BCS Mid Wales branch event.


Dai Davis


18:00 - Light refreshments
18:30 - BCS Mid-Wales Branch AGM
18:40 - Presentation
19:30 - Q&A – Dai Davis
20:00 - Close

This event is for the BCS Mid-Wales branch Annual General Meeting (AGM) and a talk about the experiences of GDPR, four years after it became law. The AGM will start at 18:30 and is for members of the branch. The talk from Dai Davis will start immediately after the AGM, which we expect to be around 18:40. The presentation from Dai Davis is free and open to everyone.

We will provide free light refreshments and tea and coffee in the half hour before the start of the AGM. This will be in the foyer of the Physical Sciences building – which is close to the room for the presentation.


Many lawyers and vendors focus on the penalties under the GDPR: for the vast majority of companies being a maximum of €20,000,000. In practice, however, only a tiny percentage of companies, known by the Information Commissioner to be in breach, have been fined. But how many breaches are there, how many are reported to the Information Commissioner and why do so few breaches result in fines?

Dai will explain why the penalties are not what they have been hyped up to be: Dai will put the legislation into its place with a pragmatic approach.

Dai will also explain which aspects of GDPR are important and which unimportant, and the reasons why. He will explain why companies should work towards compliance rather than try and become compliant.

In theory, all personal data breaches must be reported to the Information Commissioner under GDPR unless “the personal data breach is unlikely to result in a risk” to an individual. But since there is no “risk” threshold laid down that, at least in theory, means that almost every potential breach could be considered as needing to be reported. Dai will explain which breaches should be reported in practice.

Breaches have to be reported within 72 hours which is not a long period of time. And that is 72 hours, not 72 working hours. So, the possibility of saying the wrong thing, and “shooting yourself in the foot” is high. Dai will explain the pitfalls and talk about how to report a breach and how not to report a breach.

Finally Dai will talk about the two GDPR regimes post Brexit: the one in the United Kingdom and the one in the European Union and how they interact.

About the speaker

Dai Davis is a Technology Lawyer. He practices as a solicitor but is also a qualified Chartered Engineer and Member of the Institution of Engineering and Technology. Dai has consistently been recommended in the Legal 500 and in Chambers Guides to the Legal Profession for over 25 years. He has two master degrees: one in Physics, the other in Computer Science.

Having been national head of Intellectual Property Law and later national head of Information Technology law at Eversheds for a number of years, Dai has for the past decade been a partner in his own specialist law practice, Percy Crow Davis & Co. Dai advises clients throughout the country on intellectual property, computer and technology law subjects. A third “super specialism” that Dai has practised for over two decades is high-tech product safety, including advising on the CE Marking and product recall.

He is primarily a non-contentious lawyer, advising clients on technology-related commercial agreements. Being a technologist, Dai often works with clients who are involved in cutting edge technologies.

Dai is a non-executive director of FAST (The Federation Against Software Theft) and a Liveryman of the City of London through the WCIT (Worshipful Company of Information Technologists). He has been elected as a Trustee of the UK Cyber Security Council for two years from 1st October 2022. He has been a Council member of the Licensing Executives Society of the United Kingdom, a body of professionals dealing in intellectual property licensing, for more than a decade. He is widely published and an experienced public speaker and writer.

Our events are for adults aged 16 years and over.

BCS is a membership organisation. If you enjoy this event, please consider joining BCS. You’ll be very welcome. You’ll receive access to many exclusive career development tools, an introduction to a thriving professional community and also help us Make IT Good For Society. Join BCS today

For overseas delegates who wish to attend the event, please note that BCS does not issue invitation letters.


BCS is following government guidelines and we would ask attendees to continue to also follow these guidelines. Please go to https://www.nhs.uk/conditions/coronavirus-covid-19/ for more information, advice, and instructions.

This event is brought to you by: BCS Mid-Wales branch

GDPR: Four years on
Date and time
Tuesday 25 October, 6:00pm - 8:00pm
Aberystwyth University
Penglais Room MP-0.15 Physical Sciences building
Penglais Road
SY23 3FL
This event is sold out