This website uses cookies. View our cookie policy
Select regional store:

GDPR webinar series

Organisations in the GCC (Gulf Cooperation Council) countries who process or store the personal data of EU residents must comply with the EU’s GDPR (General Data Protection Regulation).

The GDPR imposes fines of up to 4% of annual turnover or €20 million (approximately 84.9 million AED) for non-compliance, whichever is higher, grants extended rights to data subjects and allows data subjects to bring legal action against organisations in case of a data breach.

IT Governance’s webinars have been designed to help you identify the steps you must take to become compliant.

Upcoming GDPR webinars

Sorry, we don’t have any upcoming GDPR webinars at the moment. Subscribe to our newsletter to keep updated when new webinars are available.

Subscribe now >>

GDPR webinars to watch on demand

Watch recordings of our previous GDPR webinars and download the webinar slides to refer to.

Although many organisations are familiar with the concept of penetration testing, there is often a common struggle to understand how to fit it into their GDPR compliance project, or even how to get started.

Organisations should intensify the implementation of information security controls and technologies, including IT security monitoring, testing and measuring in compliance with Article 32 of the GDPR.


The legal sector is a popular target for cyber attacks, and with such a wealth of confidential information on offer, this is not surprising. According to PwC’s 2017 Law Firms’ Survey, the majority of law firms have experienced a security incident in the past 12 months, with phishing attacks being the most common.

Now that the GDPR is in force, law firms must disclose breaches that compromise the rights of data subjects.

Many law firms are implementing ISO 27001-compliant ISMSs to east the workload of regular audits and better manage their sensitive information in compliance with the GDPR. This proves to clients that they take information security seriously and gives a competitive advantage.


The GDPR creates a significant number of responsibilities and obligations for controllers and processors. Data controllers must determine the purpose for which data is collected and implement control measures appropriate to the risk to ensure ongoing compliance. Data processors will also be assigned a set of obligations such as processing data in line with the GDPR’s principles, notifying the data controller and reporting a breach.


DPIAs are essential to processing personal data in line with the requirements of the GDPR. They help organisations make an early evaluation of the impact that business processes, product updates and new projects might have on the data subject.


Speak to an expert

Please contact our team for advice and guidance on our products and services.