The Global Privacy Enforcement Network (“GPEN”) has coordinated the sixth privacy review (the “Sweep”) which focuses on the theme of accountability. The Sweep began in September and will continue to take place throughout October.
GPEN consists of privacy enforcement authorities from around the world, whose aim is to promote and support cooperation in cross-border enforcement of laws protecting privacy.
As part of the initiative, twenty participating privacy enforcement authorities, including the Gibraltar Regulatory Authority (“GRA”), as the Information Commissioner, have been making enquiries with a number of organisations to get an idea of how the concept of accountability has been incorporated into everyday business practices, specifically in relation to internal privacy frameworks, internal governance structures, training and awareness, transparency, incident management regimes, and their ability to document stored data and track data transfers.
Locally, the GRA are focusing on privacy accountability in the telecommunications sector.
The goal of the Sweep is to identify trends which might guide future education and outreach. The results may also highlight areas for further follow up engagement after the Sweep.
The overall results of this year’s Sweep will be compiled and made public towards the end of the year.
As always, the GRA is available to anyone wishing to discuss matters which affect their privacy, or feel that their data protection rights are not being correctly addressed.