HECTOR research project
|
|
- Anthony Wilkerson
- 5 years ago
- Views:
Transcription
1
2 HECTOR research project 4-year project expert fields Law Information and Communication Sciences Archival sciences 4 partners Université de Namur CRIDS Université Libre de Bruxelles State Archives Université de Montréal - EBSI
3 Sébastien SOYEZ Promotor State Archives Picture Fiona Fiona ARANGUREN CELORRIO Researcher State Archives Bénédicte LOSDYCK Former researcher Université de Namur (CRIDS) Cécile de TERWANGNE Promotor Université de Namur (CRIDS) Picture Odile Odile VANRECK Researcher Université de Namur (CRIDS) Mathias COECKELBERGS Ph.D. student Université Libre de Bruxelles (MaSTIC) Seth VAN HOOLAND Promotor Université Libre de Bruxelles (MaSTIC) Laurence MAROYE Ph.D. student Université Libre de Bruxelles (MaSTIC) Ettore RIZZA Researcher Université Libre de Bruxelles (MaSTIC) Marie DEMOULIN Promotor Université de Montréal (EBSI) Antoine DELFORGE Researcher Université de Namur (CRIDS) Cécile GAIFFE Former researcher Université de Montréal (EBSI)
4 HECTOR research project 8 Main Case Studies Federal and local Police FPS Employment FASFC FANC FPS Justice and Public Order FPS Fedict (PersoPoint) Municipal Court of the City of Québec National Library and Archives of Québec (BANQ) Interviews in person and by phone +/- 29 Supervision committee gathering once per year +/- 50 members
5 HECTOR research project - deliverables Monograph Title Gestion et conservation de l information au regard de la transition numérique. Cadre légal, normes et pratiques archivistiques. Editor Larcier Date of publication 2018 Website Principle URL Practical support for public sector professionals (Belgium) directly or indirectly involved in day-to-day document management
6 Case studies = analysis of AS-IS situation 1 choice of study subject inspection proceedings Written document in which a qualified public officer relates facts whose veracity he or she has verified and research about which is among his or her competences Definition source: Droit de la procédure pénale (2005)
7 Currently, our systems are compliant if the proceedings are printed, signed and sent as paper documents. Things get more complicated when these documents must be sent electronically, that is to say as a digital document
8 There is no archiving strategy yet with regard to electronic processes because it does not cause any problem.
9 It is an outdated system but indispensable for carrying out research, for administrative ( ) and statistical purposes
10 Hybrid model for managing a workflow
11 Tasks and processing sequence of a file 1. Trigger 5. Decision-making 9. Revision T0 3. Exploration 7. Communication 11. Results 2. Opening 6. Validation 10. Execution 4. Analysis 8. Objection 12. Closure
12 Tasks and processing sequence of a dossier 1. Trigger 5. Decision-making 9. Revision T0 3. Exploration 7. Communication 11. Results 2. Opening To be scheduled beforehand 6. Validation 10. Execution 4. Analysis 8. Objection 12. Closure
13 Management systems for records T0 Interdisciplinary project management
14 ISO 30301:2011 Information and documentation Management systems for records Requirements T0
15 Management system for records T0 Multi-disciplinary project management Tool development Record schedule Filing plan Metadata scheme Management of these tools by taking time into account!
16 Management system for records Multi-disciplinary project management Tool development Record schedule Filing plan Metadata scheme Management of these tools by taking time into account! Change management T0
17 Management system for records Multi-disciplinary project management Tool development Record schedule Filing plan Metadata scheme Management of these tools by taking time into account! Change management Internally or externally? T0
18 T0
19 What about legal aspects? T0 Thoughts on life cycle of documents (creation, management, conservation,...) Many legal texts (at European and national level)
20 eidas and Digital Act T0 e-idas Regulation (no. 910/2014) Electronic identification Trust Services Belgian law Digital Act (21 July 2016) Digital archiving service Digital copies
21 GDPR (public sector) T0 Personal data? Abiding by the GDPR: data collection and destruction Main principles Lawfulness (legal obligation ) Data minimisation principle Security principle Privacy by design Data reliability
22 Organisational obligations of GDPR T0 1 Data Protection Officer (DPO) 2 Records of processing activities (filing plan, records schedule?) 3 Outsourcing 4 Hosting of data in Europe?
