Compliance with South African POPI Acts
|
|
- Felicity Knight
- 6 years ago
- Views:
Transcription
1 Compliance with South African POPI Acts Ebook Developed by Virginia Hendricks
2 THE POPI ACT Ensuring that your organisation is abiding by both your own industry regulations and government legislation. Compliance entails 2
3 Compliance Compliance = Role of Top Management They are responsible for setting an organisation s direction and communicating priorities to employees and stakeholders. These include linking records management to the organisation s requirements and goals, and understanding the risks associated with inadequate records management. 3
4 Compliance Records Management Programme Sound records management exists within the same regulatory framework that requires and governs good governance, accountability and transparency. At The Document Warehouse we offer a range of Records Management and storage solutions. With secure storage and record solutions that keep our clients and their clients information secure, whether it's paper, electronic or data. The Document Warehouse prides itself on top notch barcoding techniques that safeguards you and your companies information. 4
5 Compliant with legislation? Being compliant with Legislation requires that: Organisations manage and control their records. From the time they are created to their eventual disposal or preservation of information. 5
6 Is Your Organisation Compliant With Legislation? Compliant Checklist Is your Records Management programme able to meet compliance requirements of security, regulations, principles and standards? Are your s and web pages managed as records? Compliant Checklist Can you find the right documents and records when you need them? Does workflow and business process work with documents and records management to help increase efficiency within your company? 6
7 Non- Compliance! Records Management is about attaining a records management benchmark of best practice i.e. - ISO Best Practice of a Records Management Programme Policies Procedures (SOP); Business Classification System/Naming Convention for files/records. Retention and disposal schedule for records; Continuous Records Management Training to all employees. 7
8 Your organisation cannot be compliant if your records are not being managed properly! Virginia Hendricks National Training Consultant The Document Warehouse Dedicated to service The Document Warehouse (TDW) is about helping organisations become compliant. We are passionate about managing your company records and are here to help you to manage your records management. 8
9 Protection of Personal Information Act 4 of 2013 Companies will soon be required to comply with the stringent Protection of Personal Information (POPI) Act. This is going to regulate how we handle, store and secure personal information. The POPI Act was signed into law during November 2013, commencement date will be announced later this year! However one should start implementing solutions now to avoid fines or prosecution. Disclaimer: Information shared and distributed relating to POPI is based on The Document Warehouse internal employees interpretation of the Act and information available in the public domain. The Document Warehouse does not profess this information to be a conclusive or comprehensive formal guide to POPI. People should at all times refer to the Act itself. 9
10 Who Must Comply? Personal information / entity, His or her or its Purpose of the Act Promote the protection of personal information Introduce certain conditions Establishment of an Information Regulator Perform certain duties and functions in terms of this Act and the promotion of Access to Information Act, Issuing of codes of conduct; Rights of persons regarding unsolicited electronic communications Regulate the flow of personal information across the borders of the Republic. 10
11 Purpose Of POPI POPI- brings the country in line with international laws on privacy. Data Protection Act 1998 (United Kingdom) Data Protection Directive (European Union) Data protection and privacy laws (Russia) Electronic Communications Privacy Act (United States) Personality rights Privacy Act of 1974 (United States) Privacy Act 1988 (Australian) Right to be forgotten Protection of Personal Information Act 4 of 2013 (SA) 11
12 8 Core Conditions To POPI 1. Accountability 2. Processing Limitations 3. Purpose Specifications 4. Further Processing 5. Information Quality 6. Openness 7. Security Safeguards 8. Data Subject Participation 12
13 1. Accountability 2. Processing Limitations Accountability Define the purpose of the information gathering and processing: Personal information must be collected for a specific, explicitly defined and lawful purpose that is related to a function or activity of the company concerned. Processing Limitations Take steps to notify the data subject: The individual whose information is being processed has the right to know this is being done and why. The data subject must be told the name and address of the company processing their information. In addition, he or she must be informed as to whether the provision of the information is voluntary or mandatory. The processing must be lawful Personal information may only be processed if it is adequate, relevant and not excessive given the purpose for which it is processed. 13
14 3. Purpose Specifications 4. Further Processing Purpose Specification Further Processing Personal information must not be retained any longer than is necessary personal information must be destroyed, deleted as soon as the purpose for collecting the information has been achieved. Limitation The rationale for any further processing: If information is received via a third party for further processing, this further processing must be compatible with the purpose for which the data was initially collected. 14
15 Information Quality Information must be complete and should never be misleading. At the same time information should be relevant and updated on a regular basis. All information must be accurate and credible at the time of acquiring it. This will ensure that quality information is collected, managed and stored correctly. 5. Information Quality 15
16 6. Openness 7. Security Safeguards Openness Audit the processes used to collect, record, store, disseminate and destroy personal information: Companies must ensure the integrity and safekeeping of personal information in their possession or under Security Safeguards Security measures on integrity and confidentiality of personal information by taking appropriate, reasonable technical and organisational measures to prevent loss of, damage to, access to, personal information. their control. They must take steps to prevent the information being lost or damaged, or unlawfully accessed. 16
17 8. Data Subject Participation Access Part A Access to personal information Correction of personal information Manner of Access Part B Process and Authorisation concerning data subject s Religious and philosophical beliefs Race or ethnic origin Trade union membership Political persuasion Health or sex life Criminal behaviour or biometric information. Part C Processing of information of children 17
18 Notify the information Protection Regulator: When the POPI is enacted and a Regulator established, organisations processing personal information will have to notify the Regulator about their actions. They will also have to notify the Regulator of any requests for information (PAIA) and or personal information. (POPI) 18
19 What happens if you don t comply? Suffer reputational damage Lose customers and fail to attract new ones Pay out millions in damages to a civil class action Be fined up to R10 million or face up to 10 years in jail This is serious, you need to take action now. Raise your Awareness Raise employees awareness 19
20 Is Your Business Compliant? Are you ready to implement the POPI act into your business, to safeguard your information and records? The Document Warehouse has the right solution for you Book your POPI Workshop with our training academy by calling us or visiting our website for more information. Lets help you get ready before it s too late. 20
21 The Document Warehouse South Africa's Professional Document Solution Leaders Since 1992 Our Team Are Ready To Assist You 21
Protection of Personal Information Policy (POPI)
PROTECTION OF PERSONAL INFORMATION POLICY 2016 Protection of Personal Information Policy (POPI) Objective The objective of this policy is to protect the information assets of Integrity Academy and its
More informationThe Protection of Personal Information (POPI) Act
Guidelines and Training Manual ANIMAL ANTI-CRUELTY LEAGUE JOHANNESBURG The Protection of Personal Information (POPI) Act as published in the Government Gazette Notice 37067 on 26 November 2013 This is
More informationGeneral Personal Data Protection Policy
General Personal Data Protection Policy Contents 1. Scope, Purpose and Users...4 2. Reference Documents...4 3. Definitions...5 4. Basic Principles Regarding Personal Data Processing...6 4.1 Lawfulness,
More informationVMS Software Ltd- Data Protection Privacy Policy
VMS Software Ltd- Data Protection Privacy Policy Introduction The purpose of this document is to provide a concise policy statement regarding the Data Protection obligations of VMS Software Ltd. This includes
More informationb. by a controller not established in EU, but in a place where Member State law applies by virtue of public international law.
Buzescu Ca>Romanian Business Law>Romanian Data Protection Laws 12. ROMANIAN DATA PROTECTION LEGAL REGIME Updated October 2018 The relevant Romanian data protection laws are: European Regulation no. 679
More informationGLOBAL DATA PRIVACY SNAPSHOT 2018: How does your organisation compare?
GLOBAL DATA PRIVACY SNAPSHOT 2018: How does your organisation compare? Introduction Data protection is rising on the agenda globally: the past year has seen China introduce the PRC Cybersecurity Law, the
More informationThis privacy notice applies to attendees, organisers and others involved in Merton College s conferences and events
This privacy notice applies to attendees, organisers and others involved in Merton College s conferences and events A summary of what this notice explains Merton College is committed to protecting the
More informationData Protection Policy
Data Protection Policy Contents 1. Purpose and scope... 2 2. Background... 2 3. Principles... 2 4. Aims and commitments... 3 5. Roles and responsibilities... 3 6. Breaches of data privacy legislation...
