Intro Privacy Program Management

Question 1

What are the four phases of the privacy operational life cycle?

Answer 1

1. Assess
2. Protect
3. Sustain
4. Respond

Question 2

What happens during the “Assess” phase of the privacy operational life cycle?

Answer 2

The assess phase involves comparing the program to industry best practices, corporate privacy policies, applicable laws and regulations and the organization’s privacy framework

Question 3

What happens during the “Protect” phase of the privacy operational life cycle?

Answer 3

The protect phase embeds privacy principles and information security management practices to address, define and establish privacy practices

Question 4

What happens during the “Sustain” phase of the privacy operational life cycle?

Answer 4

The sustain phase provides monitoring, auditing and communication aspects of the management framework

Question 5

What happens during the “Respond” phase of the privacy operational life cycle?

Answer 5

The respond phase involves the principles of information requests, legal compliance, incident response planning and incident handling, as well as accountability for data collected

Question 6

What are three primary responsibilities of privacy program managers? Which is the most important?

Answer 6

1. Compliance
2. Alignment with organizational strategy
3. Accountability

Accountability is the most important aspect of privacy program management. Privacy Program Managers are responsible for safekeeping and responsible use of personal information.

Question 7

Which organizational areas have specific privacy concerns? What are examples of each concern?

Answer 7

HR: Whistleblowing
Marketing: Providing privacy notices
Finance: Bonus calculations
Information security: Information access policy
IT: Enabling systems access
Legal: Vendor contracts