July 2021
Price: £95 PLUS VAT
Format: DOWNLOADABLE PDF
The conference examined the key policy priorities for UK data protection, regulatory and policy developments, and the evolving ways in which data is being utilised and shared.
We were pleased to be able to include keynote sessions with Steve Wood, Executive Director Regulatory Strategy, Information Commissioner’s Office; Sue Daley, Director, Tech and Innovation, techUK; Dawn Monaghan, Head of Information Governance Policy, NHSX; and Mark Thompson, Global Lead, Privacy Advisory Practice, KPMG - as well as contributions from the DMA; Citi, Cancer Research UK; Coelition, the European Data Protection Board; HewardMills; University of Edinburgh and Wiggin.
It came with the UK Government’s welcoming of the European Commission’s draft data adequacy decisions, which would allow for data to continue to flow freely following the UK-EU trade agreement - as well as the Online Harms White Paper, which set out plans for future regulation, and names Ofcom as the regulator for online harms.
Areas for discussion included latest thinking on:
- data protection in the UK after exit from the EU
- the impact of the COVID-19 pandemic on use of data
- the National Data Strategy
- the future and next steps for the UK’s data protection policy
The agenda
- Data protection in the UK post-Brexit - responding to the European Commission’s decision on data adequacy
- Developing the UK’s post-Brexit data protection policy and regulatory frameworks
- Data protection and COVID-19 - the impact of increased remote working during the pandemic, and the role of data in supporting medical research and contact tracing
- The next steps for data sharing, and priorities for implementing the new code of practice - privacy, enforcement, and sharing data internationally
- Taking forward the National Data Strategy - developing best practice for data compliance, and guidelines across key sectors to support innovation and growth
- Next steps for UK data protection policy
Key issues discussed:
UK data protection post-Brexit - developing the policy and regulatory frameworks
Data sharing:
- the ICO’s new code of practice - priorities for implementing the code, designed to support responsible data sharing, and addressing issues around privacy, security, and enforcement
- data transfers - ensuring transparent and secure data transfers, both domestically and internationally, in light of the European Commission’s draft decision on data adequacy
- future trade deals - the impact of data access agreements in trade deals on the UK’s data framework, especially with nations such as the US
- priorities for innovation:
- the role of data sharing and analytics in supporting technological innovation, reducing inefficiency, and supporting productivity
- assessing whether more is needed to address issues around interoperability and access for SMEs
The National Data Strategy:
- innovation - latest thinking on utilising the potential of data to support data-driven innovation, and strengthen the UK’s global positioning in the sector
- best practice for data compliance - priorities for development, and guidelines across key sectors to support sustainable growth
- priorities for regulation:
- the impact of regulatory enforcement to date across key sectors, including finance, advertising, the third sector, and online services
- remaining issues for data protection compliance
- National Data Strategy Forum - priorities for the work of the government/industry/HE/privacy advocate group set up to help support development of the Strategy and consolidate the UK’s global positioning in policy, regulation, and the data economy
Data protection and COVID-19:
- changing use practices:
- how the use of data and its regulation has evolved and adapted during the pandemic
- the impact of wider community data sharing as a response to the public health crisis
- the impact of increased remote working:
- how regulation and industry have responded to increased remote working, and an increased use of personal devices for work and education
- what measures have been put in place to ensure security of data during this period
- medical applications:
- the role of data in supporting medical research and contact tracing
- whether more action is needed by policymakers and regulators to address concerns around the transparency, collection, and use of personal data
Background to the discussion:
- UK government welcomes the European Commission’s draft data adequacy decisions - which, if adopted, would allow for the continued free flow of data following the UK-EU trade agreement
- the National Data Strategy - the policy paper and consultation aimed at realising the opportunities for data and data use ahead of a wider Digital Strategy due to be published in the Autumn
- National Data Strategy Forum launched to help UK become “the world’s number one data destination” - announced by DCMS, the Forum brings together industry, privacy groups, and academics supporting development of the National Data Strategy
- the ICO’s Data Sharing Code of Practice - which includes guidance for businesses to continue to carry out responsible data sharing to support digital innovation and growth, as well as plans to build upon this by updating anonymisation guidance
- the Online Harms White Paper - setting out plans for the future of the regulatory landscape, and naming Ofcom as the regulator for online harms
- Online harms and the ethics of data - the inquiry into online harms and the ethics of data, which is in part examining the impact of increasingly data-driven services and automated decisions, led by the Digital, Culture, Media and Sport Sub-committee on Online Harms and Disinformation
- New review into use of health data for research and analysis - from the DHSC, which will feed into the forthcoming Data Strategy for Health and Social Care
- Data Protection law can help create public trust and confidence around COVID-status certification schemes - a recent blog from the Information Commissioner
- Reflecting on the use of AI and data-driven technology in the pandemic - a recent blog post from the CDEI which outlines in part that in the face of a public health crisis, community data sharing increased
- G7 tech leaders agree on new proposals to boost online safety - leaders from the UK, Canada, France, Germany, Italy, Japan, the US and EU signed a declaration which commits to prioritising the safety of children online, and improving the flow of international data
Policy officials who attended:
Our forums are known for attracting strong interest from policymakers and stakeholders. Places were reserved by parliamentary pass-holders from the House of Lords and officials from BEIS; the Cabinet Office; the Competition and Markets Authority; Crown Prosecution Service; the DCMS; Defra; the Department for Education; the Department for International Trade; the Department for Transport; the Department of Health and Social Care; DWP; Government Banking; the Government Legal Department; HM Revenue & Customs; the Home Office; the House of Commons Library; the Information Commissioner's Office; Intellectual Property Office; Ministry of Housing, Communities and Local Government; Ministry of Justice; Ofcom; The Scottish Government and the Welsh Government. Other attendees included representatives from Addleshaw Goddard; Advocate Davida Blackmore; Arthur Cox; Atomic Weapons Establishment; Bar Council; BBC; Big Brother Watch; British Business Bank; Bryan Cave Leighton Paisner; BT; Cenerva; Connecting Places Catapult; Cranfield University; Dentons UK & Middle East; Department of Social Protection, ROI; dmgmedia; Doctor Care Anywhere; Electoral Office for Northern Ireland; ENGINE Group; everyLIFE Technologies; Foot Anstey; Freshfields Bruckhaus Deringer; Fundraising Regulator; Home Instead; Imperial College, London; IOP Publishing; Jisc; Jonas Software UK; Kaleidoscope Consultants; Low Carbon Contracts Company; Marston's; Monzo Bank; National Biodiversity Network Trust; National Savings and Investments; Pigeon Investment Management; Publishers' Licensing Services; QuestGates; RAND Europe; Roke; RSA Insurance Group; SAGE Publishing; Sandwell Metropolitan Borough Council; Sustain; The Access Group; Ulster University; University of Edinburgh; University of Kent; Vertigo Ventures; Welfare Call and Which?.
Press passes were reserved by representatives from Infosecurity Magazine; IT Pro; MLex; Privacy Laws & Business and Professional Security Magazine.