Event Information

Share this event

Date and Time

Location

Location

The Atholl Room, Bank of Scotland plc

110 Saint Vincent Street

Glasgow

G2 5ER

United Kingdom

View Map

Event description
Morning Briefing: Dangerous Data 2019

About this Event

Under PCI DSS 3.2 regulations, within the scope of General Data Protection Regulation ("GDPR"), organisations could face severe sanctions for non-compliance. This may be huge fines, civil claims by aggrieved individuals, and even criminal penalties. The reputation harm caused by non-compliance should not be underestimated.

Overview:

Through a series of short expert presentations, this morning briefing will help you to determine whether you, and your Authority, are exposed under GDPR if best practice is not met when processing card payments. GDPR encourages that organisations place privacy protection at the heart of everything they do.

The briefing will go on to set out clear strategies to mitigate against the risk of data theft.

Speakers:

Helena Brown, Partner – Head of Data

Addleshaw Goddard

Bio:

Helena leads the data protection team at Addleshaw Goddard and has 18 years of experience as a specialist commercial, technology and data lawyer. She leads a team across our UK and international offices delivering complex and high profile data advice for a number of clients, including many of the UK’s major financial services providers including banks, building societies and pensions / insurance providers. Helena also advises many clients operating in the payments industry including a number of payment service providers, and has been involved in industry consultations on the use of data in payments and open banking. As an accredited Practitioner in Data Protection, she provides support on the full spectrum of information matters including GDPR compliance audit, complex regulatory opinions, marketing and consent reviews, international data transfers, service offshoring, subject access, and ICO complaints and investigations . Helena also provides specialist regulatory input on information rights litigation, which enables her to give a very practical view of risk in data protection advisory matters. Helena is a member of the Law Society of Scotland’s technology committee and led on implementation of their award winning cyber security guidance.

The learning outcomes will be:

• an understanding of the privacy landscape post GDPR – where is the dust settling on information rights, privacy, claims and enforcement?

• what this means in the context of PCI - what are we seeing as the key privacy risks now?

• what steps the PCI sector should be taking now to protect against privacy risks in the future.

Martin Morris

Director, GCI Communications

Bio

Martin Morris

PCI Director, GCI Network Solutions

Bio

Martin has over 15 years of experience leading the way in contact centre technology and for the past five years he has been with GCI, one of the UK’s fastest growing managed services providers, as their product specialist for PCI Compliant payment solutions.

Martin will walk through the concept of scope reduction as an efficient and hugely de-risked alternative to protecting cardholder data. In this session you will learn how to fast-track compliance and remove risk for the Authority and its Officers.

Learning Outcome:

Understand the strategy of risk elimination through data PCI scope reduction.

Jonathan Dilnot

Strategic Channel Manager, Cardnet

Bio

Jonathan has been at the forefront of the payments industry for over 20 years. Leading the bank relationships with both industry giants like Visa and Fintech new kids like 365, Jonathan is literally shaping the payments landscape every day, making connections that drive innovation

Jonathan will talk about the Lloyds Cardnet approach to payment security. Cardnet invested in research and integration – gathering up the best in every field to create a free-to-access compliance ecosystem which provides the most robust defence against data breaches, record fines and reputation damage.

Learning outcome:

A strategic understanding of how the elements of a compliance ecosystem can be combined to minimise expose to all forms of risk associated with payment data.

Andrew Flavell,

Framework Director, CPRAS

Bio

As an architect of the CPRAS / Shropshire Council Payment Services Framework (PSF), Andy is responsible for creating and managing the highly successful, OJEU compliant payments framework which offers participants a route to de-scoping PCI risk.

Andy will walk through the PSF and talk about how it is being used to finance the investment required to achieve and maintain full PCI DSS and GDPR compliance for cardholder data.

Learning Outcome:

Understand the likely financial impact and strategic options for cost saving whilst de-scoping PCI risk.

Share with friends

Date and Time

Location

The Atholl Room, Bank of Scotland plc

110 Saint Vincent Street

Glasgow

G2 5ER

United Kingdom

View Map

Save This Event

Event Saved