EU General Data Protection Regulations Impacting U.S. Institutions

On May 25, 2018 all companies and organizations with constituencies in the European Union, including the United Kingdom, will be expected to comply fully with the EU’s new General Data Protection Regulation (GDPR).  U.S. institutions that operate in Europe and/or maintain information on contacts, students, facilities, prospects, website users and others residing there are obliged to fulfill the requirements of the new regulation, commonly referred to as GDPR.  To comply, these organizations must acquire an accurate understanding of the ruling and its stipulations; they must also develop and implement numerous new processes.  We will provide some insight into the regulation and give practical advice on how to comply.

Speakers: Mark Bednarz, Partner, Risk Advisory, PKF O’Connor Davies and Ian Singer, IT Partner, Risk Advisory, PKF Littlejohn

Mark Bednarz, MS, CPA, CISA, CFE is a Partner in PKF O’Connor Davies Risk Advisory Group. He combines more than twenty years of public accounting and Fortune 500 experience and an expertise in attestation and consulting services for a variety of clients. His experience includes ERM reviews, IT audits, operational, outsourced and co-source internal audit, internal audit transformation projects, QAR and forensic projects.  Mark has been awarded Fairleigh Dickinson University’s inaugural “50 Under 50” Business Leaders and is on FDU’s Information Technology Industrial Advisory Committee (ITIAC).

Ian Singer is PKF Littlejohn’s IT assurance partner and has many years’ experience of working for both commercial and not-for-profit clients.  He has been involved in the design, development and implementation of data processing systems for more than 30 years and has extensive experience in the provision of specialist IT consultancy services including IT strategy, data mining, IT controls assessment and risk management reviews, data quality and project management.  He is currently actively involved in advising a wide range of organizations on the General Data Protection Regulations (GDPR) due to come into force in May 2018.

Upon completion of this program participants will be able to:
1. Provide an overview of GDPR 
2. Recognize how the EU/UK regulations impact your institution
3. Identify some key initiatives that should be taken to address the regulations

Field of Study: Information Technology
Program Level: Overview
Location: Virtual
Type of Delivery Method: Group-internet-based
Prerequisite: Understanding of audit and risk management
Advanced Preparation: None
CPE Credit: 1 Credit Hour
Cost: None