Why the GDPR is a 3-variable equation

When: 19th Jun 2017, 19:00 - 19th Jun 2017, 21:00
Where: Novotel Bostocks Lane, Long Eaton, Nottingham, NG10 4EP
Town/City: Nottingham
Organiser: BCS Nottingham and Derby Branch
Price: Free
Further Information: Further Information


  • 6.30pm: Registration & Refreshments
  • 7.00pm -8.30pm: Presentation
  • 9.00pm: Meeting Ends


We welcome Chiara Rustici, an independent, technology-agnostic EU privacy and GDPR analyst, a consultant with 20 years’ experience in conducting research in law and legal reasoning in academia, Director for the Institution of Mechanical Engineers (IMechE) and business leader for a number of enterprises in the City, who advises both corporate boards and technology vendors on GDPR requirements.

Chiara runs her own independent consultancy business. She has published extensively on the IT, legal and business implications of the GDPR both for academic journals and IT publishers https://www.linkedin.com/in/chiararustici.

Chiara will present why the decisions required by a business to comply with the new GDPR are not of the straightforward data governance variety. They are, firstly, business choices, involving boardroom-level strategy. Secondly, they are legal choices. Only after the first two decisions have taken place, can IT choices be made. A case study of a fictitious industrial ecosystem will illustrate the dependencies between controllers, processors and individuals whose personal data this Regulation protects.