Personal data protection

Personal Data Protection (Law of the Kyrgyz Republic No. 58)

Course code: BTA-401

Title: Personal Data Protection (Law of the Kyrgyz Republic No. 58)

Course length: 10 (ten) academic hours / 8.00 CPE Hours

Audience: Personal data protection officers (specialists), information security department specialists, novice specialists in the field of information security or personal data protection

Preliminary desirable requirements: knowledge of the basics of industry legislation and international standards in the field of personal data protection, information technology, and information security; understanding of the principles of operation and construction of information systems and data transmission networks; understanding of the principles of information processing.

Course program:

  • Concepts of data confidentiality
    • History of the issue
    • Overview of legislation:
      1. European Union (GDPR)
      2. Kyrgyz Republic (Law 58)
      3. Russia (Federal Law 152)
      4. California, USA (CCPA)
    • General concepts of data privacy
    • Types of personal information
    • Special types of personal information: ethnicity, political/religious/philosophical views, sexual orientation, medical data
  • Policy
    • Data privacy framework
    • The best policy is not to collect excessive amounts of personal data
    • Informed consent for data collection, storage, and transfer
    • Verified destruction of personal data
    • Data protection officer
    • Policy development, self-assessment, implementation, and monitoring
  • Data privacy in the development process
    • Individual design concepts
    • Information systems designed for personal data
    • Control measures and principles
    • Examples of use for proper access, storage, encryption, and data transfer
  • Data portability and cross-border data transfer
    • Storage and access to personal data outside the country: in the cloud, on social networks, on your own foreign server, in a shared foreign service
    • Best practices and cross-border cooperation
  • Responsibility for data protection
    • Data protection in healthcare
    • Data protection in financial institutions
    • Data protection in telecommunications
    • Data protection in government agencies
    • Control over your own private information

We are using cookies

We use cookies on our website to make your browsing experience better and to continually improve our website. To find out what cookies are, which ones we use and why, please see our cookie policy statement. If you continue to use our website, we will assume that you are happy with the cookies we use. You can manage your cookie preferences at any time through your chosen browser settings.