Start Time
9:15 AM
End Time
3.45 PM
There will be CPD hours awarded to attendees. Please check directly with your association or awarding body to see how many points they will award.

About this Conference

This conference aims to provide delegates with the most up to date information on Data Privacy and what to expect over the next 12/18 months. It will look at what the future of international transfers looks like, the new Standard Contractual Clauses, Impact of breaches,with Case Studies and how working from home has opened up new challenges for protecting people’s data.

The Data Privacy Conference is a unique live virtual event from our own custom-built CMG Studios. Feedback has been overwhelmingly positive, with attendees praising the additional interactive elements, as well as increased Q&A opportunities throughout the day, giving you more opportunity to gain real practical insights on the key issues that are important to you.


Conference Chairperson & Opening Remarks

Brendan Barrett, Communications Consultant

The Present and Future of International Data Transfers

  • Long term impact of the Schrems II decision
  • GDPR – Brexit and the Adequacy decision issues
  • Trends regarding global convergence in privacy standards
  • Data Localisation and data Sovereignty

Patricia McGovern, Head of Intellectual Property and Business Departments, DFMG Solicitors  

Data Breaches in Your Organisation

  • Recap on the rules regarding breach notification
  • Measures to help prevent breaches occurring in your organisation
  • Reacting to a breach & incident response plans
  • Assessing and notifying a breach
  • Breach documentation
  • Case Study Examples-Lessons from recent breaches

Alison Stenson, Associate, Mason Hayes and Curran Solicitors

CASE STUDY- SARs – Verifications of Identity Especially in Light of the DPC Decision Against Groupon in 2020

Kate Colleary, Director Pembroke Privacy, Country Leader – IAPP

New standard Contractual Clauses (SCC) – Key changes

  • The New Clauses
  • Transfer of personal data to a sub-processor in a non-EEA country
  • Allowing for third-party beneficiary rights.
  • Indemnification between the parties.
  • Breaches of third-party beneficiary rights under the New SCCs
  • The laws of the country of the recipient must not prevent you from complying with the New SCCs.

Adam Finlay, Partner, McCann Fitzgerald

Law Enforcement Directive (LED) and Public Sector Data Sharing

  • DPC Guidance on data sharing in the Public Sector
  • DPC Guidance on data sharing in the Public Sector
  • The Bara judgment
  • Comply with the principles of data protection (set out in Article 5 of the GDPR)
  • Have a legal basis to justify the processing (set out in Article 6 of the GDPR)
  • Comply with the requirements to provide data subjects with information about that processing (under Articles 12-14 of the GDPR)
  • Processing of personal data for law enforcement purposes and the scope of the Law Enforcement Directive

Sean O Donnell, Litigation & Dispute Resolution Team, Byrne Wallace

The Rise and Fall of the One Stop Shop

  • What is the OSS under the GDPR and what does it mean for businesses?
  • How has the OSS worked in practice? Has it insulated technology firms such as Facebook from scrutiny by regulators in other EU countries?
  • How are regulators working around the OSS? Is it becoming ineffective?
  • What are the prospects for reform?

TJ McIntyre, Lecturer, UCD, Chair, Civil Liberties Group, Digital Rights Ireland and consultant

GDPR in the time of a Global Pandemic

  • Security and Operational implications of Working from Home
  • Likely implications for future working arrangements
  • Privacy and DP Considerations for employers resulting from these changes
  • Balancing concern for public and employee health and safety with DP compliance
  • Tracking, tracing and travel considerations – virtual passports and mobile apps
  • The value of the DPIA (specifically), and the GDPR in general underpinning all of these considerations.

Hugh Jones, EMEA Data Protection Manager, 3M

Records Management and GDPR Compliance

  • Compliance with GDPR, FOI and other laws
  • Article 30: Records of processing activities
  • Information asset registers
  • Retention schedules
  • Digital preservation

Kate Colleary, Director Pembroke Privacy, Country Leader – IAPP

Who Should Attend?

This conference will be of interest to all businesses in Ireland (large and small) such as, government departments, corporate consultants, retailers, banks, technology companies, healthcare organisations, marketing firms, legal firms, consultants, advisers, Data protection officers, local authorities, semi-state agencies and universities to name just a few.


Brendan Barrett
Adam Finlay
Partner, McCann Fitzgerald
Alison Stenson
Associate, Mason Hayes & Curran Solicitors
Hugh Jones
EMEA Data Protection Manager at 3M
Patricia McGovern
Head of Intellectual Property, DFMG Solicitors
Sean O'Donnell
Litigation & Dispute Resolution, Byrne Wallace
TJ McIntyre
Lecturer, UCD, Chair Digital Rights Ireland
Kate Colleary
Director of Pembroke Privacy, Country Leader of IAPP


Early Bird Rate: €435 + VAT (LIMITED OFFER)

Full rate €535 + VAT

Please note the early bird discount can close sooner than expected once a certain number of seats fill up, therefore your prompt booking is strongly advised to avoid disappointment

Discounts available for bookings of 3 or more.