Developing a privacy training program for employees

Workshop, The Canadian Institute, Toronto, November 7th, 2013. Link to the event

November 7, 2013

While privacy policies are an important step in ensuring the protection of your organization’s data, even the most comprehensive policy will be ineffective if your employees – those accessing the data on a daily basis – do not fully comprehend or implement it. In this interactive workshop with expert practitioner, Éloïse Gratton, you will gain comprehensive guidance and invaluable feedback for developing a privacy training program for employees across your entire organization.

Advice on what should be included in a complete employee training program
The importance of adopting policies for the protection of personal information:

– content and management of these policies;

– destruction of documents containing personal information

and the importance of adopting retention periods and deadlines;

Training the various departments across your organization:

– IT department and general training on the management of personal information:

– security of information during storage and transfer (via facsimile, email and mail)

– aspects surrounding issues of breaches of security

– Customer Service:

– the lawfulness of the collection, use and transfer of certain personal information

for identification purposes

– how to manage access requests

– Privacy and Human Resources:

– aspects relating to recruitment

– aspects relating to employee surveillance

– aspects with respect to the management of new types of information

(biometric data, location data, etc.)

– Marketing department and website:

– aspects relating to advertising via email, and the requirements and

penalties set out in anti-spam legislation;

– issues of advertising and new media, blogs and advertising directed at children;

– aspects relating to terms and conditions of use and privacy policies for Websites;

– management of the content, the management of blogs, aspects surrounding

issues of defamation and damage to reputation; and

– issues with respect to the lawfulness of the use of web analytics tools

– Managing social media issues

– developing the content for a social media policy

– presence of your organization on social media sites and liability issues

– validity and admissibility of evidence obtained through social media

This content has been updated on August 23, 2014 at 14 h 13 min.

Éloïse Gratton

Privacy & Data Protection Law

Developing a privacy training program for employees

Data governance and privacy risks in Canada: A checklist for boards and c-suite

An Update on New Québec Confidentiality Incidents and Record-Keeping Requirements

The inside scoop on how to become a privacy lawyer: 10 tips from the top

Preparing for the Privacy Reform in Canada

Getting Ready for Québec’s New Privacy Law in 2023 (Part 1): Using what we know so far

Getting Ready for Quebec’s New Privacy Law in 2023 (Part 2): Navigating uncertainty in the Law

Une fugitive recherchée depuis 30 ans, capturée à Berlin grâce à la reconnaissance faciale

CBC Windsor Morning Radio Show

La Cour suprême vient compliquer les cyberenquêtes

Une fugitive capturée à Berlin grâce à la reconnaissance faciale

Aide-mémoire en matière de protection de la vie privée et de sécurité des renseignements personnels

Lucky 7 data privacy and security cheat sheet