Understanding accountability for the personal information you collect, store, use, archive and destroy.
o Be very clear to customers and staff about how you are using their personal information.
o Do you have a privacy policy?
o Be ready to comply with and respond to data subjects (the people whose personal information you use) requests when they ‘invoke’ their personal information rights.
o Breaches – if personal information is lost, incorrectly shared or incorrectly accessed you have a breach on your hands. You need an action plan.
o Marketing – know the dos and don’ts when it comes to personal information.
o Social media.
o Websites & data protection.
o Cookies – know where you stand on website cookies.
