Cyber Threat Intelligence and GDPR will be spotlighted at a workshop held by Bertin IT in collaboration with Olivier Iteanu, a lawyer specialized in digital law, at Assises de la Sécurité et des Systèmes d’Information – an information security and systems trade fair – in Monaco from October 10 to 13.

The General Data Protection Regulation which came into force on May 25, this year, laid down the law for the entire digital economy. Caught between imagination and reality, firms find hard to see the true picture and sometimes give way to panic. “The GDPR should be considered more calmly,” recommends Mr. Olivier Iteanu, an attorney at Paris Appeal Court and honorary president of Internet Society France. This digital law specialist has heard innumerable stories of panic-stricken behavior triggered by the new regulation. Some firms even wondered whether they should delete their staff registers! As the heart of their worries, it often thought that the GDPR boils down to obtaining users’ consent for the processing of their personal data. But “that isn’t the only legal criterion,” points out Mr. Iteanu. “It’s just one of six.(1)

In fact, the Regulation does allow for the case of processing without prior consent on the grounds of the “legitimate interests” of the data controller. This notably covers the cyber threat intelligence (CTI) operations where searches for data breaches and fraudulent activity threatening the firm’s assets may justify recourse to those steps. Care should be taken, however, as the legal provisions do not define any criteria for those “legitimate interests”.

So what does all this really mean in practice? What are the red lines we mustn’t overstep? Answers will be provided on the basis of use cases presented by Marc Lionti, Director of CTI Services at Bertin IT and explanations from Mr. Olivier Iteanu.

Time and place: Friday, 12 October 2018
from 11 to 11.45 a.m. in the Bosio 2 room

You will also find Bertin IT on stand number 4 in the Hexatrust area.

(1)The other five legal criteria are necessity for the performance of a contract, legal obligation, vital interests, legitimate interest and general interest.
(2) ICANN is the world authority for the management of internet domain addresses and names, based in California, USA.

M. Iteanu
M. IteanuAttorney at Paris Appeal Court and honorary president of Internet Society France
Attorney at Paris Court of Appeal since 1989 and lecturer at the University of Paris I Sorbonne (Master 2 digital law). Olivier Iteanu authored the first book on French law and the Internet, entitled Internet et le Droit, published in 1996 and four other books. The most recent,
When Digital Défie le Droit, published in 2016, won the jury’s special prize in the FIC 2017 awards. He is also vice-president of the Hexatrust & Cloud Confidence association, board member and general secretary of Eurocloud France, and honorary president of the French section of the Internet Society (ISOC France), having been its president for three years. He was also appointed by the Internet Corporation for
Assigned Names and Numbers (ICANN)(2) as a member of the At Large Membership study committee and one of the two European representatives on that committee.

Marc LIONTIDirector of CTI services
Marc Lionti has been Director of Professional Services at Bertin IT for two years. He supervises and develops an open-source cyber threat intelligence service offering for businesses and administrations. After graduating from engineering school – Ecole des Mines de Paris – in 1988, he began his career as a VLSI process engineer and industrial investment manager at IBM. He then became Director of Professional Services for NetTest NQS (Network Quality of Services), before founding and managing H5 Audits, a French company specializing in the monitoring of corporate IP LAN and WAN networks.


Stéphanie BLANCHET
• Marketing Director

Frédérique VIGEZZI
• Agence de Presse Gootenberg

Download the press realeased