INTRODUCTION TO PRIVACY PROGRAM MANAGEMENT
Identifies privacy program management responsibilities and describes the role of accountability in privacy program management.
PRIVACY GOVERNANCE
Defines and differentiates between types of data-including personal, anonymous, pseudo-anonymous and special categories.
APPLICABLE LAWS AND REGULATIONS
Discusses the regulatory environment, common elements across jurisdictions and strategies for aligning compliance with organizational strategy.
DATA ASSESSMENTS
Relates practical processes for creating and using data inventories/maps, gap analyses, privacy assessments, privacy impact assessments/data protection impact assessments and vendor assessments.
POLICIES
Describes common types of privacy-related policies, outlines components and offers strategies for implementation.
DATA SUBJECT RIGHTS
Discusses operational considerations for communicating and ensuring data subject rights, including privacy notice, choice and consent, access and rectification, data portability, and erasure and the right to be forgotten.
TRAINING AND AWARENESS
Outlines strategies for developing and implementing privacy training and awareness programs.
PROTECTING PERSONAL INFORMATION
Examines a holistic approach to protecting personal information through privacy by design.
DATA BREACH INCIDENT PLANS
Provides guidance on planning for and responding to a data security incident or breach.
MEASURING, MONITORING AND AUDITING PROGRAM PERFORMANCE
Relates common practices for monitoring, measuring, analyzing and auditing privacy program performance.