Privacy Impact Assessments Made Easier



Most organisations will by now have updated their data protection policies to reflect and meet the requirements of the GDPR.

unfortunately the sheer size of the potential fines and penalties means no UK company or organisation can afford to take the GDPR lightly.  Data Protection can no longer be a write and forget policy or a tick box activity privacy will have to be embedded into every policy, procedure, practice or project. 

Existing activities need to be reviewed against your new data protection and privacy policies and every new activity, be it policy, procedure, practice or project will need to scrutinised for potential privacy breach at every stage. 

If not handled correctly this will be a huge task.   Consider for example staff use of mobile phones and the potential for data breach. Do you even know where the data on the phones is stored ?  does the phone automatically back up personal data such as email, sms, voicemails, pictures etc to the phone provider, google, microsoft ?  what about the apps installed do they pose a risk, what about location data ? 

Staff use of social media ? is this allowed ? do you have policies in place to control it? how big a risk does it pose for data protection and privacy breach@ do you even know what your staff are posting to social media? 

Robust Data Protection or Privacy Impact Assessments (#PIAs #PIA) are a highly effective way to help identify and close potential areas of risk.  They should be considered an essential tool to help ensure you meet the requirements of the #GDPR and #ePrivacy regulations.

Additionally annual refresher training on data protection, privacy impact assessments and staff use of social media at work should be considered. 

We can dove tail our training and support to your policies and procedures. Our training is for all sectors and for managers and staff at all levels

Our workshops are fast paced, participative and fun.  The get the message across in a way that every one can understand and make a potential boring subjects come alive.   For more information read the course overviews via the links below or call Ian Hirst on 01623 345 707 for more information on how we can help you. 

Data Protection, GDPR and ePrivacy Explained

Privacy Impact Assessments Made Easier

Use of Social Media at Work - Rights and Responsibilities


#hr #humanresources #dataprotection #privacy


Comments

Post a Comment

Popular posts from this blog

Employee Rep Training - Great Feedback

Excellent, well delivered, good interaction, very interesting, delivery and knowledge excellent, very good, are just a few of the comments made by delegates on one of our employee rep training courses this week. Find out more about our employee rep course offer HERE >>>> #employeereps #employeerepresentation #unions #employeerepresentatives
Read more

Working with Volunteers - 10 Tips for Success

Image
WORKING WITH VOLUNTEERS - 10 TIPS for SUCCESS With the recent requests for volunteers to help in the fight against the #Corvid19 #Coronavirus and provide support to those in need locally, we thought it might be useful to highlight the insight and feedback we have gained through our #training courses and workshops on working with #volunteers. What made it a Good Experience for Volunteers? ·          Felt part of Workforce / Project ·          Not exploited – no discrimination ·          Matched my   skills to the opportunity ·          Valued –   felt welcomed from the start ·          Took account of my interests ·          Offered opportunities to further my interests ·          Good information / communications ·          Structured programme – not drifting What made it Bad Experience for Volunteers? ·          Lengthy time gap between applying and doing! ·          Formal processes were tedious and put people
Read more

Using Social Media at Work - Staff rights and responsibilities

Why you need a Policy NOW ! Two recent Employment Tribunal cases, one involving Face book and another one with Twitter have one clear message in common for modern employers – the urgent need to have clear up to date, precise policies and procedures in place about the use of Social Media at work. Both the cases profiled below could have been lost by the employer had they not previously taken proactive policy steps to keep up to date with an ever changing scene. Face Book The Face Book case arose from an unfair dismissal claim. The Employment Tribunal held that a pub manager was fairly dismissed for gross misconduct after she made inappropriate comments on Face book about two customers who had verbally abused and threatened her.   The Face Book chat took place while the employee was at work and did not reflect her upset or anger at the customers, but appeared to be a joke between friends.  However, a wider audience was able to look at her Face Book page, including r
Read more