GDPR success: Evidencing outcomes

Slides:



Advertisements
Similar presentations
Child Safeguarding Standards
Advertisements

Webinar: How to handle PRP appeals Presented by Heather Mitchell, employment lawyer at Browne Jacobson.
Freedom of Information Workshop & Briefing 5 th March 2014 Welcome.
1 Role of the Data Protection Officer Donald Henderson Information Compliance Manager 30 September 2010.
Termly Governor Briefings Keith Grimwade Service Director: Learning Spring 2016.
Fraud Risk – some context first Year ending September 2015 there were 604,601 fraud offences reported (ONS) The National Fraud Indicator report in 2013.
All you need to know about MATs
General Data Protection Regulation (EU 2016/679)
Farrah Kitabi and Vivien Ma September 2016
Welcome to the MyLearningPlan.Com
Data Protection Regulation
Tony Sheppard Mobile Guardian
Michael Wright • Chief Security Officer • Tech Lock
ED6016: Leading and Managing Partnerships in the Early Years
KCSIE 2016: Ensuring implementation in your school or setting
Information Governance Support Information Governance Services
Outline of pilot for support for disabled staff
Nick MacKenzie, Partner, Browne Jacobson LLP
Induction toolkit 1. introduction Welcome the group.
Welcome The aim of this toolkit is to support the club and its development aims and ambitions. It is also used to help the club to submit an application.
GDPR Awareness and Training Workshop
General Data Protection Regulations: what you really need to know
General Data Protection Regulation (GDPR
BECOMING AN EXPERT IN SURVEY DESIGN By Ghania Zgheib EDIT 732
General Data Protection Regulations Preparing for the upcoming changes in data protection law David Jones & Angharad Williams.
The EU General Data Protection Regulation (GDPR)
Study Programmes: Modelling & Operation Project
GDPR support January GDPR support January 2018.
GENERAL DATA PROTECTION REGULATION (GDPR)
GDPR – The Role of the Data Protection Officer (DPO)
Reporting personal data breaches to the ICO
GDPR and paper records Why it’s not all cyber and fines Gary Shipsey
GDPR in schools and academies
Red Flags Rule An Introduction County College of Morris
GDPR and Health and Safety
An introduction to middle leadership
Data protection reform – update from the ICO
Information Governance
Clerks’ Information Update Autumn Term September 2018
G.D.P.R General Data Protection Regulations
[Region name] Region Conference 2016
GDPR – Practical Implementation Managing contracts, procurement and relationships with suppliers Terry Brewer Chief Executive.
Providing feedback with SETU
General Data Protection Regulation
GDPR: How to ensure a culture of compliance
Preparing for the GDPR - What do we need to do if we process children’s personal data? Data Protection Practitioners’ Conference 2018 #DPPC2018.
Mathew Norman, Policy & Public Affairs Officer, RLA Wales
GDPR (General Data Protection Regulation)
Preparing for GDPR Sharing experiences of the process and using the British Canoeing Toolkit bit.ly/BCGDPRToolkit
How we’ll prepare for the General Data Protection Regulation (GDPR)
Detecting, reporting & investigating data breaches under GDPR
Privacy Act 1993 EIT, Author Gay Robertson, 2017.
GDPR Quiz Today’s trainer: Click here to use Kahoot! 1
Wootton Medical Centre High Street, Wootton Northampton NN4 6LW
THIS PRESENTATION The College Essentials Support from the College
Where are you now with GDPR?
Student Data & Privacy.
#eaThinkData Get Ready for GDPR #eaThinkData.
Governor Induction part 1 STRATEGIC LEADERSHIP
Understanding Data Protection
What Governors need to know about GDPR
Benchmarking and Collaboration
An Introduction to Family SEAL
The General Data Protection Regulations 2016
THIS PRESENTATION The College Essentials Support from the College
Consumer Conversations and Aged Care Standards
Data Privacy by Design Expanding Security for bepress Users
Process and Procedure Documentation
Colorado “Protections For Consumer Data Privacy” Law
AUDIT QUALITY REGULATORY FOCUS AREAS
Presentation transcript:

GDPR success: Evidencing outcomes Dai Durbridge Browne Jacobson LLP

Welcome Partner in the Education team at Browne Jacobson Lead the Manchester Education team Act for over 1,300 schools academies and colleges

Why all the fuss about GDPR? Very different data landscape than in 1998

Data today

GDPR - objectives Compliance Accountability Redress the balance

GDPR - impact Compliance - Evidence compliance and evidence outcomes Accountability – DPO, data breach reporting Redress the balance – SARs and individual rights

Status update Data audit? Policies, procedures and documents updated? DPO appointed…? DPO suitably trained?

Complete these steps and you are 80% of the way there Status update Complete these steps and you are 80% of the way there

Changing culture and evidencing compliance The difficult final 20%…

Plan GDPR success – changing your culture and measuring outcomes to evidence compliance This session will focus on the importance of embedding culture change to ensure GDPR compliance and provide you with methods, tips and advice to measure the outcomes of your culture change

Plan Words to a minimum Slides to a minimum 5 top tips Behaviours to focus on Training outcomes Audit evidence Policy evidence Add in toolkit and DPO helpline slides Peer to peer support

25 May 2018 The world did not end It was not a deadline – it was a start line Don’t worry about it

Policies, procedures and documents Get them in place Reputable source Approved by governors as appropriate

Policies, procedures and documents Need to evidence: Creation Sharing implementation How will you do it? How does that method evidence outcomes?

Internal audits - Review: SAR requests and completed disclosures retention and destruction of documents information sharing – LAs, third party processors pupil consents to ensure they are followed How often? What evidence would you create to show you carried out an audit?

Internal audits – DPO duty Review: SAR requests and completed disclosures retention and destruction of documents information sharing – LAs, third party processors pupil consents to ensure they are followed What evidence would you create to show you carried out an audit?

Internal audits Top tip: What does your DSL do…? If it works for them, it’s likely to work for you No need to reinvent the wheel…

Monitoring compliance Focus on evidencing outcomes, not inputs How can you evidence staff understanding and compliance? Staff meetings? Stop and question staff? But what evidence of compliance has been created?

Monitoring compliance Evidence based monitoring: Staff quiz Survey Staff training methods (more later) What would you include in a staff quiz? What next?

Training and updating DSL has the same duty as set out in Keeping Children Safe in Education guidance Don’t reinvent the wheel…

Staff training – top tips Reliable Where did you get it from? Who produced it? When was it produced? Digestible If it’s not, it’s not useful What format works best for your staff – ask them Lite bites often best – but ask your staff

How do you evidence the outcomes? Important for proving compliance with guidance and satisfying yourself that staff are appropriately updated Sign in sheets Copies of emails, articles, presentations What else? How can you evidence staff engagement as opposed to receipt?

Changing culture Some examples… Use of USB pen drives – encrypted or not Use of personal email addresses Email to wrong recipient Downloading on home computers Email access on phones and tablets Sharing personal data without password protecting Leaving laptop/personal data in the car overnight

Changing behaviour Help them with new skills How to guides Top tips Do it for them! Remember –outcome is more important than timeframe

Get in touch Please note The information contained in these notes is based on the position at June 2018. It does, of course, only represent a summary of the subject matter covered and is not intended to be a substitute for detailed advice. If you would like to discuss any of the matters covered in further detail, our team would be happy to do so. © Browne Jacobson LLP 2018. Browne Jacobson LLP is a limited liability partnership. Dai Durbridge | 0330 045 2105 | dai.durbridge@brownejacobson.com

GDPR success: Evidencing outcomes Dai Durbridge Browne Jacobson LLP

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.