More informationTourettes Action Data Protection Policy
Tourettes Action Data Protection Policy Effective date: 01/01/2018 Review date: 01/01/2020 Approved: Suzanne Dobson, CEO Tourettes Action Author: Pippa McClounan, Office Manager Tourettes Action Version
More informationThis policy is a public document and has been prepared in light of National Privacy Principle 5, Openness.
PRIVACY POLICY This document relates to your personal information, collected by Biarri as part of the Subscriber sign up process and your use of Biarri services, and held by Biarri as part of our day-to-day
More informationPrivacy Notice (How we use school workforce information)
Privacy Notice (How we use school workforce information) We process personal data relating to those we employ to work at, or otherwise engage to work at, our school. This is for employment purposes to
More informationPREPARING YOUR ORGANISATION FOR THE GENERAL DATA PROTECTION REGULATION YOUR READINESS CHECKLIST DATA PROTECTION COMMISSIONER
PREPARING YOUR ORGANISATION FOR THE GENERAL DATA PROTECTION REGULATION YOUR READINESS CHECKLIST DATA PROTECTION COMMISSIONER 1 What will the GDPR mean for your business/organisation? On the 25 th May 2018,
More informationOrbit Recruitment Privacy Policy
Orbit Recruitment Privacy Policy Introduction Orbit are the controllers of the information ( personal data ) that we collect about you, our data subjects, which means we are responsible for how your data
More informationRAW MARKETING DATA PROTECTION POLICY
RAW MARKETING DATA PROTECTION POLICY Introduction We take your privacy very seriously and have updated our Privacy Statement in line with the upcoming GDPR regulation. Were absolutely committed to reflecting
More informationGUIDANCE NOTES DATA PRIVACY IMPACT ASSESSMENT
GUIDANCE NOTES DATA PRIVACY IMPACT ASSESSMENT A Data Privacy Impact Assessment (DPIA) helps the University to assess the necessity and proportionality of processing personal data. A DPIA will enable the
More informationInformation Asset Register IAR. Guidance for Schools
Information Asset Register IAR Guidance for Schools Contents 1. Introduction... 3 2. What is an Information Asset?... 4 3. What is an Information Asset Register?... 4 4. Why Do We Need an Information Asset
More informationData Protection Policy. UK Policy May 2018
UK Policy May 2018 5 & 7 Diamond Court, Opal Drive, Eastlake Park, Fox Milne, Milton Keynes MK15 0DU, T: 01908 396250, F: 01908 396251 www.cognitaschools.co.uk Registered in England Cognita Limited No
More informationCDMS Consulting Engineers Privacy Policy
CDMS Consulting Engineers Privacy Policy This Privacy Policy sets out the approach Design Engineering P t y L t d trading as CDMS Consulting Engineers (CDMS) will take in relation to the treatment of Personal
More informationHuman Resources. Data Protection Policy IMS HRD 012. Version: 1.00
Human Resources Data Protection Policy IMS HRD 012 Version: 1.00 Disclaimer While we do our best to ensure that the information contained in this document is accurate and up to date when it was printed
More informationData Protection Policy
Data Protection Policy This policy will be reviewed by the Trust Board three yearly or amended if there are any changes in legislation before that time. Date of last review: Autumn 2018 Date of next review:
More informationRecruitment Privacy Notice
Recruitment Privacy Notice Issued: 1 June 2018 Revised: N/A 1. What is this notice for? The Royal Academy of Dance (RAD) has prepared this notice to make sure that you have the information that you are
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY APRIL 2018 Attendance Policy and Procedures (Pupils) (P3/Policies) Updated January 2018 Page 1 of 11 Title Summary Purpose Operational Date April 2018 Next Review Date April 2019
More informationGDPR P4 Privacy Policy Statement & Guidance for Employees and External Providers
Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legitimate
More informationGENERAL DATA PROTECTION REGULATION Guidance Notes
GENERAL DATA PROTECTION REGULATION Guidance Notes What is the GDPR? Currently, the law on data protection requiring the handling of data which identifies people to be done in a fair way, is contained in
