Introduction
- Once you have identified the risks, you should put in place measures to control or manage them through a Data Protection/Privacy Programme.
- There are 3 main ways to manage your Data Protection/Privacy Programme:
- Bridge Gaps with an Action Plan, taking action to bridge compliance gaps
- Manage Risks through maintaining a Risk Register for which risks are identified, evaluated and controlled. Prioritise the risks to be addressed first.
- Implement Policies to ensure that all staff understand the do's and don'ts and how to be accountable for the data protection of the personal data of clients, stakeholders, and other relevant data subjects