Thursday, 24 August 2023

New Course on the Personal Data Protection Act's Impact on Private Education


 Private education is one of the sectors that is included in the PDPA's class of registered users. This means that educational institutions are only allowed to process data if they have registered as a data user.

This course is a detailed examination of the provisions of the PDPA as they apply to educational institutions.

Saturday, 19 August 2023

UNDERSTANDING THE PERSONAL DATA PROTECTION ACT 2010

 

Espact's revised course on the Personal Data Protection Act 2010 takes into account recent cases on the Act that add clarity to some of the provisions of the Act. The course, however, keeps close to its original objectives which are to impart a practical understanding of the provisions of the Act and to help participants to establish a compliance framework within their organizations.

The course is designed for anyone who deals with or handles personal data, whether the data is about employees, customers or suppliers. It sets out the essential knowledge relating to data protection concepts and principles, data subject rights, the implementation of data protection policies and measures, and regulatory compliance.

At the end of the course, participants will be able to;

  1. Understand the importance of protecting personal data against misuse;
  2. Comply with the control mechanisms established by the Act,
  3. Understand the rights of data subjects and how they are upheld.
  4. Understand that company policies and methods should comply with data protection regulations and outline key technical and organizational measures to achieve this.
  5. Understand how to respond to data breaches and the consequences of not complying with data protection regulations.
  6. Establish a compliance framework within their organizations and develop policies and procedures for collecting, processing retaining, and disclosing such information.


COURSE OUTLINE

  1.  The importance of protecting personal data. Other legal approaches to protecting personal data, including the General Data Protection Regulations (GDPR) of the European Union.
  2. A glossary of terms that are applied in the Act.
  3.  Personal data and sensitive personal data as defined by the Act.
  4. Limitations to the definition of personal data.
  5. Persons who are bound by the Act.
  6. Registration of certain classes of data users.
  7. Data User Forums and Codes of Practice.
  8. The 7 data protection principles under the Act, their application, and limitations.
      1. Consent of the data subject.
      2. Notice and Choice.
      3. Disclosure of personal data.
      4. Security of personal data.
      5.  Retention of personal data.
      6. Data integrity.
      7. Access to personal data
  9. Rights of data subjects.
  10. Liability for non-compliance of the principles.
  11. Exemptions from the provisions of the Act. Balancing data rights with freedom of expression.
  12. Complaints, investigation, and enforcement of the Act.
  13. The Role of the Personal Data Protection Commissioner.
  14. Transfer of data overseas.
  15. Compliance with foreign legislation.
  16. Implementing compliance procedures in the organization.

For more information, please call U K Menon 016 3957617, Ms Lee 011 1620 1129 or Christopher John 016 244 0397