More informationFoundation trust membership and GDPR
05 April 2018 Foundation trust membership and GDPR In the last few weeks, we have received a number of enquiries from foundation trusts concerned about the implications of the new General Data Protection
More informationGetting ready for the new data protection laws A guide for small businesses, charities and voluntary organisations
Getting ready for the new data protection laws A guide for small businesses, charities and voluntary organisations Page 1 of 22 Your business and the new data protection laws Data protection and privacy
More informationBreakthrough Data Protection Policy Approved by Lead Organisation: November 2017 Next Review Date: November 2018
Breakthrough Data Protection Policy Approved by Lead Organisation: November 2017 Next Review Date: November 2018 Introduction The Partner organisations within the Breakthrough Programme need to collect
More informationBrasenose College Data Protection Policy Statement v1.2
Brasenose College Data Protection Policy Statement v1.2 1. Introduction All documents referred to in this policy can be found online at the address below: https://www.bnc.ox.ac.uk/privacypolicies 1.1 Background
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY Document Control History Title Data Protection Policy Version no. 1.0 Date of publication May 2018 Author(s) Amanda Cramb, HR Manager Next review date May 2021 Page 1 Introduction
More informationJob Title: Head of Retail Department: Income Generation
Job Title: Head of Retail Department: Income Generation Reports to: Director of Income Generation Salary: Compton Band 8A 37,020 to 49,055 per annum according to skills and experience Accountable to: Director
More informationDATA PROTECTION POLICY 2018
DATA PROTECTION POLICY 2018 Amesbury Baptist Church is committed to protecting all information that we handle about people we support and work with, and to respecting people s rights around how their information
More informationGet ready. A Guide to the General Data Protection Regulation (GDPR) elavon.ie
Get ready A Guide to the General Data Protection Regulation (GDPR) elavon.ie The General Data Protection Regulation (GDPR) will regulate the privacy and handling of the personal data of individuals in
More informationEDWARDS COMMERCIAL CLEANING SERVICES LTD and EDWARDS COMMERCIAL CLEANING (NORTH) LTD Data Protection Policy for Employees, Workers and Consultants
EDWARDS COMMERCIAL CLEANING SERVICES LTD and EDWARDS COMMERCIAL CLEANING (NORTH) LTD Data Protection Policy for Employees, Workers and Consultants 1 Overview Data Protection Policy for Employees, Workers
More informationGeneral Optical Council. Data Protection Policy
General Optical Council Data Protection Policy Authors: Lisa Sparkes Version: 1.2 Status: Live Date: September 2013 Review Date: September 2014 Location: Internet / Intranet Document History Version Date
More informationThe Society of St Stephen s House Site Security and Monitoring Privacy Notice
This privacy notice applies to data processing activities undertaken by The Society of St Stephen s House for security and monitoring relating to staff, students and visitors to College premises A summary
More informationPRIVACY NOTICE FOR JOB APPLICANTS
PRIVACY NOTICE FOR JOB APPLICANTS 1. General Information 1.1 Derby County Football Club are committed to protecting the privacy and security of your personal information. 1.2 Under data protection law,
More informationSouth African Statistical Quality Assessment Framework
South African Statistical Quality Assessment Framework 30 August 2011 National Statistics System Division 1 Overview Purpose Background Definition Statistics Act South African Statistical Assessment Framework
More informationHow employers should comply with GDPR
02 Mind your business Prepare for GDPR How employers should comply with GDPR Recommendations for employer compliance with GDPR The scope of the impact of the GDPR cannot be overstated. The GDPR will impact
More informationWe reserve the right to update this privacy notice at any time. Please check our website from time to time for any changes we may make.
