Implications of the General Data Protection Regulation (GDPR) on the health care sector

When Jan 18, 2018 from 09:15 AM to 04:15 PM
Where Manchester
Add event to calendar vCal
iCal

The seminar will provide an overview of the GDPR and of the Data Protection Bill insofar as it relates to the processing of personal data within the health and social care context and incorporates and supplements the GDPR.

By the end of the session you will be clear on the new requirements imposed on data controllers and processers by the GDPR and what action is needed to prepare for the coming into force of the new legislation on 25 May 2018. The session will focus on the implications of the GDPR on the health and social care sector and organisations operating within that sector.

In particular the session will cover:

  • The new definitions introduced by the GDPR – looking at the new definition of personal data, anonymisation and pseudonymisation
  • The amended data protection principles and the new principle of accountability – this principle will be explored in detail, looking at the requirements of the GDPR in this regard and the steps that it will be necessary to take to ensure compliance with this new principle
  • The new conditions for lawfully processing data – the session will explore the conditions that may be applicable to you and your organisation to ensure that your processing of personal data is both lawful and appropriate. The session will look in detail at the concept of consent under the GDPR and the challenges that relying on consent for the processing of personal data may cause
  • The new rights of data subjects – data subjects have enhanced rights under the GDPR which must be adhered to, but some rights are only applicable in certain circumstances – the session will explore this in detail and ensure that you are clear as what rights your data subjects may have
  • The right of data subjects to be informed about processing activity – we will look at the new requirements for privacy notices (or fair processing notices) and how these requirements can best be met
  • The new obligations imposed on data controllers and processors – looking at the new obligations on processors in particular and the concept of joint liability
  • The new requirement for a data protection officer – we will look at the statutory requirements for this and the guidance available on who you might identify to fulfill this role
  • Remedies, liabilities and sanctions – looking at enforcement by the ICO, the remedies available if a breach of the legislation occurs and how the maximum fine for non-compliance has significantly increased
  • The Data Protection Bill – how this incorporates and supplements the GDPR to create a new data protection regime in the UK both pre and post Brexit.

More information about this event…