This week, I had the pleasure of attending the 10th International Programme of The Sedona Conference, a non-profit legal research and educational institute. The theme was cross-border data transfers and data protection - with a strong focus on the recently-implemented EU General Data Protection Regulation (GDPR).

One of the early panel discussions featured in-house and private practice lawyers and representatives from global data regulators discussing the implementation challenges seen in the first few weeks since the GDPR came into force. These include:

  1. Governance and accountability
  2. Enhanced data subject rights
  3. Transparency and information requirements
  4. Data portability and subject access requests 
  5. Records of processing activities
  6. Application to non-EU organisations
  7. Data protection impact assessments
  8. Data breach notification
  9. Cross-border discovery
  10. Enforcement against non-EU entities

If you're interested in finding out more about each of these challenges, I explain them in more detail here