The General Data Protection Regulation (GDPR) comes into force on 25 May 2018 and will impose significant new burdens on companies across Europe.

The GDPR was published on 4th May 2016 and will make changes to how companies obtain consent, outsource, transfer data, maintain internal record keeping and undertake impact assessments for new product development.

IT contracts being negotiated now, and customer agreements made in the next 12 months, will all be affected by the new law. As the GDPR will cover a diverse range of business activity you will need to ensure that compliance is being considered today for ongoing projects as well as those post implementation.

With this in mind we have designed a seminar led by data protection lawyers with in-house counsel experience, that consider the GDPR in a commercially pragmatic way, dealing with issues such as budgetary constraints and how to get various business units on board for the journey ahead. 

Seminar details

The seminar will take delegates though a detailed timeline setting out what steps you need to take over the next two years and when to take them. We have also plotted the ICO's recently published guidance on preparing for the GDPR against this timeline.

As we work through the timeline, we will also consider:

• Practical steps to be ensure your suppliers do not put you in breach of data protection law
• How to conduct a security review and what to include in your data breach response plan