Categories Corporate
Professional eBook

SME GDPR Daily Operations Manual

Managing Daily GDPR Privacy Activities for SMEs

58
Language:  English
Description of daily GDPR practices related to personal data and ways to effectively manage data subject access requests, security incidents and data breaches for SMEs.
Professional Plus subscription free for the first 30 days, then $6.99/mo
Access this book on our eReader, no adverts inside the book
Description
Content

Description of (a) the daily GDPR practices related to the processing (collection, maintenance, use, storage, sharing, deletion, security, etc.) of personal data, (b) a procedure of seven steps to manage data subject access requests, and (c) two procedures of thirteen steps to handle security incidents and data breaches for an SME type company.

About the Author

John Kyriazoglou obtained a B.A. (Honours) from the University of Toronto, Canada, also earning a Scholastic award for Academic Excellence in Computer Science. John has worked in Canada, England, Switzerland, Luxembourg, Greece, Saudi Arabia and other countries for over 49 years, as a Senior IT manager, Managing Director, IT auditor and consultant, in a variety of clients and projects, in both the private and the public sectors. He has published several books and articles in professional publications, has served in numerous scientific committees and is a member of several professional and cultural associations.

He is currently the Editor-in-Chief for the Internal Controls Magazine (U.S.A.) and consulting on Data Privacy and Security Issues (GDPR, e-Privacy, etc.) to a large number of private and public clients.

  • Overview and Contents
  1. PD Daily Processing Operations Guide
    1. Introduction and purpose of this guide
    2. Corporate responsibilities
    3. PD Daily Management Actions
    4. PD Publishing/Sharing process
    5. PD deletion process
    6. PD security process
    7. PD breach management process
    8. Manage data requests and complaints
    9. Manage employee/crew privacy issues
  2. Managing Access Requests
    1. Introduction: GDPR and DSARs
    2. Description
    3. Data subject access request (DSAR) procedure
  3. Managing Security Incidents and Breaches
    1. Summary
    2. What should be done
    3. Issues. This policy covers the following issues
    4. Security Incident Response Procedure
    5. Data Breach Incident Response Procedure
  • Appendix 1. Example Company Profile
  • Appendix 2. Personal Data Details
  • Appendix 3. PD Inventory
  • Appendix 4. Security and Breach Incident Assessment Checklist
  • Appendix 5. Security Incident Examples
  • Appendix 6. Data Breach Examples
  • Appendix 7. Security and Privacy Risks
  • Appendix 8. Maritime Cybersecurity Policies and Controls
  • Appendix 9. DSAR Form
  • Appendix 10. Breach Form
  • Bibliography
About the Author

John Kyriazoglou