Event Details
I. Introduction
What is a Privacy Impact Assessment (PIA)
Importance of Privacy Impact Assessments (PIAs)
PIAs and their role in data privacy compliance
II. The Data Privacy Law: key concepts and principles
Understanding Privacy Principles
Data protection laws and regulations
Lawful Processing of Personal Data
The Life Cycle of Data
Privacy Security Measures
III. Preparing for a PIA
Identifying the project or system that requires a PIA
Defining the scope of the PIA
Identifying stakeholders and obtaining their input
Planning the PIA process
IV. Conducting the PIA
Defining the scope of the assessment
Identifying the data flows and information assets
Assessing the risks to privacy
Identifying and evaluating mitigating measures
Documenting and communicating the findings
V. Conducting a Privacy Risk Assessment
Overview of the privacy risk assessment process
Identifying personal data and processing activities
Identifying potential privacy risks
Evaluating the likelihood and severity of each risk
Determining the impact of risks on individuals
Identifying measures to mitigate the risks
VI. Implementing the PIA
Developing a PIA report
Implementing measures identified in the PIA report
Monitoring compliance with measures
VII. Tools and Techniques
Mapping data flows and identifying data assets
Conducting interviews and surveys
Using questionnaires and checklists
Risk assessment methodologies
VIII. Case Studies and Best Practices
Best Practice for Conducting a PIA
Common pitfalls and mistakes to avoid
Sharing Lessons Learned
July 25, 27 & August 1, 2023
1:00 pm to 5:00 pm
via Zoom
Our Resource Speakers
Jun Malacaman
Jun Malacaman is one of the country’s top IT professional and a former President of the Information Systems Security Society of the Philippines (ISSSP). He is one among the very first active advocates of Data Privacy in the country when enforced, in 2017, as a law, under penalty of imprisonment and heavy fines. He has since then provided Data Privacy Compliance training and implementation to hundreds of Data Privacy practitioners and more than a dozen medium and large organizations over the past 4 years.
In this MasterClass Edition, he is focusing on the mastery of planning and conducting the Privacy Impact Assessment (PIA) into an artful experience, and integrating a fully functional, documented Privacy Management Program PMP to embed into the privacy governance of your organization.
Mr. Malacaman has applied his unique but practical approach to training and IT security systems implementation gained over the past 40 years into the challenge of complying with the requirements of the Data Privacy Act of 2012; in accordance with and under the 5-Pillar “proof of compliance” of the National Privacy Commission (NPC)."
Ross Villamil
Ross Villamil is a seasoned and professional Leadership, Human Resource, and Management Consultant specializing in Organizational Development, Change Management, Performance Management and Data Privacy Compliance. In the past 4 years, he has conducted various Privacy Impact Assessments (PIAs) on employee data in varying HR systems for data privacy compliance. Mr. Villamil brings his over 30 years of experience in Human Resource Management to complement the data privacy compliance requirements under the 5-Pillar model of the National Privacy Commission for a simplified approach in protecting employee data.