A practical approach to GDPR compliance-Focusing on what really matters in the days to the 25th of May



Date and Time



Sheffield Law Society, 8 Campo Lane

Non member price


Like many partners, practice and IT managers, you’re likely overwhelmed with information about the GDPR. With so much detail, mixed in with all the myths and bad advice, it can be hard to know where to focus.

If you’re not already well underway with your GDPR preparations, focusing on your highest risks when it comes to personal data is the most pragmatic approach in the little time you have left.

This event will focus on the most practical steps you can take, along with the tools you can use to quickly identify your gaps and manage your key risks from May 2018 onwards. We’ll explore technology-based risks, as well as the more common threats such as poorly informed staff and inadequate processes. And we’ll look at the specific documentation you need to have in place, should you face an external audit.


Session One:

How to build a roadmap to compliance: The ICO’s 12 step framework

Jenny Pennington, Data Protection Lead, Risk-X


Session Two:

An overview of lessons learnt from implementing data security practices and creating more risk-aware cultures.

Stevie Hazelden, Information Governance Project Manager currently working in a consultancy based role within the Solicitors Regulation Authority (SRA)


Session Three:
How technology can help accelerate your GDPR readiness.
Matthew Newton, Operations Director from Oosha




Speaker Profile:


Matthew Newton:

Matthew is Operations Director and co-founder of Oosha Ltd, a leading cloud desktop and managed IT service provider for the legal sector. Matthew regularly advises law firms on the most effective IT strategies to help them modernise, stay compliant and manage external threats. He is a frequent speaker at legal events across the UK and a leading voice on subjects such as GDPR, cybercrime, cloud and technology.


Melvyn White:

Melvyn has spent 18 years working in the cyber security industry. His primary focus is on educating firms on how to protect themselves from cyber-threats – particularly on the effectiveness of cyber-awareness training.  As Cyber Security expert at Webroot, the world’s largest privately owned cybersecurity organization, Melvyn regularly speaks at cyber-security events across the UK.


Jenny Pennington:

With over 20 years of experience in data protection, Jenny has a wealth of experience in helping clients understand their compliance obligations.  As Data Protection Lead at Risk-X, a global data protection consultancy, Jenny regularly advices firms on their GDPR preparedness and helps them implement compliance programmes.

A practical approach to GDPR compliance-Focusing on what really matters in the days to the 25th of May

Book on this course

Your Name

Company Name

Email Address

Telephone Number

More information