Session Outline
1. The Global Privacy Landscape
- Key regulations: GDPR, CCPA, and regional frameworks
- Data protection in the GCC: current state and direction
- Cross-border data transfer challenges
- Enforcement trends and penalty structures
2. AI and Data: New Regulatory Frontiers
- The EU AI Act and its implications
- Algorithmic accountability requirements
- Automated decision-making restrictions
- Emerging standards and guidelines
3. Privacy by Design in Practice
- Embedding privacy into product and service development
- Data minimisation strategies
- Consent management and preference centres
- Anonymisation and pseudonymisation techniques
4. Governance and Accountability
- Building an effective privacy programme
- Role of the Data Protection Officer
- Board oversight responsibilities
- Vendor management and third-party risk
5. Incident Response and Crisis Management
- Breach notification requirements
- Response planning and execution
- Regulatory engagement strategies
- Reputation management
6. Case Study Workshop
- Analyse a multi-jurisdictional data incident
- Develop a response strategy
- Present recommendations to the group
Outcomes for Participants
- Navigate the key data protection regulations affecting their business
- Understand emerging AI-specific compliance requirements
- Oversee privacy programmes with confidence
- Make informed decisions balancing data utility with protection