Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CIPM > Module 1 - Introduction to Privacy Program Management > Flashcards

Module 1 - Introduction to Privacy Program Management Flashcards

1
Q

What are the stages in the privacy operational life cycle?

A
  1. Assess
    - Steps, checklists and processes to assess privacy program
    - Comparing to industry best practices, corporate policies, laws/regs etc.

2 . Protect
- Information security practices to protect the personal information

  1. Sustain
    - Periodic assessments/audits, monitoring, identify and mitigate risks, communication aspects
  2. Respond
    - Incident response, respond to information requests, legal compliance etc.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are a Privacy Program Manager’s Responsibilities?

A

Responsible for safe keeping and responsible use of personal information.

  1. Compliance
  2. Accountability - Demonstrate compliance with evidence.
  3. Alignment with organizational strategy
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is Privacy Program Management?

A

It is the structured approach of combining several projects into a framework and life cycle to protect personal information and individual rights.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the top three responsibilities of the privacy team?

A

Compliance is important - but, it is NOT the only driver of a privacy program.

  1. Meet regulatory compliance.
  2. Safeguard data against attacks and threats
  3. Meet expectations of business clients and partners.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What’s the relationship between IT and Security?

A

Security determines who has access to certain information.
IT implements privacy principles into technology developments - e.g. builds the permission management system that allows only authorized users to have access to data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Why does the Privacy Program interact with other parts of the organization?

A

The Privacy Program must integrate requirements and representation from multiple functional areas:
* Internal Audit - assesses controls and whether people/processes follow them
* Learning and development - policies and procedures are transformed into teachable content.
* IT - works with Privacy and information security to ensure alignment.
* HR - data lifecycle of employee records, employee privacy, whistleblowing, ethics office etc.
* Marketing - e.g. personal data related to digital advertising, internet marketing, OBA; do not call registry
* Finance - Financial regulations (e.g. PCI/DSS), payroll, budget
* Legal & Compliance - legal due diligence; minimize legal liability
* Information Security - defines policies and procedures, standards and guidelines, technical and operational controls (e.g. NIST Privacy Framework). CIA Triad
* Communications team - privacy related comms consistent with branding and tone of voice of company.
* Procurement - contracts with third parties, inclusion of security and privacy controls.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CIPM (3 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions