Super Early Bird Fee

Register and Pay
by 27 Jul '18

Early Bird Fee

Register and Pay
by 17 Aug '18

Regular Fee

Register and Pay
after 17 Aug '18

$1,095.00(USD) $1,195.00(USD) $1,395.00(USD)

Group Discount! Enjoy 10% off when you register for 3 or more
or
For groups of 3, 4th comes for free

IMPORTANT NOTES
  1. Super Early Bird and Early Bird promotion: Discount will only be valid if payment is received by stipulated date.
  2. Group Discount only applies to registrations from the same company registering at the same time, issued in a single invoice and of the same billing source.
  3. Only corporate registrations will be accepted.
  4. Bank charges & taxes are to be borne by registrants, if applicable.
  5. Full payment is mandatory upon registration for admission to the event.
  6. Walk-in delegates will only be admitted on the basis of space availability at the event and with immediate full payment.
  7. Fee includes lunch, refreshments and e-documentation.
  8. The organiser reserves the right to make any amendments that it deems to be in the interests of the event without any notice.
  9. Information provided will be used for event administration and updates on upcoming events. For more details, please visit: http://www.conferences.com.sg/personal-data-protection-statement/

CANCELLATION & REPLACEMENT

A replacement is welcome if you are unable to attend. A full refund less 10% administrative charge will be issued for cancellation received in writing by 17 Aug 2018. A 50% refund and a set of e-documentation will be issued for cancellation received by 24 Aug 2018. Regrettably, no refund will be issued for cancellation received after 24 Aug 2018 or for “no show” participant. You will however receive a set of e-documentation.

The Deadline for Compliance is 31 December 2018.
Are you at Risk of Regulatory Breach?

China’s Cybersecurity Law (CSL) has come into force but the cross-border data transfer requirement is deferred until 31 December 2018. Under the revised Draft Security Assessment Measures, all companies deemed “network operators” are required to conduct a security assessment for cross-border transfers of personal information or important data collected or generated in China.

With the compliance deadline fast approaching, do you know what constitutes “personal information” and “important data”? Do you understand the security assessment process and requirements? Do you have clarity on which authorities to file for approval?

Acquire Practical Solutions and Expert Insights

Join this 1-day event to attain a comprehensive understanding of the Draft Security Assessment Measures and hear practical recommendations on how to prepare for CSL’s data transfer requirement. Gain clarity on what type of VPN, cloud storage and encrypted communications are permitted for data storage and cross-border transfer. Learn how to classify data and obtain consent on the transfer of personal information overseas. Find out how to conduct a security self-assessment of your organisation’s cross-border data transfer activities.


Event Highlights

    • Understand key definitions in newly released guidelines on cross-border data transfer
    • How to classify and handle “Personal Information” and “Important Data”
    • Recommendations on when and how to perform in-house security assessment for outbound data
    • Hear measures organisations are taking to comply with cross-border data transfer requirements
    • Clarify doubts and grey areas in an open-floor discussion with subject experts

Benefits of Attending

  • Be updated with what has been defined and clarified in the revised Draft Security Assessment Measures
  • Assess what types of data can and cannot leave China and what data should or should not be collected
  • Find out about requirements of third-party data transfer – When is it permissible?
  • Understand how to adopt the Multi-level Protection Scheme to ensure compliance
  • Review your organisation’s privacy policy to include scope, purpose and type of personal information
  • Acquire a best practice framework for multijurisdictional data protection regulatory compliance
  • Learn to audit your organisation’s current processes to identify areas for reinforcement
  • Hear compliance challenges businesses are facing and how companies are mitigating them
  • Exchange insights and opinions with experts and fellow practitioners in an open-floor discussion
 

Speakers

Lisa Li

Partner, Risk Assurance,

PricewaterhouseCoopers

David Tiang

Founding Principal,

Tiang & Co.

