Post GDPR – Key issues, misconceptions, social media and e-privacy, managing compliance

A one-day conference

Sponsored by:

Royal Marine Hotel, Dun Laoghaire,
Co. Dublin

Date: 6th March 2019

The General Data Protection Regulation (GDPR) has been described as the biggest data protection change in a generation, and has already altered how businesses handle data for the foreseeable future. With GDPR now in play, we examine how its implementation has panned out so far, what have been the main challenges for compliance and what can we expect in the near and short term future.

Book your place now!

This conference will also highlight and explore common misconceptions within the GDPR framework, we look at how GDPR applies in practice to social media, and we give real insights on the steps required to create a Retention Policy, as well as examining what’s involved in conducting Data Protection Impact Assessments. We will explore how to monitor and manage compliance within GDPR and the potential risks to your data compliance obligations. This is a must attend event for regulation compliance and future data regulatory requirements.

Who Should Attend

This conference will be of interest to all businesses in Ireland (large and small) such as, corporate consultants, retailers, banks, technology companies, healthcare organisations, marketing firms, legal firms, consultants, advisers, Data protection officers, local authorities, government departments, semi-state agencies and universities to name just a few.




Registration with tea, coffee and pastries


Keynote speaker;

Review of the data environment post GDPR, issues and impacts arising from its implementation in May 2018, common issues, misconceptions and issues of potential confusion on GDPR compliance. 

 Transparency principle and what it means

Chair: Hugh Jones – Sytorus


E-Privacy Regulations

  • Examine the changes it will introduce and how it will interact with GDPR

Speaker: TJ McIntyre, Lecturer, UCD, Chair, Civil Liberties Group, Digital Rights Ireland and consultant, FP Logue Solicitors


Personal Data – Misconceptions explored

  • What is personal data? – dispelling common misconceptions about what is and isn’t personal data
  • Joint controllership
  • Use of biometrics
  • Use of information about criminal offences
  • Controller-processor agreements

Speaker: Fred Logue, Principal, FP Logue Solicitors


GDPR on Social media including Facebook, Twitter, WhatsApp, LinkedIn

  • Case study – medical messaging
  • Workshop & Case Study – How to, in terms of DPIA (Data Protection Impact Assessment)
  • Employee misconduct / breach of GDPR – implications

Speaker: Dr. Katherine O’Keefe, Data Privacy & Governance Consultant, Castlebridge


Coffee break and chance to network


How to create a Retention Policy – Steps to take

Speaker: Elaine Comyn, Data Privacy Consultant, Castlebridge


Data Breaches & Reporting

  • The assessments of breaches and where they meet the reporting threshold or the threshold of requiring notification to the data subject.
  • Data breach from a practical perspective – putting in place a data breach plan, updates on changes to data breach practises, Data breach response plan – the A to Z

Speaker: Liam McKenna, Mazars


Q&A Session – Lunch and chance to network


Monitoring & Managing compliance with GDPR

  • What to monitor and how often?
  • Case Study: How one organisation is tackling this issue
  • Automated ways to manage GDPR
  • What areas of vulnerability organisations should be looking at and – what checks should be carried out, how frequently and by whom should it be done?

Speaker: Paul O’Brien, Managing Director, CalQRisk


Vendor Management – the risks to your business

  • The relationships… organisations (controllers and processors) and their outsourced data processors
  • The responsibilities
  • The importance of robust processing agreements
  • Case Study: High Profile Breach
  • Doing Due Diligence, initially and ongoing

Speaker: Gerard Joyce, Director of Risk Management, CalQRisk


DPC Sanctions and Civil Actions:

Speaker: Simon McGarr of Simon McGarr Solicitors


Conference Close

There will be 5 CPD points awarded to all attendees at this conference from the CPD certification service

Dr TJ McIntyre

Dr TJ McIntyre

Lecturer, UCD, Chair, Civil Liberties Group, Digital Rights Ireland and consultant, FP Logue Solicitors

Dr TJ McIntyre is a Lecturer in Law in the Sutherland School of Law, University College Dublin, the chair of civil liberties group Digital Rights Ireland and a consultant solicitor with FP Logue Solicitors where he specialises in privacy and data protection issues.

