPR Intent & Obligations Applicability Subject-matter and objectives Material scope Territorial scope New Rights
More informationAccelerate GDPR compliance with the Microsoft Cloud Samuel Marín Sr. Sales Solutions Specialist
Accelerate GDPR compliance with the Microsoft Cloud Samuel Marín Sr. Sales Solutions Specialist This presentation is intended to provide an overview of GDPR and is not a definitive statement of the law.
More informationIBM Content Manager Enterprise Edition on Cloud
Service Description IBM Content Manager Enterprise Edition on Cloud This Service Description describes the Cloud Service IBM provides to Client. Client means the company and its authorized users and recipients
More informationData Protection Management System for GDPR compliance - using COBIT. January 2018
Data Protection Management System for GDPR compliance - using COBIT January 2018 Contents Executive summary 2 Using COBIT to establish a Data Protection Management System for the GDPR 4 Tools for the
More informationIBM Sterling Supply Chain Visibility Vendor Compliance
IBM Terms of Use IBM Sterling Supply Chain Visibility Vendor Compliance The terms of this IBM Terms of Use are in addition to those of the IBM International Passport Advantage Agreement, the IBM International
More informationGeneral Data Privacy Regulation: It s Coming Are You Ready?
General Data Privacy Regulation: It s Coming Are You Ready? Presenters Tristan North Worldwide ERC Government Affairs Adviser, Moderator William R. Tehan General Counsel, Graebel Companies, Inc. Hank A.
More informationEU General Data Protection Regulation: are you ready?
EU General Data Protection Regulation: are you ready? Contents What you need to know about the new EU General Data Protection Regulation Is your organization ready for the EU General Data Protection Regulation?
More informationReady for the GDPR, Ready for the Digital Economy Fast-Track Your Midsized Business for the Digital Economy While Addressing GDPR Requirements
SAP Database and Data Management Portfolio/SAP GRC Solutions Ready for the GDPR, Ready for the Digital Economy Fast-Track Your Midsized Business for the Digital Economy While Addressing GDPR Requirements
More information2018 IBM Systems Technical University
Cloud Management Console for Power Overview & Update S. Ashok sashok@us.ibm.com Cognitive Systems Management Development 2018 IBM Systems Technical University Orlando Please note IBM s statements regarding
More informationGDPR factsheet Key provisions and steps for compliance
GDPR factsheet Key provisions and steps for compliance Organisations hold vast amounts of personal data relating to customers, employees, and suppliers as well as within marketing databases. Compliance
More informationThe General Data Protection Regulation (GDPR): Getting in good shape for the deadline Copenhagen, 19 September 2017 Janus Friis Bindslev Partner,
The General Data Protection Regulation (GDPR): Getting in good shape for the deadline Copenhagen, 19 September 2017 Janus Friis Bindslev Partner, Deloitte, Cyber Advisory Table of Contents Introduction
More informationWith financial penalties of up to 4 percent of global annual turnover, are you up-to-date on the General Data Protection Regulation?
With financial penalties of up to 4 percent of global annual turnover, are you up-to-date on the General Data Protection Regulation? The General Data Protection Regulation The GDPR applies to all organizations
More informationCost of Maintaining on-premise
Please Note IBM s statements regarding its plans, directions, and intent are subject to change or withdrawal without notice at IBM s sole discretion. Information regarding potential future products is
More informationPeak Performance. Always.
Peak Performance. Always. Leveraging an IT as a Service platform infused with cognitive and automation to transform what you can achieve with your Hybrid Cloud infrastructure IBM Global Technology Services
More informationIBM Clinical Development Subscription
Service Description IBM Clinical Development Subscription This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized users and recipients
More informationEU General Data Protection Regulation (GDPR) Point of View for ERP and HRMS Operations. For private circulation only.
EU General Data Protection Regulation (GDPR) Point of View for ERP and HRMS Operations For private circulation only Risk Advisory Preface Does the EU GDPR impact organisations in India? Yes! This new law
More informationSOLUTION BRIEF EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER
EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER ARRIVAL OF GDPR IN 2018 The European Union (EU) General Data Protection Regulation (GDPR), which takes effect in 2018, will bring changes
More informationCanadian Maximo User Group Calgary, Alberta Watson Analytics for Maximo Clients!