What is the purpose of this document? NORTHERN IRELAND SCREEN COMMISSION (Company Number NI031997) whose registered office is at 3 rd Floor Alfred House, 21 Alfred Street, Belfast, BT2 8ED is committed
More informationRSD Technology Limited - Data protection policy: RSD Technology Limited ( the Company )
RSD Technology Limited - Data protection policy: Introduction Company Name: Document DP3 Topic: RSD Technology Limited ( the Company ) Data Protection Policy Data protection Date: 25 th May 2018 Version:
More informationPrivacy Notice: for staff, trustees, governors and all who are engaged to work within The Evolve Trust
Privacy Notice: for staff, trustees, governors and all who are engaged to work within The Evolve Trust Use of Your Personal Data Statement Purpose: Information that we hold in relation to staff, trustees
More informationResponsible Business Alliance. Data Privacy and GDPR Compliance Policy
Responsible Business Alliance Data Privacy and GDPR Compliance Policy 1. INTRODUCTION 1.1 As a global non-profit membership organisation, the Responsible Business Alliance ( RBA ) has a responsibility
More informationDATA PROTECTION POLICY 2016
DATA PROTECTION POLICY 2016 ADOPTED FROM BRADFORD METROPOLITAIN COUNCIL MODEL POLICY AUTUMN 2016 To be agreed by Governors on; 17/10/16 Signed by Chair of Governors: Statutory policy: Yes Frequency of
More informationSAFFRON WALDEN COMMUNITY CHURCH DATA PROTECTION POLICY. Adopted: [ ]
SAFFRON WALDEN COMMUNITY CHURCH DATA PROTECTION POLICY Adopted: [17-04-2018] 1 SAFFRON WALDEN COMMUNITY CHURCH is committed to protecting all information that we handle about people we support and work
More informationPOLICY. Data Breach Notification Policy. Version Version 1.0. Equality Impact Assessment Status. Date approved 23 rd May 2018
POLICY Document Title Data Breach Notification Policy Version Version 1.0 Equality Impact Assessment Status TBC Approved by Senior Management Team Date approved 23 rd May 2018 Effective date 25 th May
More informationTrinity is committed to protecting the privacy and security of personal data.
This privacy notice applies data processing activities undertaken by Trinity College for security and monitoring relating to staff, students and visitors to Trinity premises including CCTV, other security
More informationData Protection Policy. Data protection. Date: 28/4/2018. Version: 1. Contents
Company Name: Document: Topic: System People ( the Company ) Data Protection Policy Data protection Date: 28/4/2018 Version: 1 Contents Introduction Definitions Data processing under the Data Protection
More informationBrasenose College is committed to protecting the privacy and security of personal data.
This privacy notice (v1.2) applies to data processing activities undertaken by Brasenose College for security and monitoring relating to staff, students and visitors to College premises including CCTV,
More informationHuman Services Quality Framework. User Guide. Human Services Quality Framework User Guide Page 1 of 35
Human Services Quality Framework User Guide Human Services Quality Framework User Guide Page 1 of 35 Purpose The purpose of the user guide is to assist in interpreting and applying the Human Services Quality
More informationSefton Carers Centre
Sefton Carers Centre Data protection privacy notice (recruitment of staff and volunteers) This notice explains what personal data () we will hold about you, how we collect it, and how we will use and may
More informationSt John's Primary School and Nursery. Privacy Notice for Governors How we use your information 2018/19
St John's Primary School and Nursery Privacy Notice for Governors How we use your information 2018/19 Who are we? St John s Primary School and Nursery is the data controller. This means we are responsible
More informationPrivacy Notice. If you wish to know more about our approach to Data Protection please read this Privacy Notice.
Privacy Notice Midland Heart Ltd makes records from our contact with you, including personal information that is subject to the General Data Protection Regulations (GDPR). We also collect information about
More informationTraining Manual. DATA PROTECTION ACT 2018 (DPA18) Incorporating General Data Protection Regulations (GDPR) Data Protection Officer is Mike Bandurak
PROFESSIONAL INDEPENDENT ADVISERS LTD DATA PROTECTION ACT 2018 (DPA18) Incorporating General Data Protection Regulations (GDPR) Training Manual Data Protection Officer is Mike Bandurak GDPR introduction
More informationData Protection Policy
Data Protection Policy for The Astor Bannerman Group of Companies Issue Date: 3 rd January 2014 Version: 01 Approval History Name Department Role/Position Date approved Signature James Stuart- Smith Director
More informationPRIVACY POLICY. Your Village Pty Ltd ABN ( Steam Capital ) is committed to protecting your privacy.
PRIVACY POLICY 1. Overview Your Village Pty Ltd ABN 31 010 442 770 ( Steam Capital ) is committed to protecting your privacy. Steam Capital is bound by the Privacy Act 1988 (Cth) ( the Privacy Act ), including
More informationTimePlan Education Group Ltd ( the Company ) Data Protection. Date: April Version: 001. Contents
Company Name: Document DP3 Topic: ( the Company ) Data Protection Policy Data Protection Date: April 2018 Version: 001 Contents Introduction Definitions Data processing under the Data Protection Laws 1.
