• A
  • A
  • A
  • АБB
  • АБB
  • АБB
  • А
  • А
  • А
  • А
  • А
Обычная версия сайта
2022/2023

Правовая и информационная защита конфиденциальной информации

Лучший по критерию «Полезность курса для Вашей будущей карьеры»
Лучший по критерию «Полезность курса для расширения кругозора и разностороннего развития»
Статус: Маго-лего
Когда читается: 2 модуль
Охват аудитории: для своего кампуса
Язык: русский
Кредиты: 3
Контактные часы: 24

Программа дисциплины

Аннотация

As part of the course, students are invited to study a new area of compliance – issues of personal data protection, since they are one of the most valuable types of confidential information. The relevance of the course is due to the dynamic development of legislation and law enforcement practice in this area in Russia and foreign countries. The implementation of compliance measures related to data protection is necessary for any international or national company, regardless of its type of activity and economic sector. With the development of high technologies, the digitalization of business operations and people's everyday life, the volume of data processing is rapidly increasing. Therefