Data Protection Essentials for RSLs
Date: Thursday, 23 February 2017
Time: 9.30am to 4.30pm
Cost: £95 per person (includes lunch and slide presentation in electronic format)
In 2017, Data Protection is likely to be high on the agenda of most UK organisations, particularly since the new General Data Protection Regulation (Regulation) comes into force in just over a year and represents the most significant overhaul of Data Protection law in over 25 years.
RSLs hold personal data on their staff, tenants, owner occupiers and contractors, including sensitive personal data regarding health and criminal convictions. RSLs are increasingly investing in electronic document management systems (eDMS) to save on limited office space and to facilitate access to records across the organisation. While convenient, eDMS give rise to Data Protection issues that RSLs must address.
In preparation for the Regulation, the need for RSLs to undertake an audit of their Data Protection Act 1998 (DPA) compliance and identify areas for improvement cannot be overestimated. Failure to act now could damage reputation or even lead to fines under the Regulation. It could also trigger a notifiable event to the Scottish Housing Regulator.
Daradjeet Jagpal of Information Law Solutions, an independent legal consultancy specialising in delivering advisory, audit and training services to RSLs in Data Protection, Access to Information and Direct Marketing laws, will take participants through the key Data Protection issues faced by RSLs today and outline the practical and cost effective steps they can take to comply with the law.
This interactive event includes an overview of the DPA and will equip participants with the essential knowledge and toolkit to manage their compliance risk and meet legal requirements when:
collecting personal data, by preparing compliant Data Protection statements;
handling personal data in an employment context, including recruitment and selection, keeping employment records and employee monitoring;
entering into data sharing arrangements with local authorities and the Police for crime prevention, ASB and tenancy management purposes;
determining how long to keep personal data;
investing in eDMS to store records;
keeping personal data secure, including making use of portable devices, remote working and cloud data storage, managing internal access to personal data and physical data security;
preventing and managing data security breach incidents;
using CCTV and drones for crime prevention and maintenance work inspection;
handling subject access requests;
sharing personal data with contractors and other service providers;
implementing a Data Protection policy and monitoring compliance;
operating websites and social media channels; and
preparing for the Regulation.
The event will include case studies for discussion by participants, with useful practical tips and guidance and pitfalls to avoid.
No previous Data Protection knowledge is assumed and the event is suitable for anyone interested in Data Protection, regardless of their role, level of skill or experience. Seasoned practitioners seeking a refresher or insight into Data Protection issues relevant to RSLs will find value in the event.
After lunch, the event will be followed by a clinic, giving participants an opportunity to attend a confidential 15-minute appointment with Daradjeet to discuss any Data Protection matters relevant to their RSL and receive on the spot practical advice and tips.
The cost of the event includes tea and coffee on arrival and break times, networking lunch and the slide presentation in electronic format by follow-up e-mail after the event.
Participants will be issued with an electronic certificate confirming attendance at the event for their training records (3 hours’ verifiable CPD).
Please indicate at the time of registering for this event if you wish to attend a clinic appointment. Clinic appointments will be allocated on a first-come, first-served basis and are subject to availability.