More informationPRIVACY NOTICE for Welsh St Donat s Community Council, May 2018
PRIVACY NOTICE for Welsh St Donat s Community Council, May 2018 NOTE: Welsh St Donat s Community Council is a small, rural Community Council and, compared with many councils and public bodies, processes
More informationSCHOOLS DATA PROTECTION POLICY. Guidance Notes for Schools
SCHOOLS DATA PROTECTION POLICY Guidance Notes for Schools Please read this policy carefully and ensure that all spaces highlighted in the document are completed prior to publication. Please ensure that
More informationOCTOBER 2016 GROUP CODE OF CONDUCT
OCTOBER 2016 GROUP CODE OF CONDUCT CONTENTS OUR VALUES AND OUR COMMITMENTS 4 General principles 6 Our commitments 8 INDIVIDUAL AND COLLECTIVE CONDUCT GUIDELINES 12 Maintaining the confidentiality of information
More informationOur Volunteer Privacy Notice: protecting and respecting your information
Our Volunteer Privacy Notice: protecting and respecting your information 1. Important information and who we are This privacy notice informs you as to how The Children s Society looks after the personal
More informationIntroduction. Welcome to the OAG Aviation Group privacy notice.
Introduction Welcome to the OAG Aviation Group privacy notice. The OAG Aviation Group respects your privacy and is committed to protecting your personal data. This privacy notice aims to give you information
More informationThe current version (July 2018) is derived from, and supersedes, the version published in February 2017 and earlier versions.
Page 2 of 10 Data Protection Policy Chief Information Officer Chief Information Officer Data Protection Officer The current version (July 2018) is derived from, and supersedes, the version published in
More informationPOPI REGULATES IN HARMONY WITH INTERNATIONAL STANDARDS THE PROCESSING OF PERSONAL INFORMATION BY PUBLIC AND PRIVATE BODIES
EMPLOYMENT THE PROTECTION OF PERSONAL INFORMATION ACT, NO 4 OF 2013 POPI REGULATES IN HARMONY WITH INTERNATIONAL STANDARDS THE PROCESSING OF PERSONAL INFORMATION BY PUBLIC AND PRIVATE BODIES THE PROTECTION
More informationIntroduction Why is data protection important? How does it apply to volunteers? What volunteers need to do?...
Data Protection Guidance for Volunteers Last update 26/11/17 Contents Introduction... 2 1. Why is data protection important?... 2 2. How does it apply to volunteers?... 2 3. What volunteers need to do?...
More informationGeneral Data Privacy Regulation: It s Coming Are You Ready?
General Data Privacy Regulation: It s Coming Are You Ready? Presenters Tristan North Worldwide ERC Government Affairs Adviser, Moderator William R. Tehan General Counsel, Graebel Companies, Inc. Hank A.
More informationData Protection Policy
Data Protection Policy Version Date Revision Author Summary of Changes 1.0 21 st May 2018 Ashleigh Morrow EXECUTIVE STATEMENT At CASTLEREAGH NURSERY SCHOOL (the School ), we believe privacy is important.
