1 hour | June 29, 2021 |1PM | GMT+4
PrivacyConnect brings together local privacy professionals in their communities to discuss the latest trends in privacy and security, review regulatory updates, and share best practices for implementing privacy programs in practice.
Privacy is becoming an area of focus for businesses of all sizes across the UAE. We have already seen the introduction of “GDPR-inspired” data protection regulations across the Middle East and North Africa, including the DIFC and ADGM financial centres in the UAE. This trend is driven by the desire to achieve global harmonisation, to facilitate the ease of doing business internationally, and the need to respond to the extra-territorial obligations being imposed by a growing list of national and industry specific regulations focused on safeguarding privacy. Privacy is becoming a boardroom conversation in the region; and the UAE is no exception. We have seen something very similar happen already with corporate governance and cybersecurity.
There is a clear ambition by jurisdictions like the EU to ensure the adequate protections for personal data beyond regional or national borders. This typically includes an emphasis on transparency, accountability and the requirement to assess and monitor the way in which an organisation, their partners or their supply chain vendors process the personal data of customers and employees. Privacy compliance has become a risk. All of this has (or will) significantly impact how organisations in the UAE will collect, store and process personal data, particularly when the draft UAE Federal Data Protection Law is implemented. Concerns with GDPR fines and the patchwork of criminal and civil liability risks introduced across the Middle East are still well founded, but the threat of losing well-established business contracts, or having organisational data flows across national borders stopped, could literally become an existential threat to any organisation in a data driven future.
The bottom line – having a privacy notice on a website and signing some “tick box” contractual undertakings with third parties will no longer “cut the mustard.” You need to operationalise policies and processes. This will likely necessitate defined roles and responsibilities that map to your organisation’s governance framework. You need to ensure your employees and vendors are following these policies and implementing the required controls to mitigate privacy risks. You need to generate and present documentation to prove compliance to customers, partners and supervisory authorities. And beyond compliance, your hard-earned reputation and your customer’s trust is increasingly at stake.
This can all be extremely daunting for any organisation. Where do you start? How do you decide what to prioritise? How much is enough? In this webinar, our group of experienced privacy professional panelists will share their thoughts on the basic steps that any organisation may consider to kick-start a new privacy program.
1:00PM | Welcome and Introduction
1:05PM | The Building Blocks of a New Privacy Program in the UAE
1:55PM | Closing and Q&A
Event Supported By:
White Label Consultancy
Senior Privacy Officer, Compliance,
Head of Digital & Data,
Privacy & DP Senior Counsel,