如何让董事会重视隐私：高效沟通策略.pdf

1、Getting the Board on Board:How to Effectively Communicate Privacy to the BoardReuven EidelmanHead of Legal Israel Privacy Protection AuthorityVojtek KarpukSr Corporate Counsel BWH HotelsCourtney StoutChief Privacy OfficerThe Coca-Cola Co.David ZetoonyCo-Chair PrivacyGreenberg Traurig LLPWELCOME AND

2、INTRODUCTIONSI.Welcome and Introductions II.Getting to know the audience III.Who does privacy report to?IV.Does the Board need to be included?V.What role do regulators expect the Board to play?VI.How do you position privacy for the Board?VII.How do you prepare for a Board presentation?VIII.What topi

3、cs should the Board care about?IX.Styles and approaches for conveying information to BoardsX.Closing RemarksAGENDA OUTLINEWelcome and Introductions Getting to know the audienceDiscussionWho does privacy report to?DiscussionDoes the Board need to be included in privacy?DiscussionWhat role do regulato

4、rs expect the Board to play?DiscussionHow do you position privacy for the Board?DiscussionHow do you prepare for a Board presentation?DiscussionWhat topics should the Board care about?DiscussionStyles and approaches for conveying information to Boards.DiscussionClosing remarksRESOURCE LISTPrivacyISO

5、 29100(no mention of board involvement,but general references in 5.10 to accountabilityISO 27001 and 27002(no mention of board involvement,but general references in 5.3 to leadership commitment)NIST Privacy Framework(no mention of board involvement,but see following general references):GV.RM-P1(risk

6、 management processes are agreed to by organizational stakeholders)GV.RM-P2(Organizational risk tolerance is determined and clearly expressed)Draft California Regulation for DPIAs(March 2024)version(vague reference to noting in DPIAs whether the Board was priv