Presentation is loading. Please wait.

Presentation is loading. Please wait.

Www.informationpolicycentre.com 1. The role of Privacy Risk Framework and Risk-Based Approach in Delivering Effective Privacy Compliance Bojana Bellamy.

Published byJonah Lynch Modified over 8 years ago

Similar presentations

Presentation on theme: "Www.informationpolicycentre.com 1. The role of Privacy Risk Framework and Risk-Based Approach in Delivering Effective Privacy Compliance Bojana Bellamy."— Presentation transcript:

1 www.informationpolicycentre.com 1

2 The role of Privacy Risk Framework and Risk-Based Approach in Delivering Effective Privacy Compliance Bojana Bellamy International Privacy Commissioners’ Conference, Mauritius October 2014

3 www.informationpolicycentre.com 3 Why is Privacy Risk “In”? It has always been “in”, but with a different focus – Risk to organisations v. Risk to individuals (tangible and non-tangible harms /negative impact from data processing) Modern information age requires an evolved interpretation and implementation of privacy principles and innovative models of co-regulation and compliance The need to translate abstract goals of privacy and fundamental rights into more understandable, concrete and implementable steps to non-experts Risk-based approach does not replace existing law, privacy principles, accountability and regulatory supervision, but calibrates compliance – based on context, severity, likelihood Risk assessment is an increasing legal requirement and an element of organisational accountability

4 www.informationpolicycentre.com 4 Benefits of a Risk-based Approach to Privacy Effectiveness Organisations Prioritisation; predictability; ROI in compliance; protection of reputation and shareholder value DP regulators Prioritisation in oversight, enforcement, sanction Law and policy makers Smart regulation = calibrated and context driven; outcome based; technology neutral IndividualsReal protection Society Enables economic growth, societal benefits and protection of fundamental rights Prospects to improve global interoperability by creating common expectations, common best practices and common outcomes

5 www.informationpolicycentre.com 5 Organisational Accountability and Privacy Management Program Accountability and Effective Compliance Leadership & Oversight Risk Assessment Policies & Procedures Privacy by Design Training & Communication Verification and Audits Response and Enforcement

6 www.informationpolicycentre.com 6 Risk Assessment Calibrates Privacy Program and Compliance Risk Assessment At program level Determines the program and the elements Periodic program assessment v. internal and external risks Adjusting elements of the program At element and requirement level New product, service, technology (PIA, PbD) Legitimate Interest Processing SecurityData Breach

Download ppt "Www.informationpolicycentre.com 1. The role of Privacy Risk Framework and Risk-Based Approach in Delivering Effective Privacy Compliance Bojana Bellamy."

Similar presentations

Module N° 3 – ICAO SARPs related to safety management

Module N° 3 – ICAO SARPs related to safety management
Organizational Governance

Organizational Governance
Internal Control–Integrated Framework

Internal Control–Integrated Framework
Regulators’ Code July 2014. Regulators’ Code A statutory Code Came into effect in April 2014, replacing the Regulators’ Compliance Code All local authorities.

Regulators’ Code July Regulators’ Code A statutory Code Came into effect in April 2014, replacing the Regulators’ Compliance Code All local authorities.
PP4SD & Science Council Workshop 27th November 2006 Skills for Sustainability. Skills Needs: An Employers perspective Richard Howell Sustainable Development.

PP4SD & Science Council Workshop 27th November 2006 Skills for Sustainability. Skills Needs: An Employers perspective Richard Howell Sustainable Development.
Big Data - Ethical Data Use Kimberlin Cranford. Ethical Use in the Era of Big Data  Landscape has Changed  Attitudes about Big Data  PII, Anonymous,

Big Data - Ethical Data Use Kimberlin Cranford. Ethical Use in the Era of Big Data  Landscape has Changed  Attitudes about Big Data  PII, Anonymous,
Www.ethics.qld.gov.au SES Ethics Workshop. www.ethics.qld.gov.au Compliance or Culture How to institutionalise ethics in public administration.

SES Ethics Workshop. Compliance or Culture How to institutionalise ethics in public administration.
Building trust, consumer protection & TTIP Johannes Kleis IMCO/INTA joint public hearing European Parliament, Brussels 24 February 2015.

Building trust, consumer protection & TTIP Johannes Kleis IMCO/INTA joint public hearing European Parliament, Brussels 24 February 2015.
Regulators’ Compliance Code Zoë Dayan Secondee Ministry of Economy, Lithuania.

Regulators’ Compliance Code Zoë Dayan Secondee Ministry of Economy, Lithuania.
Audit Committee in Albania Legal framework Law 9226 /2006 “On banks in Republic of Albania” Law 9901/2008 “On entrepreneurs and commercial companies” Corporate.

Audit Committee in Albania Legal framework Law 9226 /2006 “On banks in Republic of Albania” Law 9901/2008 “On entrepreneurs and commercial companies” Corporate.
Big Data and data protection

Big Data and data protection
© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Privacy Management for a Global Enterprise.

© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Privacy Management for a Global Enterprise.
Environmental Management Systems An Overview With Practical Applications.

Environmental Management Systems An Overview With Practical Applications.
Overview and Introduction

Overview and Introduction
Internal Control and Internal Audit

Internal Control and Internal Audit
Session 3 - Plenary on implementing Principle 1 on an Explicit Policy on Regulatory Quality, Principle 3 on Regulatory Oversight, and Principle 6 on Reviewing.

Session 3 - Plenary on implementing Principle 1 on an Explicit Policy on Regulatory Quality, Principle 3 on Regulatory Oversight, and Principle 6 on Reviewing.
Global Data Privacy Law and Practice - Looking Around the Corners Bojana Bellamy, President, Centre for Information Policy Leadership NIST, December 2014.

Global Data Privacy Law and Practice - Looking Around the Corners Bojana Bellamy, President, Centre for Information Policy Leadership NIST, December 2014.
1 CHCOHS312A Follow safety procedures for direct care work.

1 CHCOHS312A Follow safety procedures for direct care work.
ICAO EUR HLSC Preparatory Seminar

ICAO EUR HLSC Preparatory Seminar
Lecture at the Graduate School of Business – UCT Governance – a practical perspective 4 November 2010 Maria Ramos 1.

Lecture at the Graduate School of Business – UCT Governance – a practical perspective 4 November 2010 Maria Ramos 1.

Similar presentations

Ads by Google