In October 2024, the Data Use & Access Bill (DUAB) was introduced to Parliament, proposing changes to data protection rules in the UK.

But what is the impact of the Bill, and what will it mean for you – the practitioners responsible for compliance in day-to-day business?

Join us for a practitioner-focused discussion with Data Protection Officer Dom Newton from The DPO Centre, where we’ll cut through the legal jargon and explore the real-world impact of the Bill on data protection professionals.

Key topics we’ll cover:

• What’s changing? A breakdown of the Bill’s impact
• DPIAs, ROPAs & AI: Will your responsibilities increase?
• What’s next? The latest developments and what to expect in 2025.
• The DPO perspective: What your peers are saying about these changes.

Dom Newton is a CIPP/E and CIPM accredited Data Protection Officer (DPO) with over a decade’s experience in the field. He has worked across the Finance, Information Technology, Education, and Charity sectors, helping organisations understand privacy risks and aligning data protection practices with business needs.

Your host: Jacob Høedt Larsen, follow me on Linkedin for more news and views on compliance and privacy: https://www.linkedin.com/in/jacobhoedtlarsen/

Sustainable Compliance is brought to you by Wired Relations - read more about it here: https://www.wiredrelations.com

Wired Relations is a GRC solution - tailored for privacy and information security.

We help organisations turn fragile privacy and information security into sustainable GRC programmes.

We focus on four things:

• Ease-of-use: You don’t need consultants to implement Wired Relations and you don’t need training to use it.
• Collaboration: Privacy and infosec is a team sport. We make it easy to collaborate.
• Overview: Privacy and infosec is complicated enough as it is. Wired Relations makes it easier to get an overview - not harder.
• Organising for GRC: The trick is to organise your processes and workflows so that you can sustain your programme.

Guest: Yagmur Sahin, Information Governance and Data Protection Manager at Data Privacy Simplified
Host: Jacob H. Larsen, Wired Relations

In this episode, Jacob H. Larsen sits down with Yagmur Sahin, a qualified lawyer with dual master’s degrees in law and cybersecurity, to discuss her unique career journey into data protection. Yagmur shares insights on fusing law and tech, the growing importance of data protection, and the skills required to thrive in this dynamic field.

Key Topics Discussed

• Yagmur’s Career Path: From criminal and employment law to cybersecurity and data protection
• The Turning Point: How her distaste for mass surveillance and digital profiling led her to pivot her career
• Legal vs. Technical Approach: The benefits of having both legal and technical expertise in data protection
• Diverse Backgrounds in Data Protection: Why professionals from various fields can thrive in this industry
• Essential Skills for Data Protection Professionals:
  • Analytical thinking
  • Strong communication skills
  • Adaptability and resilience
  • Research skills and continuous learning mindset
• The Importance of Data Protection:
  • Safeguarding personal rights and freedoms
  • Building trust in businesses and compliance culture
  • Addressing challenges posed by AI, quantum computing, and data profiling

Key Takeaways

• Data protection is not just about compliance; it’s about trust, autonomy, and safeguarding people’s rights.
• Professionals from various backgrounds, legal, technical, marketing, psychology can succeed in this space.
• Organisations must embed data protection into their culture to maintain trust and meet regulatory standards.
• Passion, curiosity, and a problem-solving mindset are more important than a specific degree when entering this field.

Resources & Links

• Connect with Yagmur Sahin on LinkedIn: https://www.linkedin.com/in/data-privacy-yagmursahin/

Your host: Jacob Høedt Larsen, follow me on Linkedin for more news and views on compliance and privacy: https://www.linkedin.com/in/jacobhoedtlarsen/

Sustainable Compliance is brought to you by Wired Relations - read more about it here: https://www.wiredrelations.com

Wired Relations is a GRC solution - tailored for privacy and information security.

We help organisations turn fragile privacy and information security into sustainable GRC programmes.

We focus on four things:

• Ease-of-use: You don’t need consultants to implement Wired Relations and you don’t need training to use it.
• Collaboration: Privacy and infosec is a team sport. We make it easy to collaborate.
• Overview: Privacy and infosec is complicated enough as it is. Wired Relations makes it easier to get an overview - not harder.
• Organising for GRC: The trick is to organise your processes and workflows so that you can sustain your programme.

Episode Summary:
In this episode of Sustainable Compliance, host Jacob H. Larsen talks with Susanne Bitter, a seasoned information security and data protection expert with over 15 years of experience. Susanne shares her insights on the transformative role of AI in cybersecurity, the challenges of governance and supply chain risks, and why getting the basics right is still critical.

Key Topics Discussed:

• AI's Role in Cybersecurity: The benefits and risks of AI, from increased productivity to challenges like data breaches and misinformation.
• Governance in AI: The importance of context, governance, and understanding AI’s underlying processes to reduce risks.
• Supply Chain Risks: How organisations can choose the right partners and manage complex digital supply chains effectively.
• The Human Factor in Security: Why simplifying security measures for end users is key to improving overall organisational defenses.
• Ethics and Privacy: The growing importance of privacy and data protection in an interconnected world, and how individuals and organisations can protect sensitive data.
• Susanne’s Journey: How Susanna’s passion for computers and logic led her to a fulfilling career in cybersecurity and information security.

Quotable Moments:

• “AI governance isn’t just about technology; it’s about understanding how and why decisions are made in the context of your organisation.”
• “Let’s not forget the basics—strong passwords, good governance, and effective collaboration are still at the heart of information security.”
• “We’ve learned how to use technology, but using it safely? That’s an ongoing challenge.”

About Our Guest:
Susanne Bitter is the Head of Regional Strategic Alliances at the Cybersecurity Forum Initiative and a passionate advocate for AI governance, supply chain security, and data protection. With a strong belief in collaboration and education, Susanna is committed to making complex cybersecurity topics accessible and actionable for organisations and individuals alike.

Resources Mentioned:

• Susanna Bitter’s LinkedIn Profile: https://www.linkedin.com/in/susanne-zuzana-bitter/

Your host: Jacob Høedt Larsen, follow me on Linkedin for more news and views on compliance and privacy: https://www.linkedin.com/in/jacobhoedtlarsen/

Sustainable Compliance is brought to you by Wired Relations - read more about it here: https://www.wiredrelations.com

Wired Relations is a GRC solution - tailored for privacy and information security.

We help organisations turn fragile privacy and information security into sustainable GRC programmes.

We focus on four things:

• Ease-of-use: You don’t need consultants to implement Wired Relations and you don’t need training to use it.
• Collaboration: Privacy and infosec is a team sport. We make it easy to collaborate.
• Overview: Privacy and infosec is complicated enough as it is. Wired Relations makes it easier to get an overview - not harder.
  • Organising for GRC: The trick is to organise your processes and workflows so that you can sustain your programme.