Event Details
Focus and Features
Individuals and institutions are taking drastic measures to flatten the curve of COVID-19 infections, and these measures, while important, may threaten our recently recognized privacy rights.
Privacy is a risk management issue for businesses, governments, and nonprofit organizations. Consumers are concerned with how businesses and organizations use and protect this information. Business owners and management want to meet the needs and expectations of their customers, business partners, and employees; keep any commitments pursuant to contractual agreements; and comply with applicable data privacy and security laws and regulations.
To become an effective Internal Auditor, the main objectives of this training are as follows:
- Understand why Privacy is important in enforcement activity, incident management and laws, rules and regulations,
- Understand your obligations and ensure compliance with applicable laws and regulations when processing Personal Information and
- Develop a privacy audit program that will enable you to identify and evaluate the key risks as well as come-up with recommendation on the improvement of your company's privacy compliance program.
Attendees will gain a foundation of knowledge that will allow them to properly prepare for and conduct a successful audit of the privacy compliance program.
What You Will Learn
I. Introduction to Privacy
- What is Privacy?
- Definition of Personal Information
- Privacy Roles (Data subject, Data Controller, Privacy Officer, etc.)
- Internal Auditing's Role in the Privacy Framework
- Privacy Audit
II. AICPA/CICA Generally Accepted Privacy Principles (GAPP)
- Management
- Privacy Notice
- Choice and Consent
- Collection
- Use, Retention and Disposal
- Access
- Disclosure to Third Parties
- Security for Privacy
- Quality
- Monitoring and Enforcement
III. Privacy Risk Assessment
- Significance and Likelihood of Privacy Risks
- Privacy Heat Map (Risk Map) using GAPP Framework
IV. Audit Process
- Engagement Planning
- Performing Engagement
- Communicating and Monitoring Audit Results
V. Case Studies
VI. Seminar Conclusion
- Plan for Action
Number of CPE Units : 3
CANCELLATION & SUBSTITUTION POLICY
- Cancellations received less than 24 hours prior to the event or after receiving the final confirmation email and zoom link will be charged a cancellation fee, which is 50% of the registration fee.
- Substitutions are allowed within the same event without incurring a cancellation fee. (Rate should be the same, if not, difference should be paid)
- No-show registrants will be charged 50% of the registration fee.