More informationGDPR DATA PROCESSING NOTICE FOR FS1 RECRUITMENT UK LTD FOR APPLICANTS AND WORKERS
GDPR DATA PROCESSING NOTICE FOR FS1 RECRUITMENT UK LTD FOR APPLICANTS AND WORKERS What is the purpose of this document? FS1 Recruitment UK Ltd is committed to protecting the privacy and security of your
More informationTHE EU GENERAL DATA PROTECTION REGULATION AND INTERNATIONAL AIRLINES SPECIAL UPDATE
OCTOBER 2017 EU, COMPETITION, TRADE AND REGULATORY THE EU GENERAL DATA PROTECTION REGULATION AND INTERNATIONAL AIRLINES SPECIAL UPDATE The EU General Data Protection Regulation (GDPR) becomes effective
More informationLPC Law Recruitment Privacy Notice
LPC Law is aware of its obligations under the General Data Protection Regulation (GDPR) and is committed to processing your data securely and transparently. This privacy notice sets out, in line with GDPR,
More informationBaptist Union of Scotland DATA PROTECTION POLICY
Baptist Union of Scotland DATA PROTECTION POLICY Adopted: May 2018 1 1.The Baptist Union of Scotland 48, Speirs Wharf, Glasgow G4 9TH (Charity Registration SC004960) is committed to protecting all information
More informationData Protection. Document Detail Type of Document (Stat Policy/Policy/Procedure) Category of Document (Trust HR-Fin-FM-Gen/Academy) General
Data Protection Document Detail Type of Document (Stat Policy/Policy/Procedure) Policy Category of Document (Trust HR-Fin-FM-Gen/Academy) General Index reference number Approved 26/04/18 Approved by Trust
More informationLIFE STYLE CARE PLC. Privacy Statement for Employees. August 2018
LIFE STYLE CARE PLC Privacy Statement for Employees August 2018 Key points Why we use your personal data: We typically use your personal information for purposes related to your employment relationship
More informationData Protection: It s getting personal
www.pwc.com/my Data Protection: It s getting personal Malaysia: Personal Data Protection Act (PDPA) 2010 In the news Read about these? Octopus sold customer personal data to business partners for direct
More informationData protection privacy notice (Job Applicants)
Data protection privacy notice (Job Applicants) 1. Data protection privacy notice () 1.1. This notice explains what personal data () we will hold about you, how we collect it, and how we will use and may
More informationLAST UPDATED June 11, 2018 DATA PROTECTION POLICY. International Foundation for Electoral Systems
LAST UPDATED June 11, 2018 DATA PROTECTION POLICY International Foundation for Electoral Systems 1. Purpose 1.1. International Foundation for Electoral Systems is committed to complying with privacy and
More informationDepending on the circumstances, we may collect, store, and use the following categories of personal information about you:
Ignata Group Data Protection / Privacy Notice What is the purpose of this document? Ignata is committed to protecting the privacy and security of your personal information. This privacy notice describes
More informationMacroprocesso 2-GOVERNANÇA CORPORATIVA
Summary 1. OBJECTIVE... 3 2. ADDITIONAL ATTACHMENTS... 3 3. DEFINITIONS... 3 4. DESCRIPTION... 3 4.1. Petronect Rules of Ethical Conduct... 4 4.1.1. Professional personal conduct... 4 4.1.2. Work Duty...
More informationYou can contact us directly at Dechert LLP, 160 Queen Victoria Street, London, EC4V 4QQ, United Kingdom or by ing
Recruitment privacy notice The scope and purpose of this privacy notice You have expressed an interest in being considered for a role with Dechert LLP ( Dechert, we, us, our ). This privacy notice will
More informationDATA PROTECTION POLICY AND PROCEDURE
DATA PROTECTION POLICY AND PROCEDURE Our activity involves the collection of personal data and may involve the collection of sensitive personal data. Data for the purposes of our products and services
More informationOFFICER USE ONLY. 2. Position No: Title of Immediate Supervisor: University Secretary 3. Level: 10
C A R L E T O N U N I V E R S I T Y POSITION DESCRIPTION PART A Employee Name: OFFICER USE ONLY 1.Title: 2. Position No: 298659 Title of Immediate Supervisor: University Secretary 3. Level: 10 Position
More informationPrivacy Notice for Directors and Local Academy Committee Representatives How we use your information 2018/2019
Privacy Notice for Directors and Local Academy Committee Representatives How we use your information 2018/2019 Who are we? The Romero Catholic Academy is the data controller. This means we are responsible
More informationGPDR: Privacy Statement Last updated April How your personal information is used by Allander Print Limited.