Read more

His research looks at information technology law, crime, and civil liberties, with a particular focus on fundamental rights in the online environment. He is a leading commentator on technology law in the national and international media.

Fred Logue

Fred Logue

Principal, FP Logue Solicitors

Fred is the principal of FP Logue Solicitors specialising in technology, intellectual property, information law and commercial law.

Read more

Unusually for an Irish lawyer Fred has a science background and worked as an engineer before becoming a solicitor. Fred has extensive experience and expertise in licensing and exploitation of software and technology. He specialises in advising clients on strategy, contracts, transactions and disputes in business sectors where technology plays a key role, as well as online and digital markets. His clients include software companies, media organisations, NGOs and public authorities. Fred is also a leading information lawyer, advising on FOI, access to environmental information, data protection and privacy. Fred has acted in major information law cases before public authorities, administrative decision makers, Irish Courts, European institutions, and the United Nations.

Katherine O’Keefe

Dr. Katherine O’Keefe

Data Governance Consultants, Castlebridge

Dr. Katherine O’Keefe, co-author of Ethical Data and Information Management: Concepts, Tools, and Methods, is a leading expert in Data Privacy and Information Ethics with Castlebridge.

Read more

Katherine has worked on a range of projects for clients in sectors as diverse as the non-profit sector, airlines, telecommunications, transport, and education. She lectures on Information Ethics at the Law Society of Ireland and is a contributor to Information Ethics Research at the Adapt Centre at Trinity College Dublin. She speaks regularly at international Data Governance conferences on practical implementation of Ethics in Information Management. Prior to joining Castlebridge in 2013, Katherine completed a Ph.D in Anglo Irish Literature at University College Dublin. Katherine regularly writes about Data Governance topics on the Castlebridge website and in other industry publications. In 2016, one of her essays received a “highly commended” distinction in the Alison North New Professionals Awards.

Elaine ComynElaine Comyn

Data Privacy Consultant

Elaine Comyn began her career in the RTE press office as a publicist for two Eurovision Song Contests, as well as the Gay Byrne and Pat Kenny radio shows, among others.

Read more

She has worked in Marketing for several global brands for over 17 years, specialising in Go to Market strategy and operations, cross-functional leadership, process decisioning and people management. At 3 Ireland, Elaine led the Marketing Operations team within the Customer Value Management department. She was responsible – on a daily basis – for ensuring all customers’ marketing permissions & preferences were compliant with data protection law. She was also a key decision maker within their Direct Marketing Incident team working closely with Data Protection, IT Security and Compliance teams.

Elaine is strategically and commercially driven and has an ability to drive positive and interactive stakeholder engagement. She combines this experience with a formal training qualification (QQI) and recently completed the Professional Diploma in Data Protection from the Institute of Banking/Association of Compliance Officers at UCD. Elaine also holds a degree in Business from TCD, and a Post Grad Diploma in Public Relations from DIT.

Paul O’BrienPaul O’Brien

Managing Director, CalQRisk

A co-founder of CalQRisk, Paul has extensive business experience managing multinational companies at operations, general management, and director levels.

Read more

A marine engineer, he has knowledge of the petrochemical, mechanical engineering and energy industry sectors. He has implemented operational excellence programmes at division level and is an expert in management by objectives. A trained ‘black belt’, he has acted as an assessor of the EFQM award and has led the implementation of a division wide Six Sigma programme. He has driven the integration of complex acquisitions on three continents. Paul is an instinctive risk assessor, with a specialty in alignment of business objectives with the risk context. Commenting on GDPR, Paul says that ‘taking a risk-based approach to achieving and maintaining GDPR is expected by the regulator – you can achieve compliance by managing the risks to the data subject and to your business’.

Simon McGarr

Simon McGarr

Solicitor at Simon McGarr Solicitors and Director of Data Compliance Europe

Simon McGarr is a practising solicitor and the director of Data Compliance Europe.

Read more

He offers training and assessment in GDPR requirements for public sector and private clients and offers an external Data Protection Officer service. He has lectured on data protection law for the Law Society and the Academy of European Law, Trier. He is a senior Technical Advisor to M3AAWG, the global security professional conference.

Gerard Joyce

Gerard Joyce

Director of Risk Management, CalQRisk

Gerard is co-founder of CalQRisk with over 30 years experience in the ICT sector in various roles; engineering, technical sales, customer operations, IT management and risk management.

Read more

He is a member of the Institute of Risk Management, London (IRM), chairman of the NSAI Risk Management Consultative Committee and a member of the ISO International Risk Management Technical Committee (TC262) that is responsible for the development of risk management standards and guidance material. Gerard has worked with organisations in financial services, credit unions, education, aviation, technology and public service, providing advice and guidance on governance, compliance and risk management.

Liam McKenna

Liam McKenna

Partner, Mazars

Liam is a Partner in the Mazars Consulting Services practice.

Read more

He focuses on delivering regulatory driven change. Liam has 20 years of industry experience. He commenced his career working in Information Security and subsequently moved into Data Protection. He has managed the delivery of significant compliance driven projects with budgets in excess of €50m. Liam has assisted numerous organisations across the public, private and semi-state sectors with data protection issues. This includes meeting their compliance obligations, responding to breaches, developing and implementing remediation plans post breaches and responding to ODPC reviews.   More recently Liam has led Data Protection Impact Assessments within Banking, Public Sector, Health and Biometrics. As a leader in Mazars 200-person European Privacy Practice, he led the development of our GDPR compliance approach and methodology and has been applying this approach to clients since late 2016. He is currently adapting the Mazars European outsourced Data Protection Officer service for the Irish Market.

OneTrust is the largest and most widely used dedicated privacy management technology platform used by more than 2,000 customers, including 200 of the Global 2,000, for compliance with global data privacy regulations, including the GDPR, CCPA, ePrivacy and more.

OneTrust helps organizations implement global privacy requirements, including Data Protection by Design and Default (PbD), Data Protection Impact Assessments (PIA/DPIA), Vendor Risk Management, Incident and Breach Management, Records of Processing (Data Mapping), Consent Management, Cookie Consent Banners, GDPR Data Subject Rights and CCPA Consumer Rights.

To learn more, visit

Royal Marine Hotel, Dun Laoghaire, Co. Dublin

Click here for directions (PDF).

Booking Rate @ €445 + VAT.

CMG Events Conference Discount

  • 10% discount for the third delegate booked or subsequent bookings thereafter from the same company.

The rate to attend includes morning tea/coffee and refreshments on arrival at registration, mid-morning tea/coffee and pastries and buffet lunch. You will receive the speakers PowerPoint presentations within 24 hours after the event. 

Tel: 01 293 4764


   Telephone:+353 1 2933650

Booking Rate: €445+VAT

Company Name (required)

Number of Delegates Attending (required)

Delegate's Name(s) (required)

Delegate's Position(s) Within Company (required)

Delegate's Email(s) (required)

Booker's Name (required)

Booker's Email:

Booker's Telephone (required)

Payment Options (required)

We recommend you pay by credit card to ensure you receive the best rate available

Invoicing Address

Accounts Phone Number (required)

Accounts Email (required)

NOTE: Please do not enter your credit card details. A member of our staff will contact you promptly when you have submitted the form.

Terms and Conditions:
Payment for attendance is due within seven days from the date of invoice. This booking is transferable and a substitute attendee may attend on your behalf at no additional cost if you cannot attend. Cancellation of a booking must be received by CMG in writing by email or by post, no later than 14 days prior to the event or course date. Regrettably no cancelations or refunds can be made after this date. Cancellations will be charged an administration fee of 25% plus VAT.

CMG reserve the right to make any necessary changes to the advertised programme including a change of venue. The views expressed by the speakers/tutors are not necessarily those held by the organisers, nor is the organiser responsible for speakers/tutors opinions or statements. Please note CMG will distribute the delegate list to all speakers prior to the event/course to ensure their presentation is relevant to those attending. However, in keeping with current data protection and privacy legislation, the distributed delegate list will not contain telephone or email contact details. Please advise CMG Events if you would like to have your name removed from this list.

We do not sell your data to a third party - we may use your contact details for the purposes of notifying you of other conferences or training courses that we run. If you do not wish for us to contact you again, please let us know by emailing

To view our Privacy Policy please Click Here

I have read the terms and conditions