Today’s session started by looking at the context in which your data or innovation project is taking place. The internal, external and legal context all influence how you will balance the protection of privacy and personal data with the commitment to transparency and openness. This session gave a short overview of instruments you can use to integrate data protection in your data processing practices. From a risk assessment and Privacy Impact Assessment to the more human centric data protection instrument of de-identifying data, consent and proactive communication, data collection and data minimization, and access controls and data management. It is important to remember that when developing the data processing system, one should talk to the developer and include mechanisms for a security audit, like logging an audit trail.
The next sessions will explore these instruments, enjoy.