Roundtable

12 December 2002

HSBC, London

Overview


Host: HSBC

Meeting agenda

Welcome & EPON Introduction

Chair: David Trower

• Introduction to EPON
• Themes of the meeting

Exchange of experience on international transfers of personal data from the European Economic Area (EEA)

All Members

  • EPON members’ role within their organisation
  • Their position in the organisation (job title and location within the organisation)
  • Their main responsibilities
  • The countries which fall within their remit
  • Budget 

Development of international transfer policy

All Members

• What are its objectives?
• What assistance, if any, did you seek/receive? From whom?
• Scope of policy
• Content of policy/other documentation
• Implementation/Education
• Assessing whether the policy is being followed in your organisation. Conduct audits? Other?

Contracts, Safe Harbor, and Internal Codes

All Members

  • Contracts
    • EU standard contracts
    • ICC clauses
    • Other national, sectoral or company variations: Changes made, their rationale, and implications of no longer gaining automatic approval by data protection authorities
  • US Safe Harbor
    • Steps required to join the Safe Harbor
    • Advantages / Disadvantages
    • Is it worth the effort?
  • Internal codes
    • Steps involved
    • Advantages
    • Disadvantages
    • Is it worth the effort? 

Data Protection Authority/European Commission Approval

All Members

  • Members’ experience
  • National differences?

Specific issues

All Members

  • Examples such as staff travelling with laptops
  • What precautions are taken?
  • What guidance is given?
  • Other problem areas?

European Commission’s 2nd stage consultation of social partners on The Protection of Workers’ Personal Data (published 31st October 2002)

Nicola Fenny, Senior Policy Advisor, Confederation of British Industry

  • Consent
  • Medical data
  • Drug testing and genetic testing
  • Monitoring and surveillance
  • National legislation
  • International instruments eg. ILO Code and the Council of Europe’s Recommendation
  • Art. 29 DP Working Party’s Opinion