Talk: GDPR is coming, are you prepared?

Is May 25th 2018 marked in your calendar? Have you discussed the GDPR in your organization? Do you have any idea what I'm taking about?

On May 25th 2018, the "General Data Protection Regulation" (GDPR) comes into effect in the EU, strengthening personal data protection, data processing and export of data to locations outside of the EU. Incompliance with the GDPR can result in a fine the size of 4% of your organizations turnover worldwide; in other words, end of business for many.

As a developer, if you are not aware of the strict data protection regime that comes with the GDPR, you risk compromising the data security of your organization through your development efforts. Article 20, the "Right to data portality", states that you should be able to supply your customers with their own personal data, "in a structured, commonly used and machine-readable format" and that they should be free to "transmit those data to another controller without hindrance from the controller to which the personal data have been provided".

The Norwegian Data Protection Authority (Datatilsynet) gathered a group of 7 developers from various organizations to create a guideline for how developers should deal with Article 20 of the GDPR, and I was one of the lucky participants in this project. In this session, I will take you through what the GDPR means to you and how you can use our work with the Norwegian Data Protection Authority to ensure that you are GDPR compliant.