Canadian Maximo User Group Calgary, Alberta Watson Analytics for Maximo Clients! Kim Woodbury kwoodbur@us.ibm.com Dave Calvert dcalvert@ca.ibm.com September 2016 1 Please Note IBM s statements regarding
More informationIBM Kenexa Talent Optimization
Service Description IBM Kenexa Talent Optimization This Service Description describes the Cloud Service IBM provides to Client. Client means the company and its authorized users and recipients of the Cloud
More informationGDPR Compliance Checklist
GDPR Compliance Checklist GDPR Compliance Checklist This GDPR Compliance Checklist sets out the key requirements that the General Data Protection Regulation will introduce into EU Privacy law on 25 May
More informationEU General Data Protection Regulation (GDPR) A Point of View. For private circulation only. Risk Advisory
EU General Data Protection Regulation (GDPR) A Point of View For private circulation only Risk Advisory Preface Does the EU GDPR impact organisations in India? Yes! This new law will have a profound impact
More informationIBM Cloud Operating Environment
IBM Cloud Operating Environment Codename: BlueMix February 18, 2014 1 2014 IBM Corporation Disclaimer Future Plans. IBM s statements regarding its plans, directions, and intent are subject to change or
More informationTHE GENERAL DATA PROTECTION REGULATION: A BRIEF OVERVIEW (*)
THE GENERAL DATA PROTECTION REGULATION: A BRIEF OVERVIEW (*) The first IBM Personal Computer was introduced just over 35 years ago, on August 12, 1981. The first-generation iphone was introduced in the
More informationIBM Sales Performance Management Sales Planning
IBM Terms of Use SaaS Specific Offering Terms IBM Sales Performance Management Sales Planning The Terms of Use ( ToU ) is composed of this IBM Terms of Use - SaaS Specific Offering Terms ( SaaS Specific
More informationGetting Ready for the GDPR
Getting Ready for the GDPR Ann Cartwright Information Governance Lead Sefton Council for Voluntary Service (CVS) Registered Charity No. 1024546. Company Limited by Guarantee No. 2832920. Suite 3B, 3rd
More informationOracle Service Cloud. New Feature Summary. Release 18C ORACLE
Oracle Service Cloud Release 18C New Feature Summary ORACLE TABLE OF CONTENTS Revision History 3 Overview 3 Agent Browser Desktop Automation 3 Workflow Enable Save Option for Workflow Elements 3 Workflow
More informationEU General Data Protection Regulation in the digital age: Are you ready?
EU General Data Protection Regulation in the digital age: Are you ready? What do you need to know about the new EU General Data Protection Regulation? Data protection has entered a period of unprecedented
More informationAchieving GDPR Compliance with Avature
Achieving GDPR Compliance with Avature What You Need to Know About GDPR The General Data Protection Regulation, or GDPR, is a regulation that was passed by the European Union in 2016 to update and replace
More informationTurn Noise into Actionable Insight with TrueSight Intelligence to Meet GDPR Requirements
Turn Noise into Actionable Insight with TrueSight Intelligence to Meet GDPR Requirements Hakan Işık AIOps Technical Leader, EMEA 18 October 2017 Today s Agenda General Data Protection Regulation (GDPR)
More informationThe software infrastructure that facilitates and accelerates initial GDPR compliance and manages it on a daily basis
GDPR Experience Platform - Professional Edition The software infrastructure that facilitates and accelerates initial GDPR compliance and manages it on a daily basis 1 rue du Gabian, 98000 Monaco, MONACO
More informationMind the Gap: GDPR Ahead. Rakesh Sancheti. Author. July Vice President and Business Head - Analytics, Europe and Nordic
Author Rakesh Sancheti Vice President and Business Head - Analytics, Europe and Nordic July 2017 The regulatory environment has become increasingly complex, with new regulations being introduced across
More informationIBM Information Server on Cloud
IBM Terms of Use SaaS Specific Offering Terms IBM Information Server on Cloud The Terms of Use ( ToU ) is composed of this IBM Terms of Use - SaaS Specific Offering Terms ( SaaS Specific Offering Terms
More informationIBM Emptoris Program Management on Cloud
IBM Terms of Use SaaS Specific Offering Terms IBM Emptoris Program Management on Cloud The Terms of Use ( ToU ) is composed of this IBM Terms of Use - SaaS Specific Offering Terms ( SaaS Specific Offering
More informationReady for GDPR? Five steps to turn compliance into your advantage
Ready for GDPR? Five steps to turn compliance into your advantage 2017 KPMG LLP, a UK limited liability partnership and a member firm of the KPMG network of independent member firms affiliated with KPMG
More informationGeneral Data Protection Regulation
General Data Protection Regulation Caroline Budde Vice President, Compliance, Global Privacy Officer Walgreens Boots Alliance Agenda Overview of global data protection The General Data Protection Regulation
More informationSOLUTION BRIEF EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER
EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER ARRIVAL OF GDPR IN 2018 The European Union (EU) General Data Protection Regulation (GDPR) that takes effect in 2018 will bring changes for
More informationA PATH TO GDPR READINESS WHITE PAPER
A PATH TO GDPR READINESS WHITE PAPER Table of Contents 1. Introduction 3 2. The GDPR Assessment 4 GDPR Readiness Assessment Quick Analysis Tool 4 Data Mapping and Lineage Personal Data Genome 4 Privacy
More informationEU General Data Protection Regulation: Are you ready?
EU General Data Protection Regulation: Are you ready? Powered by Global Markets EY Knowledge Contents What do you need to know about the new EU General Data Protection Regulation? Are organisations ready
More informationEdward O Donnell. The Digital Procurement Process
Edward O Donnell The Digital Procurement Process How the Integration of Data and Analytics is Revolutionizing the End-to-end & Cognitive Procurement Process IBM Procurement Data Officer Please Note: IBM
More informationEssential Guide to the GDPR. Practical Steps to Address EU General Data Protection Regulation Compliance
Essential Guide to the GDPR Practical Steps to Address EU General Data Protection Regulation Compliance Over 200 Pages of Legal Text Translated into Practical Implementation Steps 2 Essential Guide to
More informationService Description. (Maximo) 1. Cloud Service. 1.1 Optional Services
Service Description (Maximo) This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized users and recipients of the Cloud Service.
More informationOracle Policy Automation The modern enterprise advice platform
Oracle Policy Automation The modern enterprise advice platform Release features and benefits (November 2018) v1.01 Program agenda 1 2 3 Overview of Oracle Policy Automation New features in release For
More informationGeneral Data Protection Regulation Philippe Roggeband. Business Development, Manager, GSSO EMEAR
General Data Protection Regulation Philippe Roggeband Business Development, Manager, GSSO EMEAR Why should you care? Data Protection, and compliance with the General Data Protection regulation, is NOT
More informationIBM Watson Analytics
Service Description IBM Watson Analytics This Service Description describes the Cloud Service IBM provides to Client. Client means and includes the company, its authorized users or recipients of the Cloud
More informationEssential Guide to the GDPR. Practical Steps to Address EU General Data Protection Regulation Compliance
Essential Guide to the GDPR Practical Steps to Address EU General Data Protection Regulation Compliance Over 200 Pages of Legal Text Translated into Practical Implementation Steps 1 Essential Guide to
More informationDealing with the EU Data Protection Regulation in Practice. William Long, Partner Sidley Austin LLP February 11, 2016
Dealing with the EU Data Protection Regulation in Practice William Long, Partner Sidley Austin LLP February 11, 2016 Do you need to comply? The Regulation will apply to a business processing personal data:
More informationGet ready. A Guide to the General Data Protection Regulation (GDPR) elavon.ie
