Technical Solutions for GDPR Compliance (Parallel Sesion 4.3)
The entry into application of the General Data Protection Regulation on 25 May 2018 has been a wake-up call for many companies to re-examine their data handling practices.
Such examination took place against a growing interest in data processing in light of the promises of ‘Big data’, data-driven innovation and artificial intelligence (AI).
In this session, speakers shall present solutions for ensuring compliance of business processes involving the processing of personal data from a technical perspective.
There cannot be a one-tool-solves-it all approach. Different use cases require the processing of personal data in different ways preserving individuals’ privacy. Anonymisation and aggregation of data can lead to useful data for certain purposes but not for others. Sometimes individuals’ consent will be necessary. In many situations, it won’t. Pseudonymisation in combination with specific legal grounds for processing can be sufficient.
This session presents technical approaches taken by companies and organisations in order to ensure compliance with data protection legislation:
- Deutsche Telekom in the context of its Cloud Business.
- BMW in the context of their CarData platform for access to telematics information from BMW and MINI vehicles.
- ‘Dynamic pseudonymisation’ services developed by Anonos with implementation examples.
- Data synthetitization services developed by mostly.ai with implementation examples.