Presentation is loading. Please wait.

Presentation is loading. Please wait.

Employee privacy in a global company Sandra Kelman Privacy Manager (Asia Pacific) Privacy Issues Forum 30 March 2006.

Published byMary Ellis Modified over 8 years ago

Similar presentations

Presentation on theme: "Employee privacy in a global company Sandra Kelman Privacy Manager (Asia Pacific) Privacy Issues Forum 30 March 2006."— Presentation transcript:

1 Employee privacy in a global company Sandra Kelman Privacy Manager (Asia Pacific) Privacy Issues Forum 30 March 2006

2 Context BP is of one of the world's largest energy companies, providing its customers with fuel for transportation, energy for heat and light, retail services and petrochemicals products for everyday items Over 100,000 people work in 100 countries across six continents Exploration activities cover 26 countries 27,800 service stations serve around 13 million customers each day “Mega data centres” in Singapore, Houston & London

3 Structure Digital Communications & Technology Digital Security Strategy – Compliance (Privacy & Data Protection) Compliance Manager 4 Privacy Managers (UK & Western Europe, Germany & Eastern Europe, Americas, MoW) Data Privacy Co-ordinator in each country (Privacy Officer)

4 Foundation Documents Privacy & Data Protection Policy & Security of Information Policy International Intra-Group Data Protection Agreement Codes of Practice (applied globally) Fair Processing Statements Employee Code of Conduct

5 Privacy & Data Protection Policy Applies where no local legislation Ties in with IGA Based on EU Data Protection Directive Principles for information processing Rights and responsibilities On Intranet – provided in induction phase Security of Information Policy Retention Guidelines/Schedules

6 International Intra-Group Data Protection Agreement (IGA) Signed off by Country President Permits individual BP operations to meet legislative obligations where data transfers are regulated Allows trans-border data flows via gaining the consent of individuals through the issue of a Fair Processing Statement (FPS) Commits businesses to respect relevant local legislation Creates a common business standard through implementing the Global Data Protection Policy. Implementation Designate a Country Data Protection Coordinator (full or part- time) Education & Support Compliance through monitoring

7 Codes Of Practice CCTV Consistent application Model signage 40 pages Employment UK model Suggested standards 91 pages (plus supplementary guidance)!

8 Fair Processing Statements Information for employees about information collected, held and its uses Authority to process information as described Explanation of data held in HR systems Third Party Processor’s privacy notice (UK) Campaign to issue one to each BP employee – new and existing!

9 Code of Conduct “ Our Commitment to Integrity” Specifically refers to privacy –“…there should be no gap between what we say and what we do…” –Misuse of information –Privacy and employee confidentiality –Data quality –Protecting BP’s assets (includes information) –Intellectual property –Security

10 Privacy Quiz

11 Privacy Quiz 2

12 Privacy Quiz 3

13 Privacy Compliance Audits Use UK Information Commissioner’s methodology Adapted for local legislation or BP Privacy Policy “Heavy” and “Light” Monitor privacy compliance at that time Interviews with staff – functions or processes Audit report – non-compliances and observations Risk Register – checks follow up actions

14

Download ppt "Employee privacy in a global company Sandra Kelman Privacy Manager (Asia Pacific) Privacy Issues Forum 30 March 2006."

Similar presentations

ETHICS AS CULTURE KEY ELEMENTS Stage One (primary) – Key Elements of a Culture of Ethics Appoint an ethics program manager to oversee your ethics-related.

ETHICS AS CULTURE KEY ELEMENTS Stage One (primary) – Key Elements of a Culture of Ethics Appoint an ethics program manager to oversee your ethics-related.
EU Privacy Directive. What is a directive? A piece of European legislation, passed by bureaucrats, addressed to member states Member states must ensure.

EU Privacy Directive. What is a directive? A piece of European legislation, passed by bureaucrats, addressed to member states Member states must ensure.
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY.

29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY.
Company Code of Conduct. 1.Commercial sustainability by caring for our stakeholders Profits for Sustainable Growth Our Stakeholders: –Customers, trade.

Company Code of Conduct. 1.Commercial sustainability by caring for our stakeholders Profits for Sustainable Growth Our Stakeholders: –Customers, trade.
Sharing Know-how at BP AMOCO Hong Qi Goriola Dawodu, Diomede Richard.

Sharing Know-how at BP AMOCO Hong Qi Goriola Dawodu, Diomede Richard.
Hong Qi Goriola Dawodu Diomede Richard. Today’s BP BP is one of the world's largest energy companies, providing its customers with fuel for transportation,

Hong Qi Goriola Dawodu Diomede Richard. Today’s BP BP is one of the world's largest energy companies, providing its customers with fuel for transportation,
International Employment – latest Digital Employment issues Melanie Lane and Karine Audouze.

International Employment – latest Digital Employment issues Melanie Lane and Karine Audouze.
IS BIG DATA GIVING YOU A BIG HEADACHE? Risk Reduction - Transactional, International and Liability Issues Oregon State Bar Corporate Counsel Section Fall.

IS BIG DATA GIVING YOU A BIG HEADACHE? Risk Reduction - Transactional, International and Liability Issues Oregon State Bar Corporate Counsel Section Fall.
Discovery – The Next Generation!: Business Context of Risk Presentation to the North London Branch British Computer Society 19 March, 2008 Dr. Victoria.

Discovery – The Next Generation!: Business Context of Risk Presentation to the North London Branch British Computer Society 19 March, 2008 Dr. Victoria.
ICS 417: The ethics of ICT 4.2 The Ethics of Information and Communication Technologies (ICT) in Business by Simon Rogerson IMIS Journal May 1998.

ICS 417: The ethics of ICT 4.2 The Ethics of Information and Communication Technologies (ICT) in Business by Simon Rogerson IMIS Journal May 1998.
Global Information Systems

Global Information Systems
BP Integrated Supply and Trading Indiana University

BP Integrated Supply and Trading Indiana University
BP Integrated Supply and Trading Indiana University

BP Integrated Supply and Trading Indiana University
The role of the Office of the Privacy Commissioner in telecommunications Andrew Solomon Director, Policy.

The role of the Office of the Privacy Commissioner in telecommunications Andrew Solomon Director, Policy.
© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 8: Developing an Effective Ethics Program.

© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 8: Developing an Effective Ethics Program.
Transborder dataflows Flow of information across national borders Much of this data involves personal information.

Transborder dataflows Flow of information across national borders Much of this data involves personal information.
© IBE....doing business ethically makes for better business…. Business Ethics: the essential components Philippa Foster Back OBE Director Institute of.

© IBE....doing business ethically makes for better business…. Business Ethics: the essential components Philippa Foster Back OBE Director Institute of.
Data Protection Recruitment Process

Data Protection Recruitment Process
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
1 IQCS AGM November 2009 IQCS Data Protection Workshop Scenarios / Answers 12 th November 2009.

1 IQCS AGM November 2009 IQCS Data Protection Workshop Scenarios / Answers 12 th November 2009.

Similar presentations

Ads by Google