The Data Protection Bill has been passed into law this bill will change the way we are required to handle personally identifiable data of all Jamaican citizens.
Symptai Consulting Ltd. is the only certified training partners of the IAPP - International Association of Privacy Professionals in the English speaking Caribbean. Our team of trained professionals can meet all your privacy needs and help you transition to a state of compliance.
3. Key Terms
• Personal Identifiable Information (PII)
• Sensitive Personal Data
• Information Commissioner
• Data Controller
• Data Processor
• Data Subject
4. Data
Protection
Standards
I. Fair and lawful processing of personal
data
II. Data is obtained for specified and
lawful purpose(s)
III. Data obtained is adequate, relevant
and limited to purpose(s)
IV. Data obtained is accurate and up to
date
5. Data
Protection
Standards
V. Data retention is limited to the purpose(s) specified
and disposed of when no longer required
VI. Data is processed in accordance with the Data
Subject’s Rights
VII. Data is secure
VIII. Data sharing limited to countries/entities that
subscribe to similar privacy and protection protocols
6. Rights of the Data Subject
• Access to Personal Data
• Transfer to another Data Controller
• If and How Their Data is Being Processed
• Complaints via the Information Commissioner
• Consent to Processing
• Consent to Direct Marketing
• Right to Prevent Processing
• Rights regarding Automated Decision-Taking
• Rectification of Inaccuracies
9. Why Data Privacy and Protection?
• Adequacy requirements from partner countries/regions
• CARIFORUM
• Economic Partnership Agreement (EPA) with the European Union (EU)
• Provide individuals with more control over their data
• A governance structure to protect data and individual’s rights as the government
moves to the digitization of services
10. Data Privacy Trends
• More countries are implementing their own privacy regulations
• Transparency of privacy initiatives and preparation for compliance
• Data privacy and protection working closely with data security
• Implementing Privacy by Design (PbD) in new and existing products, services and
processes
• Tracking new privacy laws and standards/guidance as part of risk management
• Third party (vendors, associates, partners, etc.) risk management
13. Privacy Health Check
• What data is being collected about
your customers?
• Demographic, medical, minors
(children), etc.
• Where is data collected and stored?
• Paper, core system, third party, etc.
• How is data being processed?
• Core system, marketing, third party, etc.
• Who has access to your data?
• All staff/segmented, vendors, etc.
• Which country(ies) do you
operate/have customers in?
• What other regulations/laws affect
your business?
• Review application forms and
contracts for consent and data
sharing clauses
14. Internal Education and Awareness
• Educate Executive Stakeholders about Data Privacy and what it means for your
business – get buy in!
• Understand the privacy laws in the countries you operate in, have customers in, and
where your data resides
• Sensitize your staff about the Data Protection Bill and activities your undertaking to
implement requirements
• Get key personnel trained and certified!
15. Build a Data Privacy Team
• Data Privacy Officer
• Privacy Officer/Analyst
• Audit
• Legal
• IT (Security, Networking, …)
• Line of Business Representative
• Human Resources
17. Data Privacy Training July 2020
Certified Information Privacy Manager (CIPM)
• ARE YOU READY FOR GLOBAL PRIVACY REGULATIONS?
• There’s a lot to know, there’s a lot at stake and there’s a lot of opportunity for
data protection professionals
• Get Certified Today!
Register At: www.symptai.com/training-courses/cipm
Contact Us: training@symptai.com