Accountability Framework – demonstrate your data protection compliance Introduction to the Accountability Framework Leadership and oversight Organisational structure Whether to appoint a DPO Appropriate reporting Operational roles Oversight groups Operational group meetings Policies and procedures Direction and support Review and approval Staff awareness Data protection by design and by default Training and awareness All-staff training programme Induction and refresher training Specialised roles Monitoring Awareness raising Individuals’ rights Informing individuals and identifying requests Resources Logging and tracking requests Timely responses Monitoring and evaluating performance Inaccurate or incomplete information Erasure Restriction Data portability Rights related to automated decision-making and profiling Individual complaints Transparency Privacy notice content Timely privacy information Effective privacy information Automated decision-making and profiling Staff awareness Privacy information review Tools supporting transparency and control Records of processing and lawful basis Data mapping Record of processing activities (ROPA) ROPA requirements Good practice for ROPAs Documenting your lawful basis Lawful basis transparency Consent requirements Reviewing consent Risk-based age checks and parental or guardian consent
07 September 2020 - 0.0.6
3 5 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 47 48 49 50 51 52 53 54 55 1