Implementing a Privacy, Risk, and Assurance Program

Learn how to build and scale a program to ensure customer data and your own reputation.

Introduction

• Building a privacy program from scratch
• Why you need a cross-functional privacy program
• Course objectives

1. Privacy: How You Got Here

• What does privacy mean and how does it relate to security?
• A history of privacy
• How we got to this moment

2. Why You Need a Privacy Program

• Data: Risks and rewards
• Privacy: Trust and safety
• Privacy and regulations
• Privacy, GDPR, CCPA, and beyond
• Privacy and security
• Privacy and industry pressure
• Privacy and finance
• Privacy and the board of directors

3. An Operating Model for Privacy

• Build vs. buy
• Decentralized vs. centralized
• The Executive Privacy Working Group (EPWG)
• Roles and responsibilities in the EPWG
• Privacy leadership and the chief privacy officer
• The operating privacy team

4. Building Strategic Privacy Capabilities

• Data classification
• Data inventory
• Data sharing
• Privacy reviews
• Third-party risk assessment

5. Building Operational Privacy Solutions

• Data deletion
• Data export
• Consent management
• User transparency features
• Privacy metrics

Conclusion

• Next steps