November 14th 2018 | Central London

Speakers

Tim Rodgers

Tim Rodgers - Compliance and Information Governance Manager - Imperial College London
 

Describe yourself in three words please

Passionate, strategic and usually correct!

Can you give a short introduction to your role and organisation?

I work in the ICT department for Imperial College London, one of the top higher education institutions in the world.  I am the conduit between ICT and the business regarding information governance issues, leading on information security policy and our wider IG framework, the role out of our information asset register, achieving certification in areas such as Cyber Essentials and ISO27001 and overall management of ICT risk and quality. 

Are there any specific themes / topics that you would like to see included in the summit agenda?

I still feel there is a need to improve awareness of vital data protection issues across our organisations

What would you say is your greatest success story to date?

Implementing the information asset register and the sea change in governance it is bringing about.  The business knows more about its information – especially around use and risk - than it often likes to admit.

If there was one specific data protection challenge that you could overcome, what would it be?

I’d like people in my organisation to ask me more questions!

Jonathan Bamford

Jonathan Bamford - Director of Strategic Policy (Domestic) - ICO
 

Describe yourself in three words please!

Enthusiastic, dedicated, determined

Can you give a short introduction to your role and organisation?

As Director of Strategic Policy (Domestic) my work centres on ensuring that the ICO delivers its information rights strategic objectives through effective guidance, influential engagement in key areas including public services, private and third sectors and providing the internal policy advice underpinning other ICO activities.

Are there any specific themes / topics that you would like to see included in the summit agenda?

How organisations move from a ‘tick box’ compliance approach to data protection laws to embracing these with greater proactive accountability.

What would you say is your greatest success story to date?

With a career of over 30 years in DP regulation, there’s a lot to choose from but most recently leading the ICO’s work to influence and assist government during the passage of Data Protection Act 2018. It’s our third generation of domestic DP law since 1984 and what we achieved in shaping that will have an enduring impact for many years to come.

If there was one specific data protection challenge that you could overcome, what would it be?

That the public have absolute trust and confidence in how their personal information is used and organisations live up to the trust placed in them in practice.

Dr Saif Abed

Dr Saif Abed - Founding Partner - AbedGraham

 

Describe yourself in three words please!

Curious. Open-minded. Outspoken

Can you give a short introduction to your role and organisation?

I am the Founding Partner of AbedGraham which is a strategy and operations consultancy specialising in healthcare IT and cybersecurity. As per the rest of my team I am an NHS doctor by background and today I lead AbedGraham’s cybersecurity division which provides advisory services both to global technology companies deploying solutions in healthcare organisations and government agencies that are developing public policy to address healthcare cybersecurity.

Are there any specific themes / topics that you would like to see included in the summit agenda?

In my view, it is absolutely critical that data protection is discussed beyond the concept of confidentiality. In sectors such as healthcare and utilities, disruption due to cyber-attacks can be measured in lives not just money and so a more expansive discussion of how we address and prioritise data risks is imperative because confidentiality breaches seldom kill but integrity and availability attacks can.

What would you say is your greatest success story to date?

I led the AbedGraham team that was part of the IBM consortium that was recently awarded a three year contract to support NHS Digital’s expanding Cybersecurity Operations Centre (CSOC). This is one of the first national SOCs not only addressing healthcare at a national scale but certainly the first to have a dedicated clinical team as a part of it which truly sets a global gold standard for best practice.

If there was one specific data protection challenge that you could overcome, what would it be?

The greatest challenge I see now is a lack of contingency planning being driven at the board level irrespective of industry. Technology will inevitably fail as a barrier by itself to cyber-attacks and so we need more contingency plans in place to mitigate the fallout and return to business as usual.

Danny Budzak

Danny Budzak - Senior Information Manager - London Legacy Development Corporation

Mike Greenslade

Mike Greenslade - Information Security Officer - Portsmouth City Council

Jane Hancer

Jane Hancer - Director of Innovation - CC2i

Iain Harrison

Iain Harrison - Information Governance & Risk Manager - Leicester City Council

Yves-Alexandre de Montjoye

Yves-Alexandre de Montjoye - Computational Privacy Lab Director - Imperial College London

Rhiannon Platt

Rhiannon Platt - Information Governance Manager and Data Protection Officer - University of Exeter 

 

Describe yourself in three words please!

Approachable, Passionate and Creative

Can you give a short introduction to your role and organisation?

The University of Exeter is a Russell Group University with more than twenty two thousand students and 4500 staff and a significant volume of research. As the University of Exeter Information Governance Manager and DPO this brings many challenges. My work covers all aspects of information governance including data protection, Freedom of Information, information and records management as well as the non-technical side of information security. Working closely with IT, senior management and across the University, I lead on information governance policy and framework and the GDPR implementation project as well as dealing with information governance issues.

Are there any specific themes / topics that you would like to see included in the summit agenda?

More information on DPIAs is always good, there is a lack of understanding that this is a really beneficial process that can save time and money in the long run.

What would you say is your greatest success story to date?

Increasing awareness across the University and lots of staff engagement has resulted in a more positive approach to data protection. The business now proactively engages with information governance which has really helped progress the GDPR implementation work.

If there was one specific data protection challenge that you could overcome, what would it be?

I’d like GDPR coverage to be more accurate so myths don’t become a problem, this doesn’t help with trust and no we don’t always need consent to process your personal data!

Jackie Evans

Jackie Evans - Data Protection Officer - South Wales FRS

Emily Overton

Emily Overton - Vice Chair - IRMS

Maewyn Cumming

Maewyn Cumming - Data Protection Officer - Ministry of Housing, Communities and Local Government

 

Describe yourself in three words please! 

Stuck for words!

Can you give a short introduction to your role and organisation? 

MHCLG, the Ministry of Housing, Communities and Local Government. The name sums it up nicely, although we are also in charge of planning, which probably has greater direct impact on individuals than most other government policies. I am the Data Protection Officer for the central department as well as five of our agencies and NDPBS, so I do all of the tasks listed in the GDPR as well as providing advice to staff across the organisation who are managing personal data.

Are there any specific themes / topics that you would like to see included in the summit agenda? 

The need to gather personal data for commercial gain rather than because the applicant needs to provide it to use the service e.g. Google has decided to allow use of GoogleMaps when the device’s location data is disabled. Other companies may not realise they can’t demand data that isn’t necessary for use of the service.

What would you say is your greatest success story to date? 

Successfully preparing a government department for GDPR

If there was one specific data protection challenge that you could overcome, what would it be? 

Creating the perfect data sharing agreement.