Does anyone have any tips, ideas or themes on a company privacy message to celebrate GDPR’s 3rd anniversary. I’ve sent out numerous messages throughout the past 3 years to raise awareness of GDPR and privacy principles. But i wondered if anyone had any innovative suggestions on topics to include
I personally would not go down the route of doing a mock data breach as suggested – as I think that won’t win you any favours in the long run, particular from senior management. Sure do table top exercises (if you don’t get many breaches), but I would not link those negative aspects to the GDPR enforcement anniversary (which most colleagues won’t care about).
We produce weekly content for our colleagues which is relevant to them and then add in business messages on data protection too them – we’ve done posts internally on subjects like e-safety for children, avoiding phishing, vishing and smishing scam (and what to do if you get duped), black Friday scams to look out for, remote working dos and don’ts, backed up by quizzes.
For me the keys are:
(a) make it relevant to colleagues.
(b) link it in with your business goals where you can (re themes you use).
For the avoidance of doubt, that was my weird data protection humour, I wouldn’t do the mock data breach either 😉
Funny idea though 🙂
Christian Fahey I prefer your approach. I work on the assumption that GDPR is a long journey. As with any new social change there are early adopters and laggards and everyone else on a spectrum in-between! What this means for me is continuous development of knowledge so people begin to move along the spectrum to where we want them to be. The materials you have created sound great. Keep up the good work.
I’m a bit late to the party here, but we find mini vlogs go down well particularly with remote working. So we get the DP team members to record a snippet around what changes they’ve seen over the last 3 years and what they think we still need to focus on, for example. Then post these on our internal portal. The video also tends to engage the listener better than messages to read.
I like it!
How about a surprise mock data breach exercise, in which you make the whole business think it is a real and severe incident for as long as possible. Then when they finally can’t take any more, drop a banner (either in person or across the screen) saying “Happy Birthday GDPR, let’s never forget the importance of protecting our data!!”