Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Board of Directors
- 1- Approve an enterprise’s privacy policy
- 2- Final accountability for all matters including privacy
- Privacy Steering Committee
- 1- Developing a privacy management plan
- 2- The design and implementation strategy of the privacy management program
- 3- Ensuring through monitoring and review, that good privacy practices are applied effectively and consistently throughout the enterprise
- 4- Enterprise privacy management decisions in support of strategic decisions of the enterprise risk management
- 5- Developing and maintaining the privacy framework and related privacy policies
- 6- Review and approval of the privacy management policies and procedures
- Enterprise Risk Management Committee
- 1- Establishing Privacy risk and harm tolerance levels
- CPO
- 1- Development of privacy management policies and procedures
- 2- Responsible for implementing and maintaining the privacy management program and associated strategies
- 3- Developing a procedure to initially identify and then maintain an up-to-date personal information inventory throughout the enterprise
- 4- Overall responsibility of the enterprise privacy management program
- 5- Identification and communication of privacy threats, privacy harms, desirable behaviors, and changes needed to mitigate the threats and harms
- Chief Risk Officer
- 1- Provide specialist input when relevant and can be asked to join the ERM committee on occasion or as a permanent member
- 2- Implementing policies and procedures to minimize and manage operational risk
- Chief Information Security Officer
- 1- Implementing policies and procedures for all aspects related ti information pertaining to the enterprise
- Business Manager
- 1- Responsible for developing, maintaining, guiding, and allocating resources to attain the overall organizational goal
- 2- Ensuring that privacy is appropriately addressed and mitigated by those for whom they’re responsible according to enterprise privacy policies and procedures
- 3- Accountable for Following the privacy policies, procedures, and standards
- Privacy Manager
- 1- Develop, implement, and enforces policies and procedure and reports to the CPO
- 2- Responsible for the management of the enterprisewide privacy management effort and activity
- 3- Management of specifically assigned scopes of privacy program management activities and supporting efforts
- 4- overall daily decision-making authority over privacy management domain practices
- Compliance Manager
- 1- Ensure the business is conducted in accordance with legal and ethical frameworks pertaining to the enterprise
- Data Controller
- 1- Ensure compliance with privacy policies
- Data Processor
- 1- Responsible for Following privacy policies and procedures
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement