Establishing a culture of compliance - why does it matter?

GDPR must become embedded in company practice, says data protection officer

13th July, 2017
Corporate Compliance Manager, An Post and Chairman of Executive Committee, Association of Data Protection Officers (ADPO), Tom Hulton

What's your name?

Tom Hulton

What position do you hold?

Corporate Compliance Manager, An Post and Chairman of Executive Committee, Association of Data Protection Officers (ADPO)

How long have you held the position?

I am ten years in my current role and this is my second year as Chair of ADPO.

What are your day-to-day responsibilities?

I am An Post’s Data Protection Officer and I manage its data protection compliance. Becoming fully compliant with GDPR is a high priority at present. I also act as company secretary to a number of An Post subsidiaries and advise on corporate governance and related matters.

What is your professional background?

I am an experienced chartered accountant, internal auditor and company secretary. Ten years ago I took on the position of Data Protection Officer with An Post and I continue to hold that role as part of my compliance function.

Tell me about yourself away from work?

I enjoy being outdoors, especially hillwalking.

Tell us something very few people know about you?

I travelled around South Georgia and visited Antarctica with Pat Falvey’s Beyond Endurance.

You are speaking at our GDPR Summit in September. What are you speaking about?

I am participating in the panel discussion on ‘Establishing a Culture of Compliance. Why does it matter?'

What challenges do you see for organisations implementing the new regulations?

- Extensive new requirements all due to be in place by May 2018.

- Building a culture where GDPR is ‘business as usual’ and embedded in company practice, for example privacy by design and default.

- Some Article 29 Working Group guidance not yet published and Irish GDPR Bill not enacted which makes compliance challenging.

Tom Hulton will be appearing at the GDPR Summit on Tuesday, September 12 at Croke Park, Dublin. Make sure your business is ready for this important legislation with GDPR17.com.

Share this post

Related Stories

Content is king – just ask Netflix as rivals attempt to steal its crown

Tom Maguire: Tax changes we make now could help business for years