The ICO exists to empower you through information.

Recordings from the DPPC workshops are now available to watch:

Seminar group A

13:30 - 14:15 - 45 mins

Choosing and using AI: how to do it safely

Presenters:

The session will focus on how to safely adopt AI tools, using the data protection framework as an effective way to assess and mitigate risks. By coming to this session, you will learn how to spot potential risks of using AI, so your organisation can get the best out of these new tools.

The session will cover:

  • data leakage;
  • accuracy of output;
  • automated decision making;
  • origin of training data;
  • bias detection and mitigation;
  • accountability; and
  • security.

It will contain practical examples, based on real-life cases that we see as a regulator.

This session is aimed at people who are making decision about whether and how organisations use AI tools, with an initial or intermediate knowledge of AI.

Empathy above all: a new approach to customer service

ICO Presenters:

External panellists:

We aim to show how implementing an empathetic approach to customer service can enhance and improve your information rights practices. Empathy and transparency are important in any customer service environment, and this session will share some of the lessons we have learned about the best tools and practices to improve information rights handling through treating our customers with empathy.

The session will help you to gain an understanding of what empathetic customer service means and what it feels like to need to make a formal request for information or personal data.

This session is aimed at DPOs, information rights practitioners from FOI and DP backgrounds and anyone dealing with customers in their organisation.

Seeing double: understanding both SAR and FOI requests

Presenters:

If you came to DPPC 2023, then you may remember us running similar workshops on manifestly unfounded, excessive or vexatious requests. We’re back again to answer a few of the unanswered questions from last time, highlighting common trends that we’ve seen in advice and complaint cases.

Be warned – some audience participation may be required...

This session aims to encourage a collaborative environment where request handlers will need to put themselves in the shoes of the requesters to consider how to improve their own practices.

Going stateside: Transferring data to the US

Presenters:

The US is one of the most common destinations when transferring personal information out of the UK. In this session we will:

  • provide an overview of the different mechanisms that you can use under the UK GDPR to transfer personal information to the US;
  • take a detailed look at how to use the US Data Bridge; and
  • provide guidance on how to complete a US transfer risk assessment.

This session will be of interest to anyone managing or advising on transfers of personal information to the US. This session is aimed at people with a basic knowledge of the international transfer rules. You may find it helpful to review our guidance on transfer risk assessments before attending.