Skip To Content
Develop and enhance compliance processes in business operations and data protection requirements is a Program

Develop and enhance compliance processes in business operations and data protection requirements

Self-paced

Sorry! The enrollment period is currently closed. Please check back soon.

Full program description

Develop and enhance compliance processes in business operations and data protection requirements

Course Overview

Learners will learn how to develop and enhance compliance processes based on an evaluation

of gaps in business operations and data protection requirements. They will also learn how to

propose solutions to identified areas of improvement and work with stakeholders to ensure

those gaps are remedied.

Who Should Attend

1. Targetted at Data Protection Officers

2. Staff who formulate and review data protection policies

3. Staff who develop data protection management programmes

Course Duration

2 Days/16 hours

Course Outline

  • Elements and considerations in development of compliance processes
  • Evolving statutory and regulatory standards
  • Application and relevance of external standards to organisations context
  • Process gap analysis for business operations and data protection requirements

  Conduct risk assessment and risk ranking

  • Understanding and developing a Data Protection Management Plan
  • Data Protection Trustmark to guide the conduct/audit checks on business functions
  • DPTM Certification Controls used for the assessment

1)  Governance and Transparency

  • Appropriate policies and practices
  • Openness
  • Internal communication and training

2)  Management of personal data

  • Appropriate purpose
  • Appropriate notification
  • Appropriate consent
  • Appropriate use and disclosure
  • Compliant overseas transfer

3)  Care for personal data

  • Appropriate protection
  • Appropriate retention and disposal
  • Accurate and complete records

4)  Individuals rights

  •  Effect of withdrawal of consent
  •  Provide access and correction rights

Methodology to gather and evaluate information during the Assessment Phase and Certification process

  • Develop and audit plan
  • What to audit
  • When to audit
  • Who to conduct audit

Reference:

  • Advisory Guidelines on Key Concepts in the Personal Data Protection Act
  • Guide to Developing a Data Protection Management Programme
  • PDPA Assessment Tool for Organisations
  • DPTM Information Kit
  • DPTM Checklist

Mode of Assessment

Learners will be required to undergo assessment, consisting of a written test and oral

questioning. Both will be conducted in the classroom

Course Objectives

Learners will have knowledge of the following:

  • Elements and considerations in development of compliance processes
  • Evolving statutory and regulatory standards
  • Application and relevance of external standards to organisation's context
  • Process gap analysis for business operations and data protection requirements.
  • Data protection management programme
  • (DPMP) and Data Protection Trustmark to guide the conduct / audit checks on the business functions.
  • DPTM Certification Controls used for the assessement.
  • Methodology to gather and evaluate information during the Assessment Phase and Certification Process.

Learners will be able to perform the following:

  • Develop DP compliance processes in accordance with the organisations strategy and internal and external guidelines
  • Evaluate DP audit results to identify reasons for gaps or non-compliance in business operations and DP requirements
  • Recommend enhancements to DP compliance processes to strengthen the organisations internal controls
  • Provide guidance in the formulation of audit checklist incorporating DP compliance
  • Evaluate root cases and potential organizational impact or risks of non-compliance to DP so as to prioritise the areas that require further enhancement
  • Prepare and propose an action plan on DPTM certification for managements support, including the resources needed
  • Coordinate and work with respective departments to carrty out an assessment of the organisations readiness for the DPTM certification using the DPTM certification checklist
  • Work with external third party to review the organisations personal data protection policies and practices so as to ensure SOs are robust and comparable to industry standards
  • Propose remediation recommendations to rectify all non-complance areas identified at the self assessment/assessment phase.

Pre-requisites

1. Learner has attended and is competent for module titled Fundamentals of Personal Data Protection Act or its equivalent

2. Learners are assumed to be able to:

  • Understand relevant organisational strategies, objectives, culture, policies, processes and products / services;
  • Have information gathering skills to gather and collate necessary data;
  • Have analytical skills to assess policies and procedures;
  • Have business writing skills to prepare management report;
  • Have interpersonal and communication skills to interact with relevant stakeholders;
  • Have facilitation skills to ask the right questions to elicit necessary information; and
  • Be aware of compliance requirements of organisation.

Price

Price to be advised.

DPAAL2