What is Privacy Governance?
Privacy Governance is the sum of everything you do to be compliant with your Privacy obligations in GDPR, other laws, and your contractual obligations.
Typical key components of your Privacy Governance will be;
- senior leadership and organisational clarity on the strategic and daily ownership of Privacy at your organisation,
- the Privacy framework you use to establish your obligations, your data map, your gaps, and to guide remediation, for example Keepabl’s software is a framework against UK and EU GDPR,
- the policies and procedures that reflect and inform what you do with personal data,
- the records, reports and KPIs you create to implement and manage the Privacy framework, for example your data map itself, the Article 30 Records of Processing (or ‘RoPA’), your Breach Log and more, which can be instantly created in the right software,
- the training programme you run to give everyone ‘All Hands’ training, then particular training for particular teams, and
- the tactical proof that you’re operating in accordance with the framework, such as DPIAs and processor agreements.
What about the Brexit Reforms?
In our view, the current draft Bill does not make compliance easier, nor does it lessen the need for Privacy Governance. If anything it makes it worse. Keepabl has published a simple side-by-side guide to the proposed changes regarding RoPAs, DPOs, DPIAs and DSRs. And Keepabl carried out a survey on LinkedIn, answered mostly by Privacy pros on what they thought the impact of the Bill will be in its first published form.
Only 1 in 5 thought Privacy compliance will be easier. Almost twice as many thought it will be harder.
How we help
Robert is expert at implementing appropriate Privacy Governance, tailored for your organisation to manage risk, meet obligations and create the confidence and proof to display to stakeholders.
See all our Services
