Tuesday 29 October, 10:30am – 12:30pm for Visual Artists, 2pm – 4pm for Arts Organisations.
Location: VAI Office, 4 Oliver Bond Street, Dublin 8.
GDPR is something that we hear a lot about in the media and through conversations that are normally accompanied by an acknowledgement of confusion. You may say, I’m an artist and I’m exempt from having to worry about it. It is only for large organisations. WRONG, GDPR applies to “solo merchants” which includes artists, as well as larger companies and organisations.
Because it applies to anyone who processes the personal data of EU residents, whether or not that person or business is physically located in the EU. If you live and work in the EU, you most likely need to comply with this law. And if you send out mass emails to EU residents or have financial information sent to you via email by EU clients, you most definitely need to comply with this law.
The penalties are substantial. The maximum fine for significant breaches of the GDPR is either €20 million or four percent of the business’s annual worldwide turnover from the preceding financial year, whichever is greater.
The information session will look at the impact of GDPR upon individual artists. This will include the rights of the individual under the GDPR, the use of mailing and contact lists, and good data protection and management practices.
The session will in particular look at the processing of personal data by volunteers, and the data protection issues that are present in the context of voluntary and not-for-profit work. Both sessions will also have wide scope for Q&A to ensure that the practical problems that artists and arts organisations are dealing with can be addressed comprehensively.
David Murphy is an Assistant Commissioner with the Data Protection Commission, with responsibility for Consultation with the Health and Voluntary Sectors. Having joined the Commission in 2016, David has worked in consultative engagement, providing best practice guidance and advice to organisations across the public and private sectors on compliance with the data protection legislative frameworks. David acts as a member of the European Data Protection Board, and is a frequent conference and event speaker, on behalf of the Commission. Prior to joining the Commission, David gained experience in data governance and record management in the Local Authority sector, with Dublin City Council’s Law Department.