Morning Workshops (9.30am - 12.00pm)

AI Adoption in Practice

Dr. Barry Scannell - Partner, William Fry

AI tools are being adopted across organisations at pace, presenting practitioners with compliance challenges at every stage of the AI lifecycle. In this interactive practical Workshop, delegates work in groups through a realistic AI procurement and deployment, to:

• consider how to identify and map AI-driven processing across their organisation
• understand lawful basis and proportionality considerations from pilot to full deployment
• consider the contractual and supply chain issues arising from AI procurement
• work through a realistic compliance incident arising from the deployment

Who's Who in Data Protection: Controllers, Processors and Contractual Contracts  

Ruth Hughes - Partner, McCann FitzGerald

• the distinction between controllers, joint controllers, processors and sub-processors, with a focus on how to identify the correct role in practice
• the various types of data protection contracts, including controller to controller data sharing agreements, joint controller arrangements, data processing and sub-processing provisions, intra-group agreements, international transfer terms
• risk allocation in data protection contracts in various scenarios and negotiating data protection terms

Afternoon Workshops (1.00am - 3.30pm)

Cyber and Information Security - In Practice

Ricky Kelly - Partner, RDJ

Jennifer Noctor - Partner, RDJ

Cyber threats are growing in sophistication and frequency, placing mounting pressure on organisations across Ireland and the EU to stay ahead of the risk landscape. At the same time, the regulatory environment is transforming rapidly: the NIS2 Directive and Ireland's National Cyber Security Bill are reshaping the obligations that organisations must meet, with supply chains now firmly in the regulatory spotlight.

This practical Workshop equips delegates with the knowledge and tools to understand evolving threats, navigate their compliance obligations, and build lasting organisational resilience, including:

• examining the evolving cyber risk and threat landscape, as well as the most significant and emerging risks facing organisations today
• understanding the current and developing regulatory framework in Ireland and the EU, including the obligations imposed by the NIS2 Directive and the National Cyber Security Bill as it progresses through the Oireachtas
• learning what Ireland's Cyber Fundamentals scheme involves, how organisations can achieve it, and how certification may help demonstrate compliance with regulatory requirements
• exploring the specific obligations arising under NIS2 and forthcoming Irish legislation in relation to supplier and third-party risk management
• considering practical approaches to implementing robust supplier management frameworks that align with regulatory expectations

EU Omnibus: The New Rules of Digital Engagement

Susan Walsh - Legal Director, EY Law

• consumer protection, data protection and secure by design principles, which now operate as a single, interdependent governance landscape
• how organisations can use this alignment to build trust, reduce risk and create competitive advantage
• how to design AI enabled services that are compliant, secure and trusted by default
• how Omnibus requirements interact with GDPR duties (transparency, fairness, profiling, accountability) and with cybersecurity controls, including where AI systems influence consumer journeys