| |
Managing a Privacy Governance Program
Rebecca Herold
Privacy and trust are essential to maintain good relationships with customers, employees and business partners.
It is also necessary to address privacy issues to comply with a growing number of privacy regulations
worldwide. Privacy encompasses how business must be conducted, the communications made with customers
and consumers, and the technology that enables business processes. Addressing privacy touches all facets of an
organization, including business operations, websites and services, back-end systems and databases, communications
with third parties, customers and service providers, and legacy systems. An effective privacy governance
program will not only make your customers happier, but it will also mitigate your exposure to regulatory noncompliance,
lawsuits, bad publicity and government investigations.
This workshop will address these issues, explain practical steps for structuring an effective privacy governance
program based on a privacy impact assessment, engage participants in case studies to help reinforce the
concepts, and create action plans that apply to your own organizations that you can take back to the office and
utilize. Participants will leave with a better understanding of privacy implications and impacts, as well as with
practical steps to take to integrate privacy and related regulatory requirements into your business plans.
| Day 1 | Day 2 |
|
Major U.S. privacy-related laws and regulations overview (HIPAA, GLBA, COPPA, etc.)
International privacy laws and related business issues (EU Data Protection Directive, PIPEDA, OECD, etc.)
How to perform a Privacy Impact Assessment (PIA)
Customer relationship management and privacy
Building a Personally Identifiable Information (PII) inventory
|
Customer privacy policies
Employee privacy policies
Privacy awareness and training strategies
Building privacy into business processes and applications
Privacy tools (privacy seals, cryptography, P3P, EPAL, etc.)
Privacy resources (URLs, books, organizations)
|
You Will Learn:
- Significant privacy-related U.S. laws that impact business
- Significant privacy-related international laws that impact business
- Sample privacy noncompliance litigation cases
- Chief Privacy Officer qualities and goals
- How to perform a Privacy Impact Assessment
- When to use Privacy Enhancing Tools (PETs)
- How to avoid privacy-inhibiting technology
- Privacy awareness and training methods
|
You Will Leave With:
- List of U.S. privacy-related laws and brief description of each
- List of international privacy-related laws and a brief description of each
- Privacy Impact Assessment checklist
- Privacy terminology glossary
- Sample privacy policies
- Privacy action plans for your organization
- Privacy awareness and training materials
- Chief Privacy Officer job description
- Copy of all workshop slides
|
|
|