23 Other legal texts T0 Directive PSI II (Law of 4 May 2016) Open data format (if possible) Law on archives (24 June 1955 May 2009) Forbidden to destroy administrative documents (records schedule)
24 Tasks and processing sequence of a file: step 1 Accessibility of the administration 1. Trigger Motivation of a request by a service, a complaint Electronic identification Electronic Identity Card (e-id) egov: what about the recording and archiving of transactions? T0 2
25 Tasks and processing sequence of a file: step 2 If hybrid format/media? 2. Opening The file, activity or workflow is officially initiated Opening a file in the system: saving metadata (23081, Dublin Core, internal scheme) (automatic saving?) GDPR: Data collection (minimisation) 1 3
26 Tasks and processing sequence of a file: step 2 2. Opening The file, activity or workflow is officially initiated If hybrid format/media? Opening a file in the system: saving metadata (23081, Dublin Core, internal scheme) (automatic saving?) GDPR: Data collection (minimisation) METADATA Definition of metadata fields (title, description, format) Norms Standards > Adaptation 1 3
27 Tasks and processing sequence of a file: step 2 2. Opening The file, activity or workflow is officially initiated If hybrid format/media? Opening a dossier within the system: saving metadata (23081, Dublin Core, internal scheme) (automatic saving?) GDPR: Data collection (minimisation) METADATA Definition of metadata fields (title, description, format) Norms Standards > Adaptation Characteristics: Data feeding method Mandatory or not 1 3
28 Tasks and processing sequence of a file: step 2 2. Opening The file, activity or workflow is officially initiated If hybrid format/media? Opening a dossier within the system: saving metadata (23081, Dublin Core, internal scheme) (automatic saving?) GDPR: Data collection (minimisation) METADATA Definition of metadata fields (title, description, format) Norms Standards > Adaptation Characteristics: Data feeding method Mandatory or not Data format 1 3
29 Tasks and processing sequence of a file: step 2 If hybrid format/media? 2. Opening The file, activity or workflow is officially initiated Opening a file in the system: saving metadata (23081, Dublin Core, internal scheme) (automatic saving?) GDPR : Data collection (minimisation) 1 3
30 Tasks and processing sequence of a file: step 3 Sharing information: authentic sources 3. Exploration Collecting data and preparing a file for processing the itinial request Reliablitity of collected data: metadata about the source and context must be collected Symbiosis between the different systems: interoperability (internally between the different tools, but also externally) 2 4
31 Tasks and processing sequence of a file: step 4 Use of analysis tools? If automated data analysis: need for indexation? 4. Analysis Collected data is analysed in order to justify the decision about the initial request: accepted or refused Linked data? OCR? Value / Probative force eidas : Non-discrimination principle 3 5
32 Tasks and processing sequence of a file: step 5 5. Decision-making Analysis provides conclusions and objective evidence for taking a positive or negative decision Good management and conservation of metadata in order to guarantee reliability of the systems and of the information collected GDPR: Right not to be subject to automated decision-making (legal exceptions possible) 4 6
33 Tasks and processing sequence of a file: step 6 Automated workflow in the system: need to develop a mapping of processes + to pin down repsonsibilities 6. Validation A higher-ranking supervisor must sometimes validate a decision taken by an expert Impossible to modify the document (access management) Digital signature / digital stamp Preservation of digital signature/ stamp? 5 7
34 Tasks and processing sequence of a file: step 7 7. Communication The initial requester must be informed about the decision. The decision must often be communicated to a different service. Metadata + filing plan allowing to know where personal information is located, thereby avoiding publication of such data. Filing plan: good practices, storing (xls? xml? Management of file history) No digital gap / Accessibility of the administration Which pieces of communication should be conserved? 6 8
35 Tasks and processing sequence of a file: step 8 Legal time limits to be observed (retention schedule) 8. Objection Right to objection against decision if applicable Could such time limits extend beyond closure? Access to and search for information are important 7 9
36 Tasks and processing sequence of a file: step 9 9. Revision Opportunity to rectify or confirm the decision 8 10
37 Tasks and processing sequence of a file: steps 10 and Execution The decision requires the execution of a concrete action Traces must be kept in the system even if other systems are used (for budget for example) Results As a result of the action the file must be complemented New complementary documentation must be added to the file, including the corresponding metadata.
38 Tasks and processing sequence of a file: step 12 Closure? Which criteria? End of operational activities? Or archiving? Or end of objection time limit? Or prescription? File no longer modified? 12. Closure (and follow-up) The activity or service is done and finished 11 Legal aspects? Diversity of texts Digital Act: Conservation and digitization Qualified or non-qualified Internally or externally Publicity of the administration Re-use of public sector information Law on archives GDPR : Minimisation: Anonymisation? Processing for archival purposes in the public interest Transfer to State Archives or destruction: OAIS / PAIMAS standards Does operational closure entail a digitization process? Digitization for qualified digital archiving purposes? For substitution of the paper files?
39 Conclusion hybrid management and information governance Information = Strategic resource Context Abuses Evolution Stakes Protection Valorisation Information governance = global approach
40 Information overview On paper or digital Databases s Intranet Cloud Social media
41 Life cycle 1. Trigger 5. Decision-making 9. Revision T0 3. Exploration 7. Communication 11. Results 2. Opening 6. Validation 10. Execution 4. Analysis 8. Objection 12. Closure
42 Stakeholder overview Interdisciplinarity Hierarchical support CIO Information governance instance (Chief Information Officer) Users
43 Rules overview Judicial norms Technical norms Reference frameworks policies guidelines
44 Thank you for your attention
eidas Regulation eid and assurance levels Outcome of eias study
eidas Regulation eid and assurance levels Outcome of eias study Dr. Marijke De Soete Security4Biz (Belgium) ETSI eidas Workshop 24 June 2015 Sophia Antipolis eidas Regulation Regulation on electronic identification
More informationGDPR RECRUITMENT POLICY
> General characteristics Company Credendo Export Credit Agency Date 12/12/2018 Version 1.2 Classification Public Status Final Document reference GDPR Recruitment Policy Revision frequency Ad hoc Document
More informationImpacts of the GDPR in Afnic - Registrar relations: FAQ
Impacts of the GDPR in Afnic - Registrar relations: FAQ Background The adoption of Regulation (Eu) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural
More informationExploring archives with probabilistic models: Topic modelling for the European Commission Archives
Exploring archives with probabilistic models: Topic modelling for the European Commission Archives Simon Hengchen, Mathias Coeckelbergs, Seth van Hooland, Ruben Verborgh & Thomas Steiner Université libre
More informationThis Policy has been prepared with due regard to the General Data Protection Regulation (EU Regulation 2016/679) ( GDPR ).
PRIVACY POLICY Data Protection Policy 1. Introduction This Data Protection Policy (this Policy ) sets out how Brital Foods Limited ( we, us, our ) handle the Personal Data we Process in the course of our
More informationGuardian Electrical Compliance Ltd DATA PROTECTION GDPR REGULATIONS POLICY
1. Statement of Policy (Guardian) needs to collect and use certain types of information about the Individuals or Service Users with whom they come into contact in order to carry on our work. This personal
More informationThis document is a preview generated by EVS
INTERNATIONAL STANDARD ISO 15489-1 Second edition 2016-04-15 Information and documentation Records management Part 1: Concepts and principles Information et documentation Gestion des documents d activité
More informationRetention & Archiving Policy
Retention & The IES has a responsibility to look after the personal data we collect, including information about our members, employees, event attendees and people browsing our websites. As outlined in
More informationIdentity Ecosystem Design challenges. Wim Coulier eidas Expert Belgian Mobile ID
Identity Ecosystem Design challenges Wim Coulier eidas Expert Belgian Mobile ID Belgian Mobile ID respects the guidelines provided by is the reference for digital identification and authentication in Belgium
More informationeidas Regulation in the context of Cybersecurity: Electronic seals and website certificates: Two sides of a (gold) medal?
eidas Regulation in the context of Cybersecurity: Electronic seals and website certificates: Two sides of a (gold) medal? public 1 AGENDA 1. eidas Strategic View 2. Website Certificates 3. Electronic Seals
More informationPRIVACY STATEMENT August 2018
PRIVACY STATEMENT August 2018 1 ABOUT GDPR GDPR, or the General Data Protection Regulation is a new set of EU regulations set to come into force, as a replacement to the existing Data Protection Act. It
More informationTHE NEW EU DATA PROTECTION REGULATION: WHAT IS IT AND WHAT DO WE NEED TO DO? KALLIOPI SPYRIDAKI CHIEF PRIVACY STRATEGIST, EUROPE
THE NEW EU DATA PROTECTION REGULATION: WHAT IS IT AND WHAT DO WE NEED TO DO? KALLIOPI SPYRIDAKI CHIEF PRIVACY STRATEGIST, EUROPE EU DATA PROTECTION REGULATION Kalliopi Spyridaki Chief Privacy Strategist,
More informationTerms in the glossary are listed alphabetically. Words highlighted in bold are defined in the Glossary.
Glossary 2010 The Records Management glossary is a list of standard records terms used throughout CINA s guidance and training. These terms and definitions will help you to understand and get the most
More informationEU GDPR and . The complete text of the EU GDPR can be found at What is GDPR?
EU GDPR and Email The EU General Data Protection Regulation (GDPR) is the new legal framework governing the use of the personal data of European Union (EU) citizens across all EU markets. It replaces existing
More informationFAMHP Portal - User manual
FAMHP Portal - User manual 1. Introduction... 2 2. Having a "Chief Access Manager" (CAM)... 3 2.1 Who can be a Chief Access Manager (CAM)?... 3 2.2 How to appoint a Chief Access Manager (CAM)?... 3 2.2.1
More informationCNPD Course: Data Protection Basics
CNPD Course: Data Protection Basics Presentation of Luxembourg s data protection authority Esch-sur-Alzette (Belval) Dani Jeitz 4-6 July 2017 Legal department Introduction to data protection 1. Introduction
More informationPrivacy Statement for Use of the Trust Service of Swisscom IT Services Finance S.E., Austria
Privacy Statement for Use of the Trust Service of Swisscom IT Services Finance S.E., Austria General Privacy is a matter of trust, and your trust is important to us. Handling personal data in a responsible
More informationVirginia Commonwealth University School of Medicine Information Security Standard
Virginia Commonwealth University School of Medicine Information Security Standard Title: Scope: Removable Storage Media Security Standard This standard is applicable to all VCU School of Medicine personnel.
More informationVirginia Commonwealth University School of Medicine Information Security Standard
Virginia Commonwealth University School of Medicine Information Security Standard Title: Scope: Personnel Security Standard This standard is applicable to all VCU School of Medicine personnel. Approval
More informationACCOUNTING TECHNICIANS IRELAND DATA PROTECTION POLICY GENERAL DATA PROTECTION REGULATION
ACCOUNTING TECHNICIANS IRELAND DATA PROTECTION POLICY GENERAL DATA PROTECTION REGULATION Document Control Owner: Distribution List: Data Protection Officer Relevant individuals who access, use, store or
More informationStandardization for DRR: Opportunities or barriers?
Standardization for DRR: Opportunities or barriers? 4 June, 2018 Stefan Tangen, stefan.tangen@msb.se Swedish Civil Contingencies Agency (MSB) IFAFRI ISO/TC 292 Security and resilience Example on cargo
More informationISO TC46/SC11 Archives/records management
ISO TC46/SC11 Archives/records management GUIDANCE FOR IMPLEMENTING DOCUMENTED INFORMATION CLAUSE USING PROCESSES AND CONTROLS OF ISO 30301:2011 Management system for records EXPLANATORY PAPER NOVEMBER
More informationPRIVACY NOTICE (TIER 4)
Page: 1 of 6 1. Scope All data subjects whose personal data is collected, in line with the requirements of the GDPR. 2. Responsibilities 2.1 The Data Protection Officer / GDPR Owner is responsible for
More informationDATA PROTECTION A GUIDE FOR USERS
DATA PROTECTION A GUIDE FOR USERS EN Contents Introduction 5 Data protection standards - making a difference in the European Parliament 7 Data protection the actors 8 Data protection the background 9 How
More informationPrivacy Policy. You may exercise your rights by sending a registered mail to the Privacy Data Controller.
Privacy Policy Revision date: April, 26th 2018 Privacy and security of personal data are of utmost importance to epresspack and we strive to ensure that our technical and organisational measures we have
More informationContract Services Europe
Contract Services Europe Procedure for Handling of Page 1 of 10 1. INTRODUCTION This procedure document supplements the data request and subject access request (SAR) provisions set out in DPS Contract
More informationDCU Guide to Subject Access Requests. Under Irish Data Protection Legislation
DCU Guide to Subject Access Requests Under Irish Data Protection Legislation Context Under section 4 of the Irish Data Protection Acts 1988 & 2003 an individual, on making a written request to DCU, may
More informationPrivacy Policy Hafliger Films SpA
Hafliger Films SpA, with registered office at Via B. Buozzi no. 14-20089 Rozzano (MI), has for many years considered it of fundamental importance to protect the personal details of customers and suppliers,
More informationBlue Alligator Company Privacy Notice (Last updated 21 May 2018)
Blue Alligator Company Privacy Notice (Last updated 21 May 2018) Who are we? Blue Alligator Company Limited (hereafter referred to as BAC ) is a company incorporated in England with company registration
More informationPERSONAL DATA PROTECTION POLICY
PERSONAL DATA PROTECTION POLICY With a view to protecting the privacy and data of its contacts (users of its website, contacts made at professional meetings, or through records, projects, partnerships,
More informationDATA PROTECTION POLICY THE HOLST GROUP
DATA PROTECTION POLICY THE HOLST GROUP INTRODUCTION The purpose of this document is to provide a concise policy regarding the data protection obligations of The Holst Group. The Holst Group is a data controller
More informationCall for Expressions of Interest
Call for Expressions of Interest ENISA M/CEI/17/T01 Experts for assisting in the implementation of the annual ENISA Work Programme TECHNICAL DESCRIPTION CONTENTS TECHNICAL DESCRIPTION... 3 1. INTRODUCTION...
More informationOpen Archives Initiatives Protocol for Metadata Harvesting Practices for the cultural heritage sector
Open Archives Initiatives Protocol for Metadata Harvesting Practices for the cultural heritage sector Relais Culture Europe mfoulonneau@relais-culture-europe.org Community report A community report on
More informationPRIVACY STATEMENT +41 (0) Rue du Rhone , Martigny, Switzerland.
PRIVACY STATEMENT +41 (0) 225349799 www.energymarketprice.com Rue du Rhone 5 1921, Martigny, Switzerland dpo@energymarketprice.com Introduction Your privacy and trust are important to us and this Privacy
More informationPrivacy Policy: Data & Information Security Policy Last revised: 9 May 2018
Privacy Policy: Data & Information Security Policy Last revised: 9 May 2018 This privacy notice tells you what to expect when Bristol SU Lettings ( Bristol SU Lettings, Lettings, we, us ) collects or processes
More informationLatest version, please translate and adapt accordingly!
Latest version, please translate and adapt accordingly! EDM Website Privacy Notice template Ford.xx Short Website Privacy Notice This Short Website Privacy Notice summarizes the terms and conditions of
More informationBHConsulting. Your trusted cybersecurity partner
Your trusted cybersecurity partner BH Consulting Securing your business BH Consulting is an award-winning, independent provider of cybersecurity consulting and information security advisory services. Recognised
More informationElectronic signature framework
R E P U B L I C O F S E R B I A Negotation Team for the Accession of Republic of Serbia to the European Union Working Group for Chapter 10 Information society and media Electronic signature framework Contents
More informationenter into application on 25 May 2018
General Data Protection Regulation What is GDPR? Is GDPR applicable for you? Which actions are required from you (and us)? Which rights do your clients have and which services can KBC Securities s provide
More informationeidas Workshop Return on Experience from Conformity Assessment Bodies - EY June 13, 2016 Contacts: Arvid Vermote
eidas Workshop Return on Experience from Conformity Assessment Bodies - EY June 13, 2016 Contacts: Arvid Vermote arvid.vermote@be.ey.com EY eidas Certification scheme Scheme EY CertifyPoint B.V. is currently
More informationArchives in a Networked Information Society: The Problem of Sustainability in the Digital Information Environment
Archives in a Networked Information Society: The Problem of Sustainability in the Digital Information Environment Shigeo Sugimoto Research Center for Knowledge Communities Graduate School of Library, Information
More informationData Protection Policy
Data Protection Policy Addressing the General Data Protection Regulation (GDPR) 2018 [EU] and the Data Protection Act (DPA) 2018 [UK] For information on this Policy or to request Subject Access please
More informationEXAM PREPARATION GUIDE
EXAM PREPARATION GUIDE PECB Certified Data Protection Officer The objective of the PECB Certified Data Protection Officer examination is to ensure that the candidate has acquired the knowledge and skills
More informationPRINCIPLES AND FUNCTIONAL REQUIREMENTS
INTERNATIONAL COUNCIL ON ARCHIVES PRINCIPLES AND FUNCTIONAL REQUIREMENTS FOR RECORDS IN ELECTRONIC OFFICE ENVIRONMENTS RECORDKEEPING REQUIREMENTS FOR BUSINESS SYSTEMS THAT DO NOT MANAGE RECORDS OCTOBER
More informationWE ARE COMMITTED TO PROTECTING YOUR PERSONAL DATA
WE ARE COMMITTED TO PROTECTING YOUR PERSONAL DATA In accordance with the new Regulation (EU) 2016/679 on the protection of personal data (GDPR), we ask you to give your consent on the use of Cookies, for
More informationEuropean Commission s proposal for a Regulation on Electronic identification and trust services for electronic transactions in the EU internal market
European Commission s proposal for a Regulation on Electronic identification and trust services for electronic transactions in the EU internal market Gérard GALLER Policy Officer European Commission -
More informationAccountability Conceptual Framework
Accountability Conceptual Framework Massimo Felici, HP Trust in the Digital World and Cyber Security & Privacy EU Forum Brussels,18 th April 2013 Motivations for an accountability-based approach Drivers
More informationPrivacy Statement for Use of the Certification Service of Swisscom (sales name: "All-in Signing Service")
Swisscom (sales name: "All-in Signing Service") General Privacy is a matter of trust, and your trust is important to us. Handling personal data in a responsible and legally compliant manner is a top priority
More informationTrust and Certification: the case for Trustworthy Digital Repositories. RDA Europe webinar, 14 February 2017 Ingrid Dillo, DANS, The Netherlands
Trust and Certification: the case for Trustworthy Digital Repositories RDA Europe webinar, 14 February 2017 Ingrid Dillo, DANS, The Netherlands Perhaps the biggest challenge in sharing data is trust: how
More informationTechnical guidelines implementing eidas
Technical guidelines implementing eidas Sławek Górniak CA/Day Berlin 19 th September 2016 European Union Agency for Network and Information Security About ENISA 2 Positioning ENISA activities 3 ENISA and
More informationA Homeopath Registered Homeopath
A Homeopath Registered Homeopath DATA PROTECTION POLICY Scope of the policy This policy applies to the work of homeopath A Homeopath (hereafter referred to as AH ). The policy sets out the requirements
More informationGDPR Data Protection Policy
GDPR Data Protection Policy Volleyball England 2018 VE Data Protection Policy May 2018 Page 1 GDPR Data Protection Policy 1. Introduction This Policy sets how the English Volleyball Association Limited
More informationTransferring vital e-records to a trusted digital repository in Catalan public universities (the iarxiu platform)
Transferring vital e-records to a trusted digital repository in Catalan public universities (the iarxiu platform) Miquel Serra Fernàndez Archive and Registry Unit, University of Girona Girona, Spain (Catalonia)
More informationGDPR - How it may clear up the digital market. Anett Mádi-Nátor, Cyber Services Plc.
GDPR - How it may clear up the digital market Anett Mádi-Nátor, Cyber Services Plc. Setting the scene Cybercrime costs 2017-2021 Cybercrime cost estimates have risen from $400 billion in early 2015 to
More informationImportance of the Data Management process in setting up the GDPR within a company CREOBIS
Importance of the Data Management process in setting up the GDPR within a company CREOBIS 1 Alain Cieslik Personal Data is the oil of the digital world 2 Alain Cieslik Personal information comes in different
More informationExtension Architecture Privacy Notice
Extension Architecture Privacy Notice Extension Architecture understands that your privacy is important to you and that you care about how your personal data is used. We respect and value the privacy of
More informationPrivacy Statement. Your privacy and trust are important to us and this Privacy Statement ( Statement ) provides important information
Privacy Statement Introduction Your privacy and trust are important to us and this Privacy Statement ( Statement ) provides important information about how IT Support (UK) Ltd handle personal information.
More informationPathways CIC Privacy Policy. Date Issued: May Date to be Reviewed: May Issued by Yvonne Clarke
Prepared by: M Franklin Issued: May 2018 Pathways Community Interest Company Review due: May 2020 Pathways CIC Privacy Policy Version 0.3 Approved by: Yvonne Clarke Approval date: 21.05.2018 Pathways CIC
More informationCian Kinsella CEO, Digiprove
Cian Kinsella CEO, Digiprove cian.kinsella@digiprove.com Malaga 7 th June 2013 Been developing software since 1972 Commercial and Freelance Co-founder of 3 Software Product Companies Have had many different
More informationETSI ESI and Signature Validation Services
ETSI ESI and Signature Validation Services Presented by: Andrea Röck For: Universign and ETSI STF 524 expert 24.10.2018 CA day ETSI 2018 Agenda Update on standardisation under eidas Signature validation
More informationInternet copy. EasyGo security policy. Annex 1.3 to Joint Venture Agreement Toll Service Provider Agreement
EasyGo security policy Annex 1.3 to Joint Venture Agreement Toll Service Provider Agreement This copy of the document was published on and is for information purposes only. It may change without further
More informationOur Data Privacy Statement Scope Responsibilities
At Pupil Asset we have always taken data privacy seriously. We have embraced the new EU GDPR legislation and how it reinforces existing data protection law. We should all want and expect to know who is
More informationPOLICY TITLE: Record Retention and Destruction POLICY NO: 277 PAGE 1 of 6
POLICY TITLE: Record Retention and Destruction POLICY NO: 277 PAGE 1 of 6 North Gem School District No. 149 establishes the following guidelines to provide administrative direction pertaining to the retention
More informationCommunity Development and Recreation Committee
STAFF REPORT ACTION REQUIRED CD13.8 Toronto Paramedic Services Open Data Date: June 3, 2016 To: From: Wards: Reference Number: Community Development and Recreation Committee Chief, Toronto Paramedic Services
More information- GDPR (General Data Protection Regulation) is the new Data Protection Regulation of the European Union;
PRIVACY NOTICE INTRODUCTION During the operation of the website data controller processes the data of persons registered on the website in order to be able to provide them with adequate services. Service
More informationGLOBAL DATA PROTECTION POLICY
GLOBAL DATA PROTECTION POLICY BRS UK Version 1.0 TABLE OF CONTENTS SCOPE 2 COLLECTION AND PROCESSING USE OF YOUR PERSONAL DATA 2 Compliance with the European data protection law and any additional applicable
More informationGRAHAM JONES - PRIVACY POLICY
GRAHAM JONES - PRIVACY POLICY BACKGROUND: Graham Jones understands that your privacy is important to you and that you care about how your personal data is used. I respect and value the privacy of all of
More informationMembership Privacy Notice. 31 August 2018
Membership Privacy Notice 31 August 2018 HOW WE USE YOUR INFORMATION Why we use your personal data: We typically use your personal information to comply with our legal obligations (such as checking your
More informationeidas Regulation (EU) 910/2014 eidas implementation State of Play
eidas Regulation (EU) 910/2014 eidas implementation State of Play CA-Day 19 September 2016 Elena Alampi DG CONNECT, European Commission elena.alampi@ec.europa.eu eidas The Regulation in a nutshell 2 MAIN
More informationCisco Spark and GDPR. Thomas Flambeaux. Collaboration Consulting Solution Engineer, Security and Compliance. Cisco Connect 2018 Copenhagen April 12th
Cisco Spark and GDPR Thomas Flambeaux Collaboration Consulting Solution Engineer, Security and Compliance Cisco Connect 2018 Copenhagen April 12th 2015 Cisco and/or its affiliates. All rights reserved.
