“If you can achieve data protection by design and default then you can pretty much meet most of your GDPR obligations,” says Abigail Dubiniecki, speaker at the Roadmap for Sales and Marketing GDPR summit on 8th March.

Abigail is a lawyer and privacy professional with expertise in privacy, data security, regulatory compliance, trade, procurement, administrative law and dispute settlement. She has acted on behalf of clients in disputes, before industry regulators (both in English and French). Prior to moving to London, Abigail was the privacy lead for the legal team of a Canadian Crown corporation.

And it is fitting that she, Abigail, with her Canadian background, is talking about privacy by design, because this very concept was invented in Canada, or at least it was the Canadian Information and Privacy Commissioner, Ann Cavoukian, who did so much to promote the concept.

In a nutshell, privacy by design means that privacy must be a core concept to any new idea or product involving data, not a bolt-on extra.

There is something curious about GDPR, or the General Data Protection Regulation – it’s not a short or easy read, spanning 98 articles and over 130 pages. Yet Article 25, perhaps the single most important part of the regulation, the Article with the headline ‘Data protection by design and default’, is neither difficult to read or especially long.

And Article 25 of GDPR is GDPR in a box, says Abigail.

In her talk, she is leading with a case study un-packing the core obligation of data protection privacy by design and default, and demystifying it, helping businesses understand how they can bring it to reality.

In fact data protection by deign builds on seven foundations about data protection. It must be

Proactive not reactive; preventative not remedial
Privacy as the default setting
Privacy embedded into design
Full functionality – positive-sum, not zero-sum
End-to-end security – full lifecycle protection
Visibility and transparency – keep it open
Respect for user privacy – keep it user-centric.
To find out more and hear Abigail in person continue your journey to compliance at the GDPR Conference Europe: Roadmap for Sales & Marketing, 200 Aldersgate, St Paul’s, London tomorrow (8th March).


GDPR Summit Series is a global series of GDPR events which will help marketers to prepare to meet the requirements of the GDPR ahead of May 2018 and beyond. Further information and conference details are available at http://www.gdprsummit.london/

comments powered by Disqus