We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners. Read More

Log in

M21068 - A Practical Approach to GDPR For Businesses (Online)

  • 1 Sep 2021
  • 09:15 - 12:30
  • Online Webinar


Registration is closed
Registration Time: 09:00
Sessions Time:09:15 - 12:30  including a 15-minute break
Speaker: Mr David Cauchi
Venue: Online Webinar
*Group bookings for 3 or more participants available.
Participation Fees (The Institute is now accepting payments via Paypal)
MIA Members: €40.00
Non-MIA Members: €75.00
Retired Members: €20.00
Students: €30.00


With already 3 years post implementation, the General Data Protection Regulation (GDPR) remains one of the main challenges faced by businesses in today's digital and data-oriented environment. Whether a small retail outlet with online presence or a larger organization, the use of personal data concerning your customers or even employees is common in your daily business activities and relationships, thus requiring your efforts to ensure conformity with the GDPR.


This session aims to provide the audience a practical understanding of the main concepts in data protection laws as well as the necessary steps to enhance your level of compliance and minimize the GDPR-related risks.


- Why GDPR and privacy
- What is personal data
- Main roles and stakeholders
- Lawful processing and Consent
- Principles of information handling
- Transparency and privacy notices
- Data Subjects' rights
- Accountability, and Record-Keeping
- Internal Policies and Procedures
- Onboarding Service Providers
- Data Transfers
- DPIA and other privacy assessments
- Retention of data
- Security and Privacy by Design
- Dealing with Data Breaches and Claims
- Appointment of DPO
- Identifying and prioritizing your risks
- Towards Privacy Excellence (culture, training, audit and control)


This session is intended for persons with Decision-Making or Advisory Roles within organizations, including Top Management, Business Entrepreneurs, Legal, Compliance and Risk Managers, Data Protection Officers and other employees responsible for the handling of privacy matters within organizations.


David Cauchi is a seasoned data protection practitioner with over 17 years of experience in the field. He started his career in the data protection field when he joined the Information and Data Protection Commissioner after graduating in Management in 2003.
Throughout these years he developed a passion and also expertise in the field, particularly in handling casework, investigations and audits, international and cross-border matters, providing guidance and raising awareness on data protection to the various sectors, including banking and financial services, online gaming, employment, law enforcement and regulatory bodies, NGOs, and also the public at large.
David was also actively involved in EU fora, in particular the Coordinated Supervision of EU large-scale information systems, having also served as Chair of the Schengen Supervision Coordination Group.
He moved to the private sector in 2020, where he leads the privacy function for an online gaming corporate. David is also a Certified Practitioner and Privacy Manager, having obtained the relevant qualifications from PDP Training and IAPP respectively. 


3 Hours Professional


Terms and conditions apply.


By Registering and/or Booking for this event, you agree that MIA will collect your information, who will be using it as per the MIA Privacy Policy for CPE Events. Please read the MIA’s Privacy Notice for CPE Events in its entirety which can be found at this link. By accepting to participate in this event you accept that MIA shall process personal data in accordance with this Privacy Notice.
If registration is being affected by a company or other corporate entity on behalf of an attendee or the registering company or other corporate entity supplies to the MIA personal data of third parties, such as of employees, affiliates, management companies or service providers, the registering company or other corporate entity shall be solely responsible for making sure that the provision of such data to the MIA fully complies with applicable laws and the relevant person in regard to whom the data relates has been provided with the necessary information at law regarding the MIA’s processing of his personal data.
Any information notices, consents or other applicable requirements that may be required to be fulfilled for the provision of third party data to the MIA shall be borne solely by the registering company or other corporate entity. The registering company or other corporate entity hereby fully indemnifies the MIA and shall render the MIA completely harmless against all costs, damages or liability of whatsoever nature resulting from any claims or litigation (instituted or threatened) by any third party against the MIA as a result of the provision of any third party personal data to the MIA by the registering company or other corporate entity.
The Malta Institute of Accountants may take photos during this event. These images will be used by the Institute to share news about the event in newsletters, the Annual Report, The Accountant journal and printed publicity. Photos can also be published on MIA’s Facebook, Linkedln and Twitter. Such images may be used to publicise future events of the same nature and for reporting purposes.


Contact Us

Suite 4, Level 1, Tower Business Centre, Tower Street, Swatar, BKR 4013, Malta 

E-mail: info@miamalta.org

Tel. +356 2258 1900

© MALTA INSTITUTE OF ACCOUNTANTS, 2022                                                                                         Privacy Notice