Click to add title Click to add title Speaker: Click to add - - PowerPoint PPT Presentation

▶

Jan 19, 2023 353 likes •522 views

Microsoft GDPR Project Management Click to add title Click to add title Speaker: Click to add subtitle Click to add subtitle Cathal McDermott Privacy Attorney - Privacy and Regulatory Affairs Microsoft Make no mistake, the GDPR sets

SLIDE 1

Click to add title

Click to add subtitle

Click to add title

Click to add subtitle

Microsoft – GDPR Project Management

Speaker: Cathal McDermott Privacy Attorney - Privacy and Regulatory Affairs Microsoft

SLIDE 2

Click to add title

Click to add subtitle

“Make no mistake, the GDPR sets a new and higher bar for privacy rights, for security, and for compliance. And while your journey to GDPR may seem challenging, Microsoft is here to help all of

ur customers around the world.”

Brad Smith President & Chief Legal Officer Microsoft Corporation

SLIDE 3

Click to add title

Click to add subtitle Microsoft Privacy Principles

SLIDE 4

Click to add title

Click to add subtitle

GDPR OV OVERVIEW

Personal privacy Controls and notifications Transparent policies IT and training

Organizations will need to:

Train privacy personnel &

employee

Audit and update data

policies

Employ a Data Protection

Officer (if required)

Create & manage

compliant vendor contracts Organizations will need to:

Protect personal data using

appropriate security

Notify authorities of

personal data breaches

Obtain appropriate consents

for processing data

Keep records detailing data

processing Individuals have the right to:

Access their personal data
Correct errors in their

personal data

Erase their personal data
Object to processing of

their personal data

Export personal data

Organizations are required to:

Provide clear notice of

data collection

Define processing

purposes, lawful basis for processing, and use cases

Define data retention

and deletion policies

SLIDE 5

Click to add title

Click to add subtitle

Assessing and managing

ur compliance risk

Assessing and managing or

Streamlining our processes

Protecting and securing our personal data

https://www.microsoft.com/en-us/trustcenter/Privacy/GDPR

Project Framework for GDPR Compliance

SLIDE 6

Click to add title

Click to add subtitle

Assessing and managing

ur compliance risk

Assessing and managing or

https://www.microsoft.com/en-us/trustcenter/Privacy/GDPR

Extensive personal data store inventorying, data protection impact assessments and privacy reviews, and processes for the monitoring, measurement, and enforcement of privacy compliance

SLIDE 7

Click to add title

Click to add subtitle

Protecting and securing personal data

Assessing and managing or

https://www.microsoft.com/en-us/trustcenter/Privacy/GDPR

Through built-in, intelligent security capabilities that work together to more effectively secure personal data (including employee data)

SLIDE 8

Click to add title

Click to add subtitle

Streamlining our processes

https://www.microsoft.com/en-us/trustcenter/Privacy/GDPR

Empower our consumer users to access and manage their data, help our commercial customers meet their own compliance

bligations, and train our employees,

partners, and vendors on privacy readiness.

SLIDE 9

Click to add title

Click to add subtitle

SLIDE 10

Click to add title

Click to add subtitle

Microsoft Privacy

SLIDE 11

Click to add title

Click to add subtitle

Next Generation Privacy

SLIDE 12

Click to add title

Click to add subtitle Next Generation Privacy

Companywide initiative called Next Generation Privacy (NGP)
Comprehensive framework that includes policies, processes,

technical infrastructure, and customer experiences to address privacy at all levels of our organization and deliver the standardisation needed for compliance

Accountable executives in each of our engineering, business,

and specialised organisations that are responsible for GDPR compliance in their group

SLIDE 13

“Our legal team engaged in routine “office hours” to support engineering and compliance teams in addressing complex interpretation questions. Answers to these questions were catalogued for use by other teams and to ensure consistency of application.” –John Payseno, Assistant General Counsel, Microsoft

SLIDE 14

Click to add title

Click to add subtitle Privacy Engineering - Next Generation Approach

SLIDE 15

Click to add title

Click to add subtitle

Business Implementation Requirements Documents (BIRDs)

SLIDE 16

Click to add title

Click to add subtitle

Click to add title

Click to add subtitle

Microsoft – GDPR Project Management

Click to add title

Click to add subtitle

“Make no mistake, the GDPR sets a new and higher bar for privacy rights, for security, and for compliance. And while your journey to GDPR may seem challenging, Microsoft is here to help all of

Click to add title

Click to add subtitle Microsoft Privacy Principles

Click to add title

Click to add subtitle

GDPR OV OVERVIEW

Click to add title

Click to add subtitle

Project Framework for GDPR Compliance

Click to add title

Click to add subtitle

Click to add title

Click to add subtitle

Click to add title

Click to add subtitle

Click to add title

Click to add subtitle

Click to add title

Click to add subtitle

Microsoft Privacy

Click to add title

Click to add subtitle

Next Generation Privacy

Click to add title

Click to add subtitle Next Generation Privacy

Click to add title

Click to add subtitle Privacy Engineering - Next Generation Approach

Click to add title

Click to add subtitle

Business Implementation Requirements Documents (BIRDs)

Click to add title

Click to add subtitle

Investing in technology to scale and drive consistency