温馨提示:本站仅提供公开网络链接索引服务,不存储、不篡改任何第三方内容,所有内容版权归原作者所有
AI智能索引来源:http://www.pwc.com/kz/en/services/data-privacy.html
点击访问原文链接

Data Privacy

进入原网站 导航首页
Data Privacy Skip to content Skip to footer Industries Services About Us PwC News Careers Publications PwC Academy More

Search Menu

Industries Industries Telecommunications Technology Real Estate Oil and Gas Metals and Mining Power & Utilities Menu

Industries Telecommunications Menu

Industries Technology Menu

Industries Real Estate Menu

Industries Oil and Gas Menu

Industries Metals and Mining Menu

Industries Power & Utilities Menu

Services Services Audit & Assurance Services Tax, Legal and People Services Consulting Deals Forensic services PwC Eurasia China Business Group Create value through ESG Technology Services Managed Services Digital Solutions & Services GRC and Internal Audit Accounting Consulting Services Capital markets Treasury & market risk management services Menu

Services Audit & Assurance Services Menu

Services Tax, Legal and People Services Menu

Services Consulting Menu

Services Deals Menu

Services Forensic services Menu

Services PwC Eurasia China Business Group Menu

Services Create value through ESG Menu

Services Technology Services Menu

Services Managed Services Menu

Services Digital Solutions & Services Menu

Services GRC and Internal Audit Menu

Services Accounting Consulting Services Menu

Services Capital markets Menu

Services Treasury & market risk management services Menu

About Us About Us Alumni Club Company Management Code of Conduct Our Presence in Eurasia Corporate Responsibility Careers with PwC Personal Data Processing and Protection Policy Contacts Menu

About Us Alumni Club Menu

About Us Company Management Menu

About Us Code of Conduct Menu

About Us Our Presence in Eurasia Menu

About Us Corporate Responsibility Menu

About Us Careers with PwC Menu

About Us Personal Data Processing and Protection Policy Menu

About Us Contacts Menu

PwC News PwC News Seminars / Trainings Tax Calendar Tax and Legal Alerts Risk & Regulatory in Central and Eastern Europe Menu

PwC News Seminars / Trainings Menu

PwC News Tax Calendar Menu

PwC News Tax and Legal Alerts Menu

PwC News Risk & Regulatory in Central and Eastern Europe Menu

Careers Careers Menu

Publications Publications Annual CEO Survey Quarterly Macroeconomic Survey Doing Business Guide Kazakhstan 2017 Kazakhstan retail e-commerce market analysis Analysis of the payment market in the Republic of Kazakhstan ESG topics Transport & Logistics Barometer Analysis of changes in prices in the Republic of Kazakhstan Mine report Transparency report Menu

Publications Annual CEO Survey Menu

Publications Quarterly Macroeconomic Survey Menu

Publications Doing Business Guide Kazakhstan 2017 Menu

Publications Kazakhstan retail e-commerce market analysis Menu

Publications Analysis of the payment market in the Republic of Kazakhstan Menu

Publications ESG topics Menu

Publications Transport & Logistics Barometer Menu

Publications Analysis of changes in prices in the Republic of Kazakhstan Menu

Publications Mine report Menu

Publications Transparency report Menu

PwC Academy PwC Academy Loading Results

View All Results Data Privacy Copy link Link copied to clipboard Challenges for data controllers:
Determining what is personal data for collecting and processing; Procedure for providing information related to data subjects on their request;
Prevention of unauthorized access to personal data;
Destruction of personal data when there is no reason for storing it.
Data Privacy in a nutshell The Kazakhstan law on personal data and protection establishes basic requirements and principles for personal data management, processing, collecting, maintaining and sharing. The Law defines personal data.

Data Privacy covers most data relating to staff and clients.

Data “subjects” have rights regarding the processing of their personal data.

Non-compliance with Data Privacy requirements results in civil, administrative and criminal liability:

Administrative fine approx. $70 7,000. Criminal sanctions: fine up to approx. $20,000 35,000, imprisonment up to 2-7 years.
Areas covered in a Data Privacy project PwC’s Data Privacy approach covers all relevant aspects of your organization. Areas typically covered include:

Benefits of PwC‘s approach
Why use PwC Privacy Network?

Data Privacy Challenges and How PwC can help
Challenges How PwC can help Define personal data
Kazakh legislation requires data controllers to define personal data for the purpose of the business concerned. Identifying the relevant data. Review business processes and help define personal data subject to processing (data inventory), including IT assets.
Identify and analyse the purpose of data collection, processing, storage and removal.
Establish personal data protection controls Data Privacy requires controllers to take measures to protect personal data. Develop data protection, privacy, information security, risk management and data governance policies and procedures. Determine a list of data subjects, storage locations, method of data processing and persons having access to personal data.
Provide general advice on daily data processing and protection.
Develop the appropriate data governance to avoid unnecessary data collection and storage.
Compliance with mandatory conditions for data collection and processing Data Privacy requires data controllers to receive consent for collection and processing of personal data from data subjects. Data controllers must evidence the consent for data collection and processing.
Support personal data processing and protection activities. Develop a Data Privacy internal audit plan (review of websites, online services, agreements) and conduct review of Data Privacy compliance.
Assess personal data handling processes for compliance with legislation.
Develop/review documents required for data collection and processing, transparency notices.
Develop a roadmap to align personal data processing operations with Data Privacy requirements.
Coordination with state authorities on Data Privacy issues.
Risk Assessment Consider the security of the network, IT systems and website including their resilience to unauthorized access. Consider the relationship with third parties and how personal data is treated.
Penetration tests of LAN, WiFi, applications, databases, operating systems and mobile devices. Security awareness tests (controlled social engineering attacks).
Implementation of systems supporting risk management and risk assessments
Support in assessment and development of BCP/DRP plans.
Vendor and third party management.
Conducting trainings on data privacy and cybersecurity.
Contact us

Azamat Konratbayev

Managing Partner, PwC Eurasia Assurance Leader, PwC Kazakhstan

Tel: +7 727 330 3200

Email

Michael Ahern

Partner, Tax, Legal and People, PwC Kazakhstan

Tel: +7 727 330 3200

Email

Assel Kazbekova

Senior Manager, Legal Services, PwC Kazakhstan

Tel: +7 727 330 3200

Email

Mirzarif Mirkamilov

Manager, Risk assurance services, cybersecurity and information privacy, PwC Kazakhstan

Tel: +7 727 330 3200

Email Follow us Services & Industries PwC Academy Publications Careers About Us PwC News Contacts © 2018 - 2026 PwC. All rights reserved. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity.

Privacy Commitment Cookies information E-mail us

智能索引记录