Get ready A Guide to the General Data Protection Regulation (GDPR) elavon.ie The General Data Protection Regulation (GDPR) will regulate the privacy and handling of the personal data of individuals in
More informationIBM Information Server on Cloud
IBM Terms of Use SaaS Specific Offering Terms IBM Information Server on Cloud The Terms of Use ("ToU") is composed of this IBM Terms of Use SaaS Specific Offering Terms ("SaaS Specific Offering Terms")
More informationNOT PROTECTIVELY MARKED
Meeting Audit Committee Public Session Date and Time Location Pacific Quay, Glasgow Title of Paper General Data Protection Regulation (GDPR) SPA Preparedness Item Number 9.4 Presented By Catherine Topley
More informationEuropean Union General Data Protection Regulation 25 th May 2018
European Union - General Data Protection Regulation External Frequently Asked Questions European Union General Data Protection Regulation 25 th May 2018 European Union General Data Protection Regulation
More informationIBM Facilities and Real Estate Management on Cloud (TRIRIGA)
IBM Terms of Use SaaS Specific Offering Terms IBM Facilities and Real Estate Management on Cloud (TRIRIGA) The Terms of Use ( ToU ) is composed of this IBM Terms of Use - SaaS Specific Offering Terms (
More informationService Description. IBM Cloud Video. 1. Cloud Service. 1.1 IBM Cloud Video Logistics Manager
Service Description IBM Cloud Video This Service Description describes the Cloud Service IBM provides to Client. Client means the contracting party and its authorized users and recipients of the Cloud
More informationGeneral Data Protection Regulation. Jim Sneddon GDPR-P, CISSP
General Data Protection Regulation Jim Sneddon GDPR-P, CISSP "The GDPR is actually already in force, it is just that Member States are not obligated to apply it until 25 May 2018. It s your job, it s your
More informationCustomer Data Protection. Temenos module for the General Data Protection Regulation (GDPR)
Customer Data Protection Temenos module for the General Data Protection Regulation (GDPR) Contents Glossary 03 GDPR Geographical Scope 03 GDPR implementation status 03 Overview of GDPR 03 Financial Institutions
More informationIBM Strategieupdate ECM und Cloud Data Services. Maik Tiedemann Executive IT Specialist IBM Analytics
IBM Strategieupdate ECM und Cloud Data Services Maik Tiedemann Executive IT Specialist IBM Analytics Disclaimer IBM s statements regarding its plans, directions, and intent are subject to change or withdrawal
More informationWhat is GDPR and Should You Care?
What is GDPR and Should You Care? Ingram Micro Inc. 1 Overview of Privacy Climate & Concerns 2 2 Today We Live In A World Where Advertisers read key words in your Facebook posts and emails and decide what
More informationGDPR Factsheet - Key Provisions and steps for Compliance
GDPR Factsheet - Key Provisions and steps for Compliance Organisations in the Leisure & Hospitality industry hold vast amounts of personal data relating to customers, employees, and suppliers as well as
More informationEU General Data Protection Regulation (GDPR)
A Brief Overview of the EU General Data Protection Regulation (GDPR) November 2017 What is the GDPR? After several years in the making, on 8 April 2016 the European Council finally adopted Regulation
More informationGDPR and Microsoft 365: Streamline your path to compliance
Streamline your path to compliance GDPR: an overview The General Data Protection Regulation (GDPR) is a new European Union (EU) privacy law that takes effect on May 25,. It is designed to give individuals
More informationSOLUTION BRIEF HELPING ADDRESS GDPR CHALLENGES WITH RSA SECURITY ADDRESSING THE TICKING CLOCK OF GDPR COMPLIANCE
HELPING ADDRESS GDPR CHALLENGES WITH RSA SECURITY ADDRESSING THE TICKING CLOCK OF GDPR COMPLIANCE PREPARATION FOR GDPR IS ESSENTIAL ACROSS THE GLOBE The EU GDPR imposes interrelated obligations for organizations
More informationSAP SuccessFactors Recruiting
SAP SuccessFactors Recruiting Technical and Functional Specifications CUSTOMER TABLE OF CONTENTS KEY FEATURES AND FUNCTIONALITIES... 3 RECRUITING POSTING... 3 User Experience and Interface... 3 Channel
More information