Data Protection Officer advises staff as to their data protection responsibilities and promotes awareness of data protection issues through the publication of the company’s policies and procedures on personal data management.
The Data Protection Officer shall ensure that all staff with day to day responsibilities involving personal data and processing operations and those with permanent or regular access to personal data, demonstrate compliance with the GDPR.
Members of staff are able to demonstrate competence in their understanding of the GDPR through successful completion of the on-line GDPR training package or alternative training being provided to who do not have access to computer facilities.
The Data Protection Officer ensures that these members of staff are kept up to date and informed of any issues related to personal data through the circulation of frequent advisory notices and briefings via the company intranet and internal communications.
The Corporate Management Team promote training and awareness programmes and company ‘s shall make resources available in order to raise awareness.
The Data Protection Officer shall demonstrate and communicate to staff the importance of data protection in their role and ensure that they understand how and why personal data is processed in accordance with the company ‘s policies and procedures.
The Data Protection Officer ensures that all security requirements related to data protection are demonstrated and communicated to all staff to the same effect.
Staff are provided with training on processing personal data relevant to their roles and responsibilities and in accordance with the company’s policies and procedures.
Staff are provided with specific training on any information security requirements and procedures applicable to data protection and the data processing within their individual day to day roles and responsibilities, including reporting personal data breaches.
Staff are provided with training on dealing with complaints relating to data protection and processing personal data.
Human Resources (HR) Department retain records of the relevant training undertaken by each person who has this level of responsibility.
The Data Protection Officer and HR Department are responsible for organising relevant training for all responsible individuals and staff generally and for maintaining records of the attendance of staff at relevant training at appropriate times across the company’s normal business cycle and operations.