CH 7 - Training & Awareness Flashcards

1
Q

What do Training & Awareness programs do?

A

1) Communicate privacy policies and procedures,
2) change bad behaviors and
3) reinforce good ones.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the difference between training and awareness?

A

Awareness reinforces lessons learned during training.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is training?

A

Communicates the organization’s privacy message, policies and processes, including for data usage and retention, access control and incident reporting, and motivates individuals to retain and follow that information.

Training incorporates measurable outputs and outcomes via attendance and assessment metrics.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Who needs training?

A

Staff, management, contractors and third parties - anyone who handles personal information on behalf of the organization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

How to engage employees in privacy training?

A

Use motivators, incentives (e.g., iPad) and even internal competition.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How do accountability obligations apply to training?

A

Recording who did the training and when.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q
  • Number of training or awareness opportunities by topic
  • Number of individuals who enrolled or received awareness communication
  • Training method
  • Percent of training completed
  • Results of quizzes or knowledge tests
  • Changes to the number of privacy incident reports or requests for consultation or additional training
A

Sample training metrics

How well did you know this?
1
Not at all
2
3
4
5
Perfectly