Creating a Data Privacy Plan: In today’s digital world, concerns about personal data privacy are at the top of consumer’s minds. And with the advent of the EU’s new GDPR regulation, organizations need to take data privacy seriously to avoid large fines and a tarnished reputation. This puts it in every business’s best interest to adopt good privacy practices.
Writing a data privacy plan is one of the best ways to kick-start compliance with the GDPR and other privacy laws by outlining policies and procedures that will guide employees towards good privacy practices. It is also an important record to keep. Learn how to create a data privacy plan for your organization in this one-day GDPR Readiness: Creating a Data Privacy Plan course.
Session One: Course Overview
Learning Objectives
Pre-Assignment
Pre-Course Assessment
Session Two: Writing a Data Privacy Plan
Elements of the Plan
Additional Tips
Session Three: Privacy Awareness
What is Data Protection?
What is Data Privacy?
Why is Data Privacy So Important Anyway?
What is the GDPR?
Session Four: Data Mapping
The First Step
Tips to Keep in Mind
Case Study Data Map
Making Connections
Session Five: Information Request Procedure
Information Request Procedure
Making Connections
Sample Information Request Procedure
Session Six: Internal Data Procedures
Internal Data Procedures
Making Connections
Sample Internal Data Procedure
Session Seven: Data Security Policy
Data Security Policy
Making Connections
Sample Data Security Policy
Session Eight: Personal Data Protection Policy
The Cornerstone Document
Contents of the Personal Data Protection Policy
Responsibilities for Privacy
Making Connections
Sample Personal Data Protection Policy
Session Nine: Client Privacy Policy
Privacy Policy
Making Connections
Sample Client Privacy Policy
Session Ten: Data Breach Procedure
Data Breach Procedure
Making Connections
Sample Data Breach Procedure
Session Eleven: Training
Privacy Training
Awareness Training for All Employees
Specific Policy Training
Making Connections
Session Twelve: Other Necessary Pieces
Additional Pieces
Data Processing Agreement or Data Processing Addendum (DPA)
Data Processing Impact Assessment (DPIA)
Supervising Authorities
Sample Supervisory Authorities in the European Union
Personal Action Plan
Summary
Recommended Reading List
Post-Course Assessment
Pre- and Post-Course Assessment Answer Key
Pre-Course Assessment Answer Key
Post-Course Assessment Answer Key
Assignment Answer Key
Session 11