Taking responsibility for ethical management of personal data, and being transparent about how your organisation protects people’s rights results in better overall compliance and creates a competitive edge based on developing and keeping people’s trust. Furthermore, if something does go wrong while your organisation is the custodian of a person’s data, accountability means showing that you actively considered the risks and put in place measures and safeguards to mitigation these risks. By doing so, you are protecting your organisation as well against any potential enforcement action. Lastly, this commitment will be a good example to other organisations you deal with about how to ethically and responsibly manage personal data. On the other hand, if you can’t show good data protection practices, it may leave you open to breaking the trust you have built, as well as possibly incurring fines and reputational damage.
Applicability Assessment Tool – Does the DIFC DP Law 2020 apply to my entity?
High Risk Processing Assessment Tool – Do I conduct HRP?
DPO Assessment Tool – Do I need to appoint a DPO?
Data Protection Templates
These templates will assist in ensuring accountability for processing activities. These templates are only provided for guidance and format purposes. Provision of them is not to be construed as legal advice. Legal consultants or other duly designated persons acting for the entity may revise, add or remove anything in these templates as appropriate, and the entity remains responsible for its own compliance with DP Law 2020.
Sample DP Internal PolicyVIew File
Sample Online DP Notice
Sample Record of Processing Activities
Compliance Checklist and DPIA
Sample DPO Annual Assessment