GDPR 72-Hour Notification Is Your Incident Response Plan Ready?

Broadcast date: Thursday, March 15, 2018

The GDPR compliance deadline is right around the corner, and with it a stringent 72-hour notification timeline. Risk assessing an incident against GDPR provisions and notifying within the designated timeframe is a requirement for compliance, and the risk of noncompliance is significant, with fines that could reach 4 percent of global annual revenue.

Questions you may be asking yourself:

  • Does your organization’s incident response plan comply with GDPR’s tight notification timelines?
  • Do you have a handle on the differences between U.S. and EU regulatory frameworks and data transfer and storage requirements?
  • What type and form of data triggers the need to notify?
  • Do you know when, who and how to notify as a controller versus processor?

Join our panel of experts to learn the answers to these questions and more, and about the requirements of GDPR Article 33 and how it compares with data breach notification requirements around the world. You’ll discover strategies to efficiently keep up with ever-shifting U.S. and international data breach notification obligations, and have the opportunity to ask your questions of the expert panelists.

Kelly Burg, CIPP/US, Product Manager, Regulatory Content, RADAR, Inc.
Julia Jacobson, CIPP/US, CIPM, FIP, Partner, K&L Gates LLP
Doug Kruger, SVP, RADAR, Inc.

Eligible CPEs: CIPP/A, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPM, and CIPT. 1.0 CPE credit