DPAAL2: DEVELOP AND ENHANCE COMPLIANCE PROCESSES IN BUSINESS OPERATIONS AND DATA PROTECTION REQUIREMENTS
DEVELOP AND ENHANCE COMPLIANCE PROCESSES IN BUSINESS OPERATIONS AND DATA PROTECTION REQUIREMENTS
Course Duration
Mode of Assessment
Learners will be required to undergo assessment, consisting of a written test and oral questioning. Both will be conducted in the classroom.
Who Should Attend
- Targetted at Data Protection Officers
- Staff who formulate and review data protection policies
- Staff who develop data-protection management programmes
Course Overview
Learners will learn how to develop and enhance compliance processes based on an evaluation of gaps in business operations and data protection requirements. They will also learn how to propose solutions to identified areas of improvement and work with stakeholders to ensure those gaps are remedied.
Courses Schedule
Next available schedule
Course Objectives
You will have knowledge of the following:
- Elements and considerations in development of compliance processes
- Evolving statutory and regulatory standards
- Application and relevance of external standards to organisation’s context
- Process gap analysis for business operations and data protection requirements
- Data protection management programme
- (DPMP) and Data Protection Trustmark to guide the conduct / audit checks on the business functions
- DPTM Certification Controls used for the assessement
- Methodology to gather and evaluate information during the Assessment Phase and Certification Process
You will be able to perform the following:
- Develop DP compliance processes in accordance with the organisations strategy and internal and external guidelines
- Evaluate DP audit results to identify reasons for gaps or non-compliance in business operations and DP requirements
- Recommend enhancements to DP compliance processes to strengthen the organisations internal controls
- Provide guidance in the formulation of audit checklist incorporating DP compliance
- Evaluate root cases and potential organizational impact or risks of non-compliance to DP so as to prioritise the areas that require further enhancement
- Prepare and propose an action plan on DPTM certification for managements support, including the resources needed
- Coordinate and work with respective departments to carrty out an assessment of the organisations readiness for the DPTM certification using the DPTM certification checklist
- Work with external third party to review the organisations personal data protection policies and practices so as to ensure SOs are robust and comparable to industry standards
- Propose remediation recommendations to rectify all non-complance areas identified at the self assessment/assessment phase
Pre-requisites
These are the admission requirements:
- Learner has to be competent in Fundamentals of Personal Data Protection Act or its equivalent module
- Understand relevant organisational strategies, objectives, culture, policies, processes and products / services
- Have information gathering skills to gather and collate necessary data
- Have analytical skills to assess policies and procedures
- Have business writing skills to prepare management report
- Have interpersonal and communication skills to interact with relevant stakeholders
- Have facilitation skills to ask the right questions to elicit necessary information
- Be aware of compliance requirements of organisation
Course Outline
- Elements and considerations in development of compliance processes
- Evolving statutory and regulatory standards
- Application and relevance of external standards to organisations context
- Process gap analysis for business operations and data protection requirements
Conduct risk assessment and risk ranking
- Understanding and developing a Data Protection Management Plan
- Data Protection Trustmark to guide the conduct/audit checks on business functions
- DPTM Certification Controls used for the assessment
1) Governance and Transparency
- Appropriate policies and practices
- Openness
- Internal communication and training
2) Management of personal data
- Appropriate purpose
- Appropriate notification
- Appropriate consent
- Appropriate use and disclosure
- Compliant overseas transfer
3) Care for personal data
- Appropriate protection
- Appropriate retention and disposal
- Accurate and complete records
4) Individuals rights
- Effect of withdrawal of consent
- Provide access and correction rights
Methodology to gather and evaluate information during the Assessment Phase and Certification process
- Develop and audit plan
- What to audit
- When to audit
- Who to conduct audit
Reference:
- Advisory Guidelines on Key Concepts in the Personal Data Protection Act
- Guide to Developing a Data Protection Management Programme
- PDPA Assessment Tool for Organisations
- DPTM Information Kit
- DPTM Checklist
Fees and Funding
Price
Price to be advised.
Batch ID | Course Period | Course Title | Funding Available |
Duration (Hours) |
Session (Hours) |
Venue | Available Seats |
Online Payment |
---|
What Others Also Enrolled In
FUNDAMENTALS OF THE PERSONAL DATA PROTECTION ACT (2020) (SYNCHRONOUS E-LEARNING)
View detailDEVELOP AND IMPLEMENT ORGANISATIONAL-LEVEL DATA GOVERNANCE STRATEGY AND STRUCTURE
View detailDEVELOP AND ENHANCE COMPLIANCE PROCESSES IN BUSINESS OPERATIONS AND DATA PROTECTION REQUIREMENTS
View detailMONITOR AND ASSESS ORGANISATION’S PERSONAL DATA PROTECTION POLICIES AND PRACTICES
View detailDEVELOP AND IMPLEMENT A DATA PROTECTION MANAGEMENT PROGRAMME (DPMP)
View detailCERTIFIED IN THE GOVERNANCE OF ENTERPRISE IT (CGEIT) (SF) (SYNCHRONOUS E-LEARNING)
View detailIDENTIFY RISKS ASSOCIATED WITH COLLECTION, USE, DISCLOSURE AND STORAGE OF PERSONAL DATA
View detailASSESS RISKS WITHIN A DEFINED FUNCTIONAL AREA, AND DEVELOP COUNTERMEASURES AND CONTINGENCY PLANS
View detail