General information


Subject type: Optional

Coordinator: Alfonso Palacios González

Trimester: Third term

Credits: 4

Teaching staff: 

Alfonso Palacios González

Teaching languages


Aquesta assignatura s'imparteix en català però pot tenir alguna sessió d'expert en castellà i documentació en castellà i anglès

Skills


Transversal competences
  • T2_That students have the ability to work as members of an interdisciplinary team either as one more member, or performing management tasks in order to contribute to developing projects with pragmatism and a sense of responsibility, making commitments taking into account the available resources

Description


This subject will be coordinated and mostly by Jordi Cantenys with the collaboration of experts in the sector. 

Jordi Cantenys is a technical computer engineer with a degree in law. He works as a Data Protection Officer for different councils in Catalonia.

The general objective of this subject is to acquire the necessary knowledge to understand and apply privacy and data protection in the exercise of the profession of computer engineer, in the designs, developments and provision of services, as well as develop skills to be part of teams with other professionals in the legal world and especially, know the figure of the Data Protection Officer (DPD), introduced by the RGPD.

Learning outcomes


Detailed in the next version

Working methodology


Detailed in the next version

Contents


  1. Introduction to privacy in a digital world:
    1. Privacy.
    2. Personal information and data.
    3. Challenges of privacy in the face of digital transformation.
  2. The right to data protection:
    1. Legal regime.
    2. Principles.
    3. Legality of the treatment.
    4. Rights of interested parties.
    5. Infractions and sanctions.
    6. Control authorities and courts.
  3. Important concepts, definitions and related figures:
    1. Personal data.
    2. Data from special categories.
    3. Treatment.
    4. The person in charge of the treatment.
    5. The person in charge of the treatment.
    6. International transfers of personal data.
    7. The Data Protection Officer (DPD).
  4. How data protection affects software design:
    1. Proactive and demonstrable responsibility.
    2. Privacy by design and by default.
    3. Security measures.
    4. Risk management.
    5. Risk analysis.
    6. Impact assessment relating to data protection.
  5. Security of personal data:
    1. Confidentiality, integrity and availability of data.
    2. Security incidents.
    3. Violations of security of personal data.
    4. Information security management system.
    5. Standards and related regulations:
      1. ISO 27000 series.
      2. National Security Scheme.
    6. Audits.

 

Learning activities


Detailed in the next version

Evaluation system


Detailed in the next version