How your personal information is used by Allander Print Limited. Your information will be held by Allander Print Limited. More information on the Group can be found at www.allander.com. How we use your
More informationUK SCHOOL TRIPS PRIVACY POLICY
UK SCHOOL TRIPS PRIVACY POLICY Introduction Welcome to the UK School Trips privacy notice. UK School Trips respects your privacy and is committed to protecting your personal data. This privacy notice will
More informationThe Heritage Alliance. Data Privacy Policy
The Heritage Alliance Data Privacy Policy 1. INTRODUCTION 1.1 As a national charity supporting heritage organisations in England, The Heritage Alliance ( HA ) has a responsibility to ensure that it uses
More informationThe General Data Protection Regulation (GDPR)
Risk Regulation The General Data Protection Regulation (GDPR) Cyber security Preparing your business for the GDPR Contents Section Page What is the GDPR and what does it change? 01 Understanding the core
More informationPrivacy Notice for Directors and Local Academy Committee Representatives How we use your information 2018/2019
Privacy Notice for Directors and Local Academy Committee Representatives How we use your information 2018/2019 Who are we? The Romero Catholic Academy is the data controller. This means we are responsible
More informationGDPR: Is it just another strict regulation or a great opportunity for operational excellence?
GDPR: Is it just another strict regulation or a great opportunity for operational excellence? Xenofon Liapakis General manager CIO & Services of Interamerican group Chairman of Hellenic CIO forum November
More informationData Protection Policy for the Grimsby Institute of Further & Higher Education
Data Protection Policy for the Grimsby Institute of Further & Higher Education Data Protection Policy Change Control Version: V1.1 New or Replacement: Approved by: Replacement Executive Management Team
More informationData Protection Policy
Data Protection Policy General Data Protection Regulations (GDPR) Document control Version control / history Note: This policy requires to be reviewed at least annually from the publication of the last
More informationJob applicant privacy notice (compliant with the General Data Protection Regulations (GDPR)
Job applicant privacy notice (compliant with the General Data Protection Regulations (GDPR) The Company is aware of its obligations under the General Data Protection Regulation (GDPR) and is committed
More informationThis document is meant purely as a documentation tool and the institutions do not assume any liability for its contents
2012R1024 EN 17.06.2014 002.001 1 This document is meant purely as a documentation tool and the institutions do not assume any liability for its contents B REGULATION (EU) No 1024/2012 OF THE EUROPEAN
More informationThis personal information must be dealt with properly, with appropriate safeguards in place to ensure the rights and freedoms of data subjects.
BELFAST ROYAL ACADEMY Data Protection Policy Introduction Belfast Royal Academy recognises and accepts its responsibilities as set out in the Data Protection Act 1998. The School will take all reasonable
More informationcode of conduct + ethics
code of conduct + ethics 1 Home Code of Conduct and Ethics Contents A culture of integrity Our values 3 3 Aurecon s is the focal point of our policy on ethical business and promotes acting with integrity
More informationSHENLEY BROOK END SCHOOL
SHENLEY BROOK END SCHOOL DATA PROTECTION POLICY Linked Policies: CCTV Review Information Reviewed by Finance Pay and Personnel Committee 15 May 2012 Reviewed by Policy Committee August 2013 Adopted by
More informationOur Volunteer Privacy Notice: protecting and respecting your information
Our Volunteer Privacy Notice: protecting and respecting your information 1. Important information and who we are This privacy notice informs you as to how The Children s Society looks after the personal
More informationData Protection Policy & Procedures
Data Protection Policy & Procedures Scope In this document, the terms we, us, our and/or Clear Sky refer to Clear Sky Children s Charity. The term you and/or your refer to all employees of Clear Sky, who
More informationBrasenose College SCR Member Only Privacy Notice (v1.2)
Brasenose College SCR Member Only Privacy Notice (v1.2) A summary of what this notice explains Brasenose College is committed to protecting the privacy and security of personal data. This notice explains
More informationData Protection Policy for Staff DJJK. Apr of 10
Data Protection Policy for Staff DJJK Apr 2018 1 of 10 Review and Amendment Record Date Person Conducting the Review Mar 2018 PMS New Policy, GDPR Apr 2018 DJJK Review Changes Made 2 of 10 1 Introduction
More informationNational Railway Museum
1 of 8 pages National Railway Museum Charter for the Board and Board committees of the Port Dock Station Railway Museum (SA) Inc., trading as National Railway Museum The purpose of this charter is to articulate
More informationThe Board. Managing Director and CEO. Executive Management. External Audit
Nick Scali s Corporate Governance Framework The Board of Nick Scali Limited is responsible for the direction and supervision of the Company s business and for its overall corporate governance. The Board
More information