Data Protection & GDPR - London

Tuesday, 6 Jun 2017, 09:30 - 13:00


On 25 May 2018 the new General Data Protection Regulation (GDPR) will be enforceable, bringing key changes to the UK’s Data Protection requirements .This seminar will explore what your charity’s requirements are currently and what changes you will need to incorporate to comply with the GDPR. 

Alongside concerns around GDPR, general data protection is still a worry for many charities. Mismanaged data can result in serious consequences, with fines of up to £500,000 currently being issues by the Information Commissioner's Office for data breaches.

Charities hold significant amounts of personal data on their systems, including names, addresses and bank details of their supporters, employees and volunteers. This is why it is more important than ever to for organisations to ensure that they are complying with best practice in data protection.

Throughout this course attendees will understand the requirements of the current and future data protection legislation, and the controls organisations need to have in place to ensure their data is safe. It will also provide practical examples of how data protection in an organisation works, including real life case studies of where and how breaches have occurred for charities. Finally, coverage of the forthcoming GDPR will highlight its impact on organisations within the UK, even when we are outside the EU, and how best to prepare for the new regulatory regime.


Mark Child, Partner, Kingston Smith Consulting

Mark is a Managaing Director for GLE Consulting and leads the Technology Risk Management practice line. Prior to GLEC, Mark was a Parnter at Kingston Smith Consulting, EMEA Director at the consulting firm Jefferson Wells and global Director of Information Technology Audit at Aviva. He is a highly respected senior IT auditor and information security risk professional who has developed and directed international audit and risk functions in a range of sectors including financial services, retail and manufacturing. Mark is an acknowledged specialist in risk management, data privacy, internal audit and quality management and has managed the successful implementation of global projects and business initiatives.

Tim Wright, Senior Manager, Kingston Smith Consulting

Tim is a highly respected information security and business continuity professional. He is an acknowledged subject matter expert on data protection and privacy legislation in the UK and internationally, and provided feedback on the initial proposals for the forthcoming new European General Data Protection Regulation. Tim has acted as data protection officer in a number of financial services organisations within Europe. He has a wide experience of IT security controls and regulatory compliance auditing including data privacy and security, security policy development and implementation, gained largely within the financial services sector. Tim is frequently asked to present at conferences and provide training on these subjects.

Neil May, Senior Manager, Kingston Smith Consulting

Neil is a highly experienced Senior IT audit manager and governance professional with over sixteen years' experience of auditing systems, infrastructure and IT governance across multiple sectors and locations. Neil headed the Global IT Audit team at Camelot Group, operators of the UK National Lottery. He is an acknowledged specialist in data protection, information security, internal audit and IT service management and has managed the successful implementation of global projects and initiatives. His previous career is largely comprised of senior IT auditing roles in global FTSE100 companies and the professional services sector. Prior to this Neil worked as a business and systems analyst on complex business transformation projects.

This course is run in association with

Kingston Smith



Arrival tea and coffee and registration


Introduction and session 1
Requirements of the UK Data Protection Act and the controls organisations need to have in place.


Session 2
Case studies – This session will illustrate how Data Protection works in practice and what happens when it fails. It will include examples of breaches, how they occurred and what could have been done to avoid them.


Refreshment break


Session 3
Change in the regulatory landscape – preparing for GDPR


Q&A session



Venue Details


Kingston Smith, Devonshire House 60 Goswell Road, LONDON, EC1M 7AD

View Larger Map

Bookings & Prices


  • CFG Charity Member - £68.00
  • Non CFG Member Charity - £88.00

Terms and Conditions:

Written notice of cancellations up to 21 days before an event will incur a 25% administration fee. After this time period, a 100% cancellation charge will apply. Substitutions (i.e. name changes) for the course booked can be made free of charge.

CFG reserves the right to cancel any event two weeks prior to the event date. You will be entitled to a full refund or given the opportunity to transfer to an alternative date. However we regret that we cannot refund any travel or accommodation costs incurred by delegates. CFG accepts no liability if an event is cancelled or postponed for reasons beyond our reasonable control resulting from an act of God, governmental regulation, fire, war, terrorist activity or civil commotion.

It may be necessary for reasons beyond our control to change the date, time or the venue at any time prior to the event date. If this occurs you will be informed of changes and given the opportunity to cancel or transfer to an alternative date.

CFG reserves the right to amend the content of the programme or the speakers where necessary without consulting booked delegates.

Download calendar entry

  • Email
  • Twitter
  • Facebook
  • Linkedin

© Charity Finance Group / © Charities Resource Network / Registered Office: 15-18 White Lion Street, London, N1 9PG.
A Company Limited by Guarantee. Registered in England No. 3182826, Registered Charity No. 1054914, Registered VAT No. 945 6038 09.