-
You are a part of data protection system at your organization
-
Check internal policies and procedures to get clarity on your duties
-
List all issues and doubts – do not hesitate to ask and consult
Although most duties rest on your employer, compliance with data protection law is not something dependent totally on top management. All the opposite – also lower pay grades can cause or prevent a serious data breach. You are a part of the organization and the organization as a whole works as one data protection system.
In this training, we talk about standards that every single employee should know about. These seemingly simple rules are often not followed, or even known. Many data protection projects end up with adopting documentation that has never been communicated to most employees.
But if there was a data protection project, your organization most likely has documentation, has run a training or implemented awareness-raising. Get back to those products and find the most current version.
Under internal regulations, you can have additional roles on data protection: for instance a process owner, an asset owner, a contact point or a person obliged to follow specific security rules (e.g. on use of private equipment for business purposes, to work from home etc.). You can also become a data protection officer, if such duties do not conflict with your other tasks.
No matter what your role is, list all the issues where you lack clarity on how to protect data in daily work. Send those questions to a person responsible for privacy, your superior or even top management – not just to make sure you are doing good job, but perhaps to help other staff members get their answers. Raising some issues may help increase data protection level and your confidence, so do not hesitate to ask.
Next: GDPR staff training 9/17 – why the need to know principle is so important?
Table of contents:
GDPR staff training 1/17 – preview
GDPR staff training 2/17 – how do you approach data protection right now?
GDPR staff training 3/17 – why protect data at all?
GDPR staff training 4/17 – what are personal data?
GDPR staff training 5/17 – what is personal data processing?
GDPR staff training 6/17 – who processes personal data?
GDPR staff training 7/17 – how personal data should be processed?
GDPR staff training 8/17 – what are your roles & responsibilities?
GDPR staff training 9/17 – why the need to know principle is so important?
GDPR staff training 10/17 – what difference can you make?
GDPR staff training 11/17 – how do you approach data protection right now?
GDPR staff training 12/17 – why provide information on data processing?
GDPR staff training 13/17 – what is the sense of consents to data processing?
GDPR staff training 14/17 – what to include in and how to apply contracts?
GDPR staff training 15/17 – what to include in & how to apply contracts?
GDPR staff training 16/17 – how to handle data subject requests?
GDPR staff training 17/17 – wrap-up
Self-implement GDPR in 16 steps:
Complete data protection system – A-Z course & templates
