Future of Public Sector Data Protection 2021

2021 is likely to be a major year for data protection policy and practice. 

Data has been at the heart of the Scotland’s response to the COVID-19 pandemic. From the Protect Scotland app, to online learning, to coronavirus testing, the public sector has had to collect and use data in new ways, often at pace, to meet unexpected challenges. 

As we emerge from the pandemic organisations will need to consider whether many of these new measures remain appropriate and proportionate, whilst still maintaining the positive progress on data sharing developed in the 12 months. 

Meanwhile the impact of Brexit and Schrems II are still to be fully felt. Will the United Kingdom forge its own approach to data protection that differs from GDPR? 

Holyrood Connect are delighted to announce the 2021 edition of our highly successful Public Sector Data Protection conference as a forum for discussing these vital issues, through a range of online content including keynote speeches, panel discussions and product demonstrations. 

Holyrood Connect 

Holyrood Connect publish leading Public Sector ICT news in Scotland and host renowned Public Sector Tech events & conferences. You can view all of Holyrood Connect’s upcoming events here.

This event is free to attend for public and third sector delegates.

Private sector: To be added to our waiting list, please contact eventsadmin@holyrood.com and you will be notified if a place becomes available.

This event is CPD certified in principle

In this pre-conference networking session, delegates will be able to introduce themselves to fellow attendees, explain their role and discuss their learning objectives for the conference – these will be used to form questions for panellists.

The COVID-19 pandemic has necessitated the collection of a raft new data by public sector organisations to ensure the continued delivery of services. In our open session we will take stock of the current state of public sector data protection and discuss whether organisations need to undergo a period of data demobilisation. We will also discuss how organisations can undergo such a process in an effective, proportionate manner.

Breaches bring to mind big headline-grabbing incidents and of course it is important to prepare for these, but incident management goes beyond disaster response. Smaller privacy occurrences require incident management - for example, do your colleagues know what to do if an email is sent to the wrong recipient? Risks aren’t limited to big-ticket incidents and being ready to respond helps create an open culture of trust and preparedness across your organisation.

In our second session we will examine how your organisation can build in data protection at a foundational level within your organisation and the services you deliver.

We will examine good practice in data protection design and the best ways in which you can engage with staff and service users about data protection at an early stage.

Finally we will discuss the latest thinking on how your organisation can craft effective data protection impact assessments to identify and score risks when undertaking new projects.

During our lunch break we will open several networking rooms in which delegates can discuss key issues related to public sector data protection. Delegates will also be able to set up individual meetings with sponsors and fellow attendees to build new working relationships.

Following our networking lunch break, we will examine how organisations can embed resilience and minimise the impact of data breaches when they occur by developing clear and effective response processes. We will also examine best practice approaches for recovering from data breaches quickly to minimise long-term damage.

In this pre-conference networking session, delegates will be able to discuss lessons from Day 1 of the conference, as well as what they hope to learn on Day 2.

The pandemic response has demonstrated the important role of data sharing can play in developing the public services of the future. Yet data sharing must be approached carefully in order to balance against the risk to individual’s privacy.

In light of this fact, and in the face of a changing digital environment, the ICO is currently undergoing a project to update its Data Sharing Code of Practice.

In this session we will hear from a range of practitioners and thought leaders on what this might mean for Scotland’s public sector.

The UK Government is due to appoint a new Information Commissioner at the end of Elizabeth Denham’s term later this week. 

The Secretary of State for Digital, Culture, Media and Sport has suggested the incoming Commissioner may be tasked with moving away from a risk-based approach to data in favour of a focus on its benefits.

Meanwhile at a global level the ongoing dispute between the EU and USA in relation to data adequacy as a result of the SCHREMS II decision may pose challenges for the UK in the year ahead.

In this session we will examine the in-tray for the new commissioner in light of these developments and assess the potential implications for Scotland’s public sector.

    Event Details
    • Start Date
      6 Oct 2021 9:00 am
    • End Date
      7 Oct 2021 2:00 pm
    • Status
      Expired
    • Location
    • Category
    • Event Hashtag

      #DataProtection21

    Sponsors