Page 15 - Cyber Defense Magazine - Global Print Edition 2018

P. 15

5 Steps to Keeping Your About the Author

Company Compliant in Clearwater and Thielová

work on the OneTrust privacy
the GDPR Era team. They provide counsel,
leadership, and guidance on
data protection. The OneTrust
privacy team is also responsible
By Andrew Clearwater, Director of Privacy and Linda Thielová, for providing public policy
Data Privacy Counsel, OneTrust analysis in the areas of privacy,

ith the Global Data beyond merely addressing privacy as data security, information
and
technology
policy
Protection Regulation an afterthought. Privacy by default, transactions. Clearwater is a
(GDPR) effective and its important element, seeks to Certified Information Privacy
Winevitably becoming deliver maximum degree of privacy Professional (CIPP/US), holds
a part of the European legal by ensuring that personal data are an LLM in Global Law and
landscape, a new stage comes automatically protected by any Technology and is a licensed
for everyone, prompting a system or business practice. These attorney. Thielová is also a
question: what now? Here are principles can only be achieved by Certified Information Privacy
Professional (CIPP/E, CIPM)
becoming an everyday part of your
a few tips to help you keep up- company’s operations. holds a degree in Law and
to-date with the development Legal Science and has a four
of data privacy requirements. 4. Keep up with Codes of Conduct years’ professional experience
in privacy.
1. Look out for domestic GDPR foresees the approval of codes
legislation and EDPB guidelines of conduct and accreditation of

certifications to help organizations
The GDPR is still young legislation, so demonstrate compliance with
many EU laws containing additional data privacy requirements and
specific privacy requirements still best practice. Codes of Conduct
await their effective date. We can may even be binding for certain
also expect the newly established professional associations and as
European Data Protection Board such may potentially apply to
(“EDPB”) to gradually fill in the blanks your organization by virtue of
and clarify certain issues regarding membership(s).
the interpretation and enforcement 5. Get Ready for ePrivacy
of the GDPR. Andrew Clearwater
Director of Privacy, One-
2. Keep your GDPR compliance The main concern of the not-yet Trust
framework up-to-date finalised ePrivacy Regulation will
be the online tracking and use of
cookies. A good practice is to keep
GDPR compliance should be an an eye on what cookies are being
ongoing exercise, not a means to used on your company’s websites
an end. Schedule regular privacy and be clear about whether these
check-ups and audits to ensure are 1st party or 3rd party, what sort
your organisation’s compliance of data is being collected and who is
framework remains operational. the data controller in each case.

3. Make Privacy by Design a
constant effort For more tips about privacy
regulations and how to tackle the
GDPR, visit onetrust.com. Linda Thielová
Privacy by Design gained major
traction through GDPR as a concept Data Privacy Counsel,
aiming for more in-depth approach OneTrust

CYBER DEFENSE MAGAZINE – ANNUAL GLOBAL PRINT EDITION 2018 – SPONSORED BY TREND MICRO 15

10 11 12 13 14 15 16 17 18 19 20