What Every Business Needs to Know in 2026 — covering your legal obligations, high-risk exposure areas, and practical steps to build a defensible compliance foundation across five Caribbean jurisdictions.
Hosted by Rishi Maharaj, CIPM · CIPP/E — Privicy Advisory Services Limited
Places are limited. Register now to secure your spot and receive the Zoom session link directly to your inbox.
Date
Tuesday, 29 April 2026
Time
10:00 AM AST · 9:00 AM EST
Format
Live on Zoom · Free
After registering you will receive a confirmation email with the Zoom link and a calendar invite.
Session Agenda
A practical, Caribbean-first walkthrough of the data protection landscape — no theory overload, no generic GDPR slides. Built for Caribbean business reality.
01 — Landscape
Laws in force across T&T, Jamaica, Barbados, Cayman, and the Dutch Caribbean. What's changed, what's being enforced, and what's coming next.
02 — Obligations
Registration, lawful basis for processing, breach notification timelines, Data Protection Impact Assessments, and data subject rights — jurisdiction by jurisdiction.
03 — Risk
HR and employee data, customer marketing databases, cloud and third-party vendors, AI tools in the workplace — where businesses are most exposed right now.
04 — Foundation
The policies, procedures, and operational steps every business needs. Practical quick wins you can act on this week — without a large internal compliance team.
05 — Q&A
Open floor for your questions. All data protection and privacy questions welcome — specific to your jurisdiction, sector, or situation.
Is This For You?
This session is designed for anyone who handles personal data as part of their business — which is virtually every organisation in the Caribbean.
Business Owners & CEOs
Understand your liability and what it means if your organisation is found non-compliant.
Legal & Compliance Teams
A current, Caribbean-specific briefing on obligations across multiple jurisdictions.
HR Professionals
Employee data is high-risk territory. Know what lawful processing looks like for your workforce.
IT & Technology Teams
Vendor contracts, cloud platforms, and AI tools all carry data protection obligations.
Finance & Audit
Data protection is increasingly part of governance and enterprise risk frameworks.
Students & Academics
Caribbean-context privacy law is a growing professional field. Build your foundational knowledge.
Coverage
Unlike generic GDPR webinars, this session is built specifically for Caribbean law — covering the frameworks that actually apply to your business.
Trinidad & Tobago
Data Protection Act 2011
Commissioner actively investigating complaints. Enforcement is live.
Jamaica
Data Protection Act 2020
Mandatory registration and annual DPIAs for all data controllers.
Barbados
DPA Cap. 308D
Enforcement capacity building underway. Prepare now.
Cayman Islands
Data Protection Law 2017
Most mature enforcement regime in the Caribbean region.
Dutch Caribbean
GDPR via Dutch Kingdom
Highest compliance bar in the region. European-standard obligations apply.
Your Host
Rishi is the founder and principal consultant of Privicy Advisory Services Limited, a Caribbean-based data protection consultancy operating across Trinidad & Tobago, Jamaica, Barbados, the Cayman Islands, and the Dutch Caribbean.
He serves as DPO-as-a-Service for major regional organisations including Guardian Group, with a practice background spanning FOI policy development, public sector training, and multi-jurisdictional compliance advisory. He is also the Executive Director of the EquiGov Institute and the developer of the TR2UST Framework — the Caribbean's first proprietary data protection maturity model.
Rishi is currently building Assura — a Caribbean-first GRC SaaS platform designed to make enterprise-grade compliance accessible to regional organisations of all sizes.
You'll also receive a post-session resource pack including a compliance checklist, jurisdiction comparison guide, and a 15-minute consultation offer.
Register Now →