The EU General Data Protection Regulation (GDPR) will become effective on 25 May 2018. This will replace the current 1995 directive and will impact all organisations that process EU citizen’s data.

This short webinar is one in a series produced by ACCA and Haines Watts that looks at key elements from the Regulation and affected business functions. We recommend that you listen to the webinar on Key Principles before listening to the other webinars in this series. 


Mike Hughes CISA, CGEIT, CRISC, partner at
Haines Watts

Mike has over 36 years IT and IT governance, risk and compliance experience including 20 years with KPMG during which time he performed a number of senior roles including leading KPMG's Midlands IT Governance and Compliance team.

After leaving KPMG, he set up 123 Consultants GRC which went on to become HWgrc as a joint venture with Haines Watts Controls & Assurance. HWgrc is the specialist IT governance, risk management and compliance arm of Haines Watts. 

Mike has worked with a wide range of clients in the public and private sectors, helping client so fully exploit their investment in IT, whilst identifying and managing risk effectively. He also plays a leadership role with ISACA and has served on several of their international committees. 

Steven Connors, CISM, FIPA, FFA, partner at
Haines Watts

Steve is a partner with Haines Watts in its Controls & Assurance practice. He works with clients across a range of sectors helping them deliver value from their information systems while at the same time ensuring that the data remains secure.

The practice’s focus is to use the collective experiences of all their people to help clients leverage value out if their investment in information technology while ensuring that they remain secure and compliant with legislation and regulations.

His personal focus is always on assisting organisations to better understand their data and its value, to enable them to implement secure and effective compliance strategies, specifically in relation to information security and vendor assurance programmes.

Steve presents at national and international conferences on cyber security, data classification and vendor assurance.