This seminar is in Chinese. 本次讲座语言为中文。
2018年5月25日起,欧盟通用数据保护条例(GDPR)将强制执行。欧盟通用数据保护条例(GDPR)是二十年来数据隐私规则领域发生的最重要变化,给欧盟、乃至全世界的企业都将带来重大影响。此法规历经四年讨论于2016年4月27日欧洲议会通过。无论你是法人或自然人,不论公司规模大小,公司是否在欧盟境内,只要直接或间接地与欧盟企业发生业务往来,或涉及存储、处理、交换任何欧盟公民的数据,到2018年5月之前,都必须要从内部系统到资安政策及时调整,以便能够符合GDPR对于个资保护的规范和要求。如无法符合其要求,组织将可能面临高额罚款。
EU General Data Protection Regulation (GDPR) will take effect from 25th May 2018. GDPR is the most important milestone in data privacy regulation field in recent 20 years, which will bring significant impact on enterprises in EU and even worldwide. This regulation has been discussed for four years and passed by the European Parliament in April 27, 2016. Any enterprises who have business connections with EU enterprises or get involved with data storage, data dealing, and data exchange of EU citizens must to comply with GDPR. If it fails to meet its requirements, the organization may face heavy fines.
长期以来,许多企业疏于对用户数据进行有效追踪和采取相应的保护措施。信任是数字化经济的基石。达到GDPR所要求的数据隐私和安全要求,是维系消费者信任和保护企业品牌的根本。企业必须敲响警钟,即刻加强对数据安全和隐私保护,并采取有效举措将其提上企业日程。
For a long time, many enterprises are neglectful of taking measures to protect user's data. Credibility is the cornerstone of digital economy. Meeting the requirements of data privacy and security listed in GDPR is the fundamental principle to protect enterprises' brand value. Enterprises are urged to take action to protect the data security and privacy.
ISO 27001体系告知企业应如何建立完善的安全战略、控制无所不在的信息与网络安全风险。如何利用标准化工具助力组织提升信息安全管理成熟度,有效降低企业正在面临的业务中断、信息泄露、运行安全,甚至个人隐私遭受侵犯的风险?如何使企业避免信息安全的合规风险? … …在企业如何实施安全和合规之时,“标准”就像一把刻度分明的标尺为组织划定了清晰的界限,标准也是源于成功的实践经验。
The ISO 27001 system tells enterprises how to establish a perfect safety strategy and control the information and network security risks. How to use standardized tools to help improve the maturity of information security management and effectively reduce the risk of business interruption, information disclosure, operation safety and even personal privacy being infringed upon by enterprises? How can enterprises avoid compliance risks of information security? When the enterprise implements security and compliance, "standard" is like a clear scale for the organization to delimit the clear boundaries of the organization, the standard is derived from the successful experience.
GDPR 将会给企业带来哪些影响?你的企业是否已经准备好迎接GDPR?中国欧盟商会邀请了来自SGS的专家帮助大家深度了解欧盟通用数据保护条例。
How can Enterprises Comply with EU General Data Protection Regulation (GDPR) ? The European Chamber is delighted to welcome the expert from SGS to share their comprehensive understanding of GDPR and ISO 27001 with case studies.
Agenda:
13:30-14:00 Registration签到
14:00-15:00 Interpretation on GDPR《欧盟通用数据保护规定》GDPR标准解读
15:00-16:00 Interpretation on ISO 27001 信息安全管理体系
16:00-16:30 Q&A 问答