Maxime Oliva

Chief Executive Officer,

TekID Investigation & Discovery

Roy Chen

(ISC)² Shanghai Chapter Security Expert

Anxo Cebro

Chief Security Officer, APAC,

MAPFRE

Michael Tan

Partner,

Taylor Wessing

Mark Luo

Regional IT Security Manager, Multinational Company

Who Should Attend

Senior level executives responsible for Legal, Compliance, Information Technology, Information Security, Data Security, Cybersecurity, Internal Audit

 

Agenda

  • 08:30 Registration & Morning Coffee
  • 09:00 Chairman’s Welcome & Ice Breaking Session
    Maxime Oliva, Chief Executive Officer, TekID Investigation & Discovery
  • 09:30

    Session 1: Understanding the Security Assessment Measures for Cross-Border Transfer of Personal Information and Important Data

    • What has been defined and clarified in the revised Draft Security Assessment Measures
      • Important definitions and interpretations
        • Personal Information
        • Important Data
        • Network Operations
        • Critical Information Infrastructure
    • Who needs to comply?
    • Newly released guidelines on cross-border data transfer and implications for businesses
    • Clarifications and guidelines to expect
    • Key matters on VPN and Cloud Storage
      • What kind of encrypted communications (e.g. VPNs) are permitted
        • Within China
        • Between China and another country
    • Grey areas that remain and how businesses can tackle them
    • Cases of enforcement actions that have been taken: Lessons learnt and pitfalls to avoid

    David Tiang, Founding Principal, Tiang & Co.

  • 11:00 Morning Refreshments & Networking Break
  • 11:30

    Session 2: How to Classify and Handle Data, and Recommended Solutions to Comply to Cross-Border Data Transfer Requirements

    • What constitutes ‘Personal Information’ and ‘Important Data’
      • What types of data are there, and how to classify them
      • What types of data can and cannot leave China
      • What data should or should not be collected
    • In what cases can data be transferred to third parties?
    • When and how to obtain consent
    • Delving into China’s Personal Data Protection Act
    • Cross-border data transfer compliance requirements by industry
      • Understanding the in-depth data transfer requirements across industries
        • Healthcare
        • Airline
        • Banking, and more
    • Measures to ensure compliance
      • Multi-level Protection Scheme
        • Logging
        • Data classification
        • Back up
        • Use of encryption for ‘key data’
    • When and how to perform in-house security assessment for outbound data
    • Reviewing your organisation’s privacy policies
    • Learn how to conduct a brief self-assessment of your organisation’s cross-border data transfer activities
    • Looking beyond China – Global security requirements
      • Understanding the data requirements of the territory that you are looking to transfer data to
      • Gain insights on the PDPR
      • Acquire a best practice framework for multijurisdictional data protection regulatory compliance
      • Auditing your organisation’s current processes to identify areas for reinforcement and updates

    Lisa Li, Partner, Risk Assurance, PricewaterhouseCoopers

  • 13:00 Lunch & Networking Break
  • 14:30

    Session 3: Measures Organisations are taking to Meet Cross-Border Data Transfer Requirements

    In this panel discussion, we bring together experts from leading organisations to share about the measures that their organisations have in place to meet cross-border data transfer requirements.

    • How do companies determine what kind of data to collect and retain?
    • How are teams structured to ensure cross-border data transfer requirements are met?
    • What are the ways in which organisations can effectively educate employees on data protection matters?
    • Common challenges faced during cross-border data transfers, and how companies mitigate them

    Moderator
    Maxime Oliva, Chief Executive Officer, TekID Investigation & Discovery

    Panellists
    Anxo Cebro, Chief Security Officer, APAC, MAPFRE
    Mark Luo, Regional IT Security Manager, Multinational Company

  • 15:30 Afternoon Refreshments & Networking Break
  • 16:00

    Session 4: Open-floor Discussion with Experts

    Bring the burning questions that you have regarding cross-border data transfer and data protection issues to the floor. Gain expert opinion and exchange valuable insights with fellow practitioners on the challenges that you are facing.

    Moderator
    Maxime Oliva, Chief Executive Officer, TekID Investigation & Discovery

    Panellists
    Lisa Li, Partner, Risk Assurance, PricewaterhouseCoopers
    David Tiang, Founding Principal, Tiang & Co.
    Roy Chen, (ISC)² Shanghai Chapter Security Expert
    Michael Tan, Partner, Taylor Wessing

  • 17:00 Chairman’s Insights and Analysis of the Day’s Proceedings
  • 17:10 Close of Conference