More informationData Subject Access Request Form (GDPR)
Data Subject Access Request Form (GDPR) Article 15 of the EU General Data Protection Regulation (Regulation (EU) 2016/679) (GDPR) grants you the right to access your personal data held by Marshall ADG,
More informationNavigating ISO 9001:2015
Navigating ISO 9001:2015 Why the new ISO 9001 revision matters to everyone White paper Abstract This white paper takes a concise, yet detailed look at the ISO 9001:2015 revision. Published in September
More informationToward Horizon 2020: INSPIRE, PSI and other EU policies on data sharing and standardization
Toward Horizon 2020: INSPIRE, PSI and other EU policies on data sharing and standardization www.jrc.ec.europa.eu Serving society Stimulating innovation Supporting legislation The Mission of the Joint Research
More informationeidas-compliant signing of PDF
PDF Days Europe 2018 eidas-compliant signing of PDF Technical implications of eidas conformance in PDF processing Bernd Wild intarsys AG, Member of the Board of A Presentation 2018 by!11 72% of EU individuals
More informationPS Mailing Services Ltd Data Protection Policy May 2018
PS Mailing Services Ltd Data Protection Policy May 2018 PS Mailing Services Limited is a registered data controller: ICO registration no. Z9106387 (www.ico.org.uk 1. Introduction 1.1. Background We collect
More informationMNsure Privacy Program Strategic Plan FY
MNsure Privacy Program Strategic Plan FY 2018-2019 July 2018 Table of Contents Introduction... 3 Privacy Program Mission... 4 Strategic Goals of the Privacy Office... 4 Short-Term Goals... 4 Long-Term
More informationISO/IEC Information technology Security techniques Code of practice for information security controls
INTERNATIONAL STANDARD ISO/IEC 27002 Second edition 2013-10-01 Information technology Security techniques Code of practice for information security controls Technologies de l information Techniques de
More informationSAS SEEKEWA, 369 Rue des Alizés Marcory Abidjan - Republic of Côte d' Ivoire
www.seekewa.com privacy policy This application collects personal data from its users. Data controller and owner SAS SEEKEWA, 369 Rue des Alizés Marcory Abidjan - Republic of Côte d' Ivoire Owner's contact
More informationGLOBAL DATA PROTECTION POLICY
GLOBAL DATA PROTECTION POLICY Last update: April 2nd, 2018 SCOPE 3 COLLECTION AND PROCESSING USE OF YOUR PERSONAL DATA 3 Compliance with the European Data Protection Law and any additional applicable data
More informationWorkshop 4.4: Lessons Learned and Best Practices from GI-SDI Projects II
Workshop 4.4: Lessons Learned and Best Practices from GI-SDI Projects II María Cabello EURADIN technical coordinator On behalf of the consortium mcabello@tracasa.es euradin@navarra.es Scope E-Content Plus
More informationRefreshing Your Records Management. Tracy Rebstock, Southwest Regional Archivist
Refreshing Your Records Management Tracy Rebstock, Southwest Regional Archivist WASBO Conference 2017 Overview What is a Public Record? Disposition Authority Records Retention Schedules Non-Archival/Archival
More informationPRIVACY STATEMENT FOR DATA COLLECTED FOR DATA COLLECTED VIA ON-LINE SURVEYS
PRIVACY STATEMENT FOR DATA COLLECTED FOR DATA COLLECTED VIA ON-LINE SURVEYS This privacy statement explains how the Fuel Cells and Hydrogen 2 Joint Undertaking (here after referred to as FCH 2 JU) uses
More informationNOTIFICATION FOR PRIOR CHECKING INFORMATION TO BE GIVEN(2)
To be filled out in the EDPS' office REGISTER NUMBER: 0507 NOTIFICATION FOR PRIOR CHECKING Date of submission: 25/05/2009 Case number: 2009-377 Institution: Commission Legal basis: article 27-5 of the
More informationElement Finance Solutions Ltd Data Protection Policy
Element Finance Solutions Ltd Data Protection Policy CONTENTS Section Title 1 Introduction 2 Why this Policy Exists 3 Data Protection Law 4 Responsibilities 5 6 7 8 9 10 Data Protection Impact Assessments
More informationTERMS AND CONDITIONS OF PROVIDING ELECTRONIC SERVICES. 1. General provisions
TERMS AND CONDITIONS OF PROVIDING ELECTRONIC SERVICES 1. General provisions 1. Under Article 8.1.1 of the Polish Law of 18 July 2002 on the Provision of Electronic Services (Journal of Laws of 2016, item
More informationFederal Rules of Civil Procedure IT Obligations For
Federal Rules of Civil Procedure IT Obligations For Email Message Logic is a business unit of Data Storage Corporation. 212-564-4922 www.messagelogic.net or www.datastoragecorp.com 2013 Data Storage Corporation,
More informationDIGITAL AGENDA FOR EUROPE
DIGITAL AGENDA FOR EUROPE Talk overview Background Institutional framework Administrative capacities Electronic Communications Strategy, Information Society Strategy Current and future activities. Background
More informationRecords Retention 101 for Local Government Agencies. Overview
Records Retention 101 for Local Government Agencies YVCOG-hosted Training Union Gap, 9/21/2017 Washington State Archives Scott Sackett, Electronic Records Management Consultant scott.sackett@sos.wa.gov
More informationWonde may collect personal information directly from You when You:
Privacy Policy Updated: 17th April 2018 1. Scope At Wonde, we take privacy very seriously. We ve updated our privacy policy ( Policy ) to ensure that we communicate to You, in the clearest way possible,
More informationInteroperability & Archives in the European Commission
Interoperability & Archives in the European Commission By Natalia ARISTIMUÑO PEREZ Head of Interoperability Unit at Directorate- General for Informatics (DG DIGIT) European Commission High value added
More informationPlan a Pragmatic Approach to the new EU Data Privacy Regulation
AmChamDenmark event: EU Compliant & Cyber Resistant Plan a Pragmatic Approach to the new EU Data Privacy Regulation Janus Friis Bindslev, Partner Cyber Risk Services, Deloitte 4 February 2016 Agenda General
More informationArchitecture and Standards Development Lifecycle
Architecture and Standards Development Lifecycle Architecture and Standards Branch Author: Architecture and Standards Branch Date Created: April 2, 2008 Last Update: July 22, 2008 Version: 1.0 ~ This Page
More informationDigital Preservation at NARA
Digital Preservation at NARA Policy, Records, Technology Leslie Johnston Director of Digital Preservation US National Archives and Records Administration (NARA) ARMA, April 18, 2018 Policy Managing Government
More informationCreative Funding Solutions Limited Data Protection Policy
Creative Funding Solutions Limited Data Protection Policy CONTENTS Section Title 1 Introduction 2 Why this Policy Exists 3 Data Protection Law 4 Responsibilities 5 6 7 8 9 10 Data Protection Impact Assessments
More informationINCLUDE-ED PRIVACY POLICY
INCLUDE-ED PRIVACY POLICY BACKGROUND: Include-ed Limited understands that your privacy is important to you and that you care about how your personal data is used and shared. We respect and value the privacy
More informationWhat options NETIM offers, including those related to gaining of access to and updating of information.
NETIM - Personal data processing policy Effective as of May 25, 2018 DEFINITIONS Data Subject means an identified or identifiable natural person; an identifiable natural person is one who can be identified,
More informationPRIVACY POLICY OF THE WEB SITE
PRIVACY POLICY OF THE ERANOS FOUNDATION Introductory remarks The Eranos Foundation respects your privacy! Privacy policy EU Norm 2016-769 GDPR 1 We do not sell or distribute any information that we acquire
More informationSemantic Interoperability of Basic Data in the Italian Public Sector Giorgia Lodi
Semantic Interoperability of Basic Data in the Italian Public Sector Giorgia Lodi SEMIC conference 2013 21 June 2013 Dublin (AgID) Created last year, AgID is a public body that merged three different existing
More information"Charting the Course... Certified Information Systems Auditor (CISA) Course Summary
Course Summary Description In this course, you will perform evaluations of organizational policies, procedures, and processes to ensure that an organization's information systems align with overall business
More informationEuropean Risk Management Certification. Candidate Information Guide
European Risk Management Certification Candidate Information Guide Presentation of FERMA Certification 3 Benefits 4 Eligibility criteria 5 Application and fees Examination details Syllabus: FERMA rimap
More information