Live Agenda
DAY 1 - TUESDAY 20TH OCTOBER | |
10:00 - 11:00 | Conference Opening In our opening session attendees will hear the latest thinking from the ICO on the lessons learned in relation to data protection as a result of the COVID-19 pandemic, and how public sector organisations can move back to normality when approaching data protection. Delegates will be able to engage with the Scottish Government through a Q&A session plus our interactive polling tools. Chair: Maureen Falconer, Regional Manager – Scotland Office, Information Commissioner’s Office Eilidh McLaughlin, Associate Director - Information Security and Governance, NHS National Services Scotland Helen Findlay, Head of Data Protection and Information Assurance, Scottish Government Ken Macdonald, Head of ICO Regions, Information Commissioner's Office |
13:15 - 14:00 | Risky Business: A Privacy & Security Guide to Risk Scoring Risk scoring across vendor management, breach notifications, DPIAs and other activities is imperative for compliance with many GDPR and the DPA18. Public sector organisations routinely tailor their data protection and security activities based on the results of detailed risk assessments, but this leads to a myriad of questions. How do you calculate risk? What constitutes low, medium or high risk? How do you define a risk criteria? What is the difference between inherent, current and residual risk? In this session, we ll detail the importance of conducting risk assessments as part of your data protection strategy Chris Paterson, Privacy Solutions Engineer, OneTrust Patricia Ruddy, Head of Data Protection, NHS National Services Scotland |
15:00 - 16:00 | Data Breaches: How to Respond Effectively In this session delegates will hear from a range of experience panelists from across the public sector as they discuss how organisations can effectively respond to data breaches, drawing on best practice from across the public and private sectors. You'll have the ability to submit questions to the panel chair to ensure the issues that matter to you most are covered. Ann Jones, Head of Information Governance, Heriot-Watt University Alison Mackinnon, Data Protection Officer, SEPA Tim Musson, Convenor - Privacy Law Committee, Law Society of Scotland and Managing Director, Computer Law Training Ltd |
DAY 2 - WEDNESDAY 21ST OCTOBER | |
10:00 - 11:00 | Striking a Balance: Data Protection and Data Sharing Our second panel session will examine lessons learnt from the COVID-19 pandemic on how public sector organisations can strike a balance between data protection and the need to share data in order to deliver services effectively. You'll have the ability to submit questions to the panel chair to ensure the issues that matter to you most are covered. Simone Scott, Information Governance Manager - Practitioner & Counter Fraud Services, NHS National Services Scotland Claire Thompson, Data Protection and Information Governance Officer, Scottish Enterprise Rick Goud, CIO and Co-Founder, Zivver |
15:30 - 16:15 | Conference Close The final session will feature analysis of key lessons learnt from previous conference sessions, via a discussion between public sector data protection experts on the implications of the EU exit for data protection. Helen Findlay, Head of Data Protection and Information Assurance, Scottish Government Chiara Rustici, EU Privacy and GDPR Analyst and Chair, BCS Law Specialists Group |


