gdpr for identity architects
TRANSCRIPT
![Page 1: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/1.jpg)
Senior Director - Security Architecture, WSO2
General Data Protection Regulation (GDPR) for Identity Architects
Prabath Siriwardena
![Page 2: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/2.jpg)
GDPR OVERVIEW
![Page 3: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/3.jpg)
![Page 4: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/4.jpg)
![Page 5: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/5.jpg)
![Page 6: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/6.jpg)
![Page 7: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/7.jpg)
![Page 8: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/8.jpg)
![Page 9: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/9.jpg)
![Page 10: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/10.jpg)
![Page 11: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/11.jpg)
![Page 12: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/12.jpg)
![Page 13: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/13.jpg)
![Page 14: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/14.jpg)
14
![Page 15: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/15.jpg)
15
DATA PROTECTION IMPACT ASSESSMENT (DPIA)
● Following activities are required to have a DPIA○ Processing of special categories of personal data at large scale.○ Core business activities consist of systematic monitoring of the data subject at
large scale.○ Monitoring of publicly accessible areas at a large scale
![Page 16: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/16.jpg)
16
![Page 17: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/17.jpg)
17
![Page 18: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/18.jpg)
18
![Page 19: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/19.jpg)
19
DATA PROCESSING RECORD (CONTROLLER)
● Name and contact details of controllers, the representatives, and data protection officer.
● Purposes of processing● Description of the categories of data subjects and categories of personal data.● The categories of recipients to whom the personal data have need or will be
disclosed.● Transfers of personal data to a third country/international organization.● Time limits for the erasure of the different data categories.● General description of the technical and organizational security measures.
![Page 20: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/20.jpg)
20
![Page 21: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/21.jpg)
21
DATA PROCESSING RECORD (PROCESSOR)
● Name and contact details of controllers, the representatives, and data protection officer.
● Categories of processing● Transfers of personal data to a third country/international organization.● General description of the technical and organizational security measures.
![Page 22: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/22.jpg)
22
![Page 23: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/23.jpg)
23
![Page 24: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/24.jpg)
24
![Page 25: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/25.jpg)
25
![Page 26: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/26.jpg)
26
![Page 27: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/27.jpg)
27
![Page 28: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/28.jpg)
28
![Page 29: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/29.jpg)
29
![Page 30: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/30.jpg)
DATA SUBJECT’S RIGHTS
![Page 31: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/31.jpg)
31
![Page 32: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/32.jpg)
32
![Page 33: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/33.jpg)
33
![Page 34: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/34.jpg)
34
![Page 35: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/35.jpg)
35
![Page 36: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/36.jpg)
36
![Page 37: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/37.jpg)
37
![Page 38: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/38.jpg)
IAM DESIGN PRINCIPLES AND
BEST PRACTICES
![Page 39: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/39.jpg)
39
![Page 40: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/40.jpg)
40
![Page 41: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/41.jpg)
41
![Page 42: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/42.jpg)
42
FACEBOOK COOKIE POLICYhttps://www.facebook.com/policies/cookies/
![Page 43: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/43.jpg)
43
GOOGLE COOKIE POLICYhttps://www.google.com/policies/technologies/cookies/
![Page 44: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/44.jpg)
44
![Page 45: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/45.jpg)
45
FACEBOOK DATA USE POLICYhttps://www.facebook.com/full_data_use_policy
![Page 46: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/46.jpg)
46
![Page 47: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/47.jpg)
47
![Page 48: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/48.jpg)
48
![Page 49: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/49.jpg)
49
![Page 50: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/50.jpg)
50
![Page 51: GDPR for Identity Architects](https://reader034.vdocuments.us/reader034/viewer/2022051404/5a64bf7b7f8b9abb6f8b47c3/html5/thumbnails/51.jpg)
51