Security of Personal Data Processing Event

ENISA, Personal Data Security Processing, Athens, October 8th, European Digital SME Alliance, Hellenic Data Protection Authority

Security of Personal Data Processing Event
Oct 08, 2018 from 09:00 AM to 05:30 PM
Crowne Plaza Athens - City Centre

Registration is now closed as the event has reached the maximum number of participants. Thank you for your interest and your understanding!

Add to calendar
Add to vCal, Add to iCal

One of the core obligations for all businesses, including SMEs, acting either as data controllers or data processors, in GDPR is that of the security of personal data. In particular, according to GDPR security equally covers confidentiality, integrity and availability and should be considered following a risk-based approach: the higher the risk, the more rigorous the measures that the controller or the processor needs to take (in order to manage the risk).

ENISA organized in October 8, 2018 a workshop on security measures (article 32 GDPR) in Athens, in co-operation with European Digital SME Alliance and the support of the Hellenic Data Protection Authority.

This workshop was organized within the context of relevant ENISA’s work in 2016 and 2017, especially targeting SMEs (where we collaborated with experts from Italian and Hellenic DPAs) and as a follow up on the event organized on February 8, 2018 in Rome.

Workshop Notes and Presentations

The notes from the workshop are available here.



9:00 - 9:30



9:30 - 9:45

Welcome Messages

 A. Mitrakas (ENISA)

 K. Menoudakos (HDPA)

9:45 - 11:00

 Panel Session I

SMEs preparation for GDPR


Chair:  V. Zorkadis (HDPA)


S. Toffaletti (European DIGITAL SME Alliance,

P. Balboni (ICT Legal Consulting,

A. Oikonomopoulos (Skroutz S.A.)           

11:00 - 11:30

Coffee break


11:30 - 12:45

 Panel Session II

Security measures for SMEs

Chair: C. Lambrinoudakis (UniPi)


G. Panagopoulou (HDPA)

G. D’ Acquisto (Garante)

F. Guasconi (European DIGITAL SME Alliance, SBS)

P. Drogkaris (ENISA)

12:45 - 13:45

Lunch break


13:45 -15:00 


Panel Session III

Personal data breaches - what an SME should know/do


Chair: D. Kampouraki (EDPS)


P. Van Eecke (DLA Piper)

K. Limniotis (HDPA)

K. Panagos (Vodafone)

G. Patsis (Obrela)

15:00 - 15:30

Coffee break


15:30 - 16:45


Panel Session IV

Data protection by design for SMEs


Chair: G. Yannopoulos (UoA)


A. Bourka (ENISA)

K. Limniotis (HDPA)

V. Verykios (EAP)

Y. Kotsis-Giannarakis (HAMAC)

16:45 - 17:00

Closing remarks



Privacy Policy

The privacy policy of the event can be found here.

This site uses cookies to offer you a better browsing experience.
Aside from essential cookies we also use tracking cookies for analytics.
Find out more on how we use cookies.

Accept all cookies Accept only essential cookies