Scribd Logo
Importer

Bienvenue sur Scribd !

  • Privacy Communities: How To Build Them and Drive Awareness

    Transféré par

    Co3Sys
    11 vues26 pages
    The weakest link in privacy initiatives at most organizations is not technology or process, but people. Actions by individuals, often unwittingly, can devastate a good privacy track record in moments. Awareness is a critical component of any good privacy program because through awareness privacy professionals can address this risk. This webinar will review how privacy professionals can establish a privacy community at their organization. Our featured speaker will share a roadmap for building a privacy community. You'll learn how to recruit community members, how to motivate them, and what programs you can run to drive awareness (hint: firewall fried chicken). Our featured speaker for this timely Webinar is: Bob Siegel, Privacy Strategist & Principal, Privacy Ref (formerly Sr. Mgr of WW Privacy & Compliance at Staples) CIPP/US, CIPP/IT Blogs at: http://privacyref.com/

    Titre original

    Privacy Communities: How To Build Them And Drive Awareness

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Formats disponibles

    PPTX, PDF, TXT ou lisez en ligne sur Scribd

    Avez-vous trouvé ce document utile ?

    Ce contenu est-il inapproprié ?

    Signaler ce document
    The weakest link in privacy initiatives at most organizations is not technology or process, but people. Actions by individuals, often unwittingly, can devastate a good privacy track record in moments. Awareness is a critical component of any good privacy program because through awareness privacy professionals can address this risk. This webinar will review how privacy professionals can establish a privacy community at their organization. Our featured speaker will share a roadmap for building a privacy community. You'll learn how to recruit community members, how to motivate them, and what programs you can run to drive awareness (hint: firewall fried chicken). Our featured speaker for this timely Webinar is: Bob Siegel, Privacy Strategist & Principal, Privacy Ref (formerly Sr. Mgr of WW Privacy & Compliance at Staples) CIPP/US, CIPP/IT Blogs at: http://privacyref.com/

    Droits d'auteur :

    Attribution Non-Commercial (BY-NC)
    Téléchargez comme PPTX, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    11 vues26 pages

    Privacy Communities: How To Build Them and Drive Awareness

    Transféré par

    Co3Sys
    The weakest link in privacy initiatives at most organizations is not technology or process, but people. Actions by individuals, often unwittingly, can devastate a good privacy track record in moments. Awareness is a critical component of any good privacy program because through awareness privacy professionals can address this risk. This webinar will review how privacy professionals can establish a privacy community at their organization. Our featured speaker will share a roadmap for building a privacy community. You'll learn how to recruit community members, how to motivate them, and what programs you can run to drive awareness (hint: firewall fried chicken). Our featured speaker for this timely Webinar is: Bob Siegel, Privacy Strategist & Principal, Privacy Ref (formerly Sr. Mgr of WW Privacy & Compliance at Staples) CIPP/US, CIPP/IT Blogs at: http://privacyref.com/

    Droits d'auteur :

    Attribution Non-Commercial (BY-NC)
    Téléchargez comme PPTX, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    sur 26

    Privacy Communities

    How To Build Them And Drive Awareness

    Agenda
    Introductions Participants Steering Committee Champions Awareness Privacy Week Training Newsletters Q&A

    Page 2

    Co3 Automates Breach Management


    PREPARE Improve Organizational Readiness
    Assign response team Describe environment Simulate events and incidents Focus on organizational gaps

    ASSESS Quantify Potential Impact, Support Privacy Impact Assessments


    Track events Scope regulatory requirements See $ exposure Send notice to team Generate Impact Assessments

    REPORT Document Results and Track Performance


    Document incident results Track historical performance Demonstrate organizational preparedness Generate audit/compliance reports

    MANAGE Easily Generate Detailed Incident Response Plans


    Escalate to complete IR plan Oversee the complete plan Assign tasks: who/what/when Notify regulators and clients Monitor progress to completion

    Page 3

    About PRIVACY REF


    PRIVACY REF provides privacy program services for SMBs
    PRIVACY REF helps SMBs create, refine, and manage their privacy programs PRIVACY REF helps SMBs increase revenues
    by ensuring that you meet customer privacy and security requirements

    PRIVACY REF helps SMBs avoid expenses


    by avoiding the data loss, fines and brand damage that can be devastating to any business

    PRIVACY REF helps SMBs comply with regulations


    by employing best practices for handling customer and employee data while maintaining focus on your core business

    PRIVACY REF provides enterprise-caliber policy and program development and implementation that fits SMB budgets.

    Page 4

    PRIVACY COMMUNITIES

    Some common challenges


    Limited privacy resources Geographically distributed operations Varying organizational characteristics
    Business processes Regional / Departmental culture

    Reinventing the wheel Information flow

    Page 6

    Community
    A group sharing common characteristics or interests and perceived or perceiving itself as distinct in some respect from the larger society within which it exists

    Page 7

    The Steering Committee


    Charter
    Define direction for the privacy program Provide guidance on initiatives Review and approve policy proposals

    Comprised of Senior Executives


    Information Technology Legal Human Resources Finance Marketing

    Page 8

    Privacy Community
    The Privacy Community shares
    Local perspectives Concerns / Solutions Programs Ideas Artifacts

    Membership is unrestricted Members are referred to as Privacy Champions

    Page 10

    Privacy Champions
    Requirements
    Passion for privacy Willing to drive initiatives within their team and/or business unit Work for your company

    Recruiting
    Existing privacy contacts Nominees from the Steering Committee Direct invitations Volunteers Champions recruit champions

    Page 11

    Privacy Community Meetings


    Welcome Comments from a Steering Committee member Champion perspectives Update from the Privacy Team Open discussion of a current issue Recognition

    Page 12

    Recognition
    Focus on someone who supports privacy in any role Tangible reward
    Gift card Award Gift (i.e. encrypted USB drive)

    Public recognition
    Endorsement by recipients management team Award at a Privacy Community meeting Intranet Newsletters

    Page 14

    AWARENESS

    Privacy Awareness How Are We Doing?

    Source: Ponemon Institute

    Page 16

    Privacy Week
    Annual, company-wide event
    Training / share information Create a buzz Give champions a chance to shine

    Privacy Presentations Privacy fairs

    Page 17

    Privacy Week
    Kicked off by senior leadership
    Video Coffee talks

    Webinars
    Repeated to address time zone issues

    Local presentations Get IAPP involved


    CIPP Exams IAPP KnowledgeNets

    Page 18

    Privacy Week Resources


    Privacy Community owns Privacy Week
    Privacy team provides coordination Privacy Community defines content

    Presenters and Fair participants


    Privacy Champions Vendors Recognized privacy leaders Internal teams

    The Privacy Game

    Page 19

    Privacy Week Publicity


    Posters Emails
    C-level executive to the company Steering Committee members to their teams

    Rename cafeteria menu items


    PII Pasta Salad Encrypted Eggplant Parmesan Firewall Fried Chicken

    Page 20

    Global Data Privacy Day


    Celebrated January 28th Single topic focus
    Webinars Local presenters

    Cafeteria menu items renamed

    Page 21

    Training
    New hire training
    Addressed by local HR teams Hiring manager ultimately responsible

    Core training from the Privacy Team


    Enterprise-wide Privacy Policies PCI 101 HIPAA 101

    Targeted training from the Privacy Team


    Upon request In response to an event

    Page 22

    Newsletters & Blogs


    Privacy Blog
    Subjects are of general interest Available on the intranet Weekly publication Written by the Privacy Team Subjects internally focused Tip of the month Local stories Driven by Privacy Champions

    Local newsletters

    Page 23

    Other Contacts
    Privacy Mailbox
    Multiple regional instances Think about anonymous reporting abilities

    Fly-bys HQ Visitors Posters


    Positive reminders Something went wrong

    Page 24

    QUESTIONS

    Co3 Systems makes the process of planning for a nightmare scenario as painless as possible, making it an Editors Choice.
    PC MAGAZINE, EDITORS CHOICE

    One Alewife Center, Suite 450 Cambridge, MA 02140 PHONE 617.206.3900


    WWW.CO3SYS.COM

    Co3defines what software packages for privacy look like.


    GARTNER

    Platform is comprehensive, user friendly, and very well designed.


    PONEMON INSTITUTE

    Bob Siegel Bob.Siegel@PrivacyRef.com www.privacyref.com 888-470-1528 x801 508-474-5125 @PrivacyRef

    Vous aimerez peut-être aussi