Managing Privacy Compliance Across Multiple Jurisdictions
Punit Bhatia
15 years: Data privacy & GDPR
In video 8 of this 10 part series, Punit introduces the key success factors to managing privacy compliance in a company that operates in multiple countries. He also describes a step-by-step process to ensure clarity, context and therefore consistency among companies with teams based worldwide.
In video 8 of this 10 part series, Punit introduces the key success factors to managing privacy compliance in a company that operates in multiple countries. He also describes a step-by-step process to ensure clarity, context and therefore consistency among companies with teams based worldwide.
Subscribe to watch
Access this and all of the content on our platform by signing up for a 7-day free trial.
Managing Privacy Compliance Across Multiple Jurisdictions
8 mins 3 secs
Key learning objectives:
Identify the key success factors for a company that operates in multiple countries
Outline the five steps to achieve the key success factors
Overview:
For companies operating in multiple countries it is essential to set the tone from the top and make privacy compliance a priority. A privacy policy allows a company operating in multiple countries to set the right expectations and makes it easier for management and staff to know about privacy obligations that need to be met. Privacy compliance is a continuous journey which requires resources and governance to be foreseen.
Subscribe to watch
Access this and all of the content on our platform by signing up for a 7-day free trial.
What are the key success factors for a company that operates in multiple countries?
An organisation that operates in multiple countries wants all business units and staff to follow the strategic vision and direction of the company.
The key success factors for a company involve:
- Consistency - All teams and employees across the globe follow a consistent approach
- Clarity - All teams and employees know what is expected by the corporate office and what their role is
- Context - What does the corporate office want? and why?
What are the five steps to achieve the key success factors?
Step 1: Privacy Policy: This is typically done after reviewing the countries your organisation operates, the privacy laws and obligations exist there, and making an overall summary of all the key requirements of your privacy policy. Once this privacy policy is created, it can be validated by the executive team and or management board.
Step 2: Create Awareness: Once a privacy policy has been validated, it is essential to create awareness amongst all levels of management across countries so that they understand what the policy is all about, what is expected and why.
Step 3: Conduct an Assessment: With the privacy policy of the company now known, it is the time to create an assessment across each business unit and identify where the gaps are, and what risks exist. This is an essential step that moves your company a step closer to becoming compliant.
Step 4: Create a Project or program to close the gaps: Once the assessment is complete, it is time to create a project or program that will plan the necessary actions to mitigate the risks and close the gaps. This may include:
- Allocating budgets
- Deciding what is done centrally by the corporate office
- Deciding what is done locally
- Deciding what is done in a hybrid way
Step 5: Create a sustainable privacy governance structure: Privacy compliance is not a project but a journey. While privacy projects and services help to fill gaps and reduce risks, there needs to be continuous monitoring of privacy compliance issues. For this purpose, a privacy office, or data protection office with necessary staff need to be considered.
Subscribe to watch
Access this and all of the content on our platform by signing up for a 7-day free trial.
Punit Bhatia
There are no available Videos from "Punit Bhatia"