Contact FutureLearn for Support Skip main navigation
We use cookies to give you a better experience, if that’s ok you can close this message and carry on browsing. For more info read our cookies policy.
We use cookies to give you a better experience. Carry on browsing if you're happy with this, or read our cookies policy for more information.

Skip to 0 minutes and 9 secondsLet’s take a look at the various regulations that protect our privacy. They’re united under the banner of the European General Protection Data Regulation (GPDR). This European regulation will be implemented starting in May 2018 and will apply to all companies that use customer and prospect data as well as patient data in the case of healthcare services. It’s the new CNIL data protection law, as it’s known in France but also in all Europe. You can look at a great visual representation of the 99 articles that make up this law by clicking on the link below this video. One of the guiding principles behind this law is privacy design,

Skip to 0 minutes and 49 secondsor the principle that all people have the right to 17 00:00:52.400 --> 00:00:54.400 the highest level of protection.

Skip to 0 minutes and 54 secondsAs a result, our right to access, modify and delete personal data will be greatly improved. If you’re in charge of implementing this law for your company, here are the steps the CNIL and the E.U.

Skip to 1 minute and 7 secondsorganization advise you to follow: First, designate a leader who will be in charge of coordinating data protection. The leader will guide how you manage personal data. He or she will inform and train employees as well as provide advice and verify implementation. as provide advice and verify implementation. To understand the impact of this new regulation, you have to clearly analyze how you collect and use personal data. It’s recommended that you create a registry to record data use. Third, prioritize which actions are most important according to how much risk you face in terms of data protection and the rights of involved parties.

Skip to 1 minute and 54 secondsIf you have identified any uses of personal data that present a high risk in terms of personal data protection and rights, you need to implement a specific impact analysis for this process. Fourth, organize your internal processes. To ensure the highest level of data protection, set up internal processes that always take into account data protection. You have to consider all actions that can impact data throughout its lifecycle.

Skip to 2 minutes and 28 secondsFor example: security risks, managing requests for modification or access, modifying data, or changing service providers. Finally, carefully document you work. To prove your compliance with the regulation, you have to create and organize all related documentation. To ensure continuous protection, you should analyze and update all actions and documents related to data. Great, you’re now in compliance! Bravo!

The GPDR

Let’s take a look at the various regulations that protect our privacy. They’re united under the banner of the European General Protection Data Regulation (GPDR).

This European regulation will be implemented starting in May 2018 and will apply to all companies that use customer and prospect data as well as patient data in the case of healthcare services. It’s the new CNIL data protection law, as it’s known in France. You can look at a great visual representation of the 99 articles that make up this law by clicking on the link below this video.

One of the guiding principles behind this law is privacy design, or the principle that all people have the right to the highest level of protection. As a result, our right to access, modify and delete personal data will be greatly improved. If you’re in charge of implementing this law for your company, here are the steps the CNIL and the E.U. organization advise you to follow:

  • First, designate a leader who will be in charge of coordinating data protection. The leader will guide how you manage personal data. He or she will inform and train employees as well as provide advice and verify implementation.

  • Second, map out how you use personal data. To understand the impact of this new regulation, you have to clearly analyze how you collect and use personal data. It’s recommended that you create a registry to record data use.

  • Third, prioritize which actions are most important according to how much risk you face in terms of data protection and the rights of involved parties.

If you have identified any uses of personal data that present a high risk in terms of personal data protection and rights, you need to implement a specific impact analysis for this process.

  • Fourth, organize your internal processes. To ensure the highest level of data protection, set up internal processes that always take into account data protection. You have to consider all actions that can impact data throughout its lifecycle. For example: security risks, managing requests for modification or access, modifying data, or changing service providers.

  • Finally, carefully document you work. To prove your compliance with the regulation, you have to create and organize all related documentation. To ensure continuous protection, you should analyze and update all actions and documents related to data.

Great, you’re now in compliance! Bravo!

This video is from the free online course:

Digital Transformation of Businesses and Services

Grenoble Ecole de Management

Course highlights Get a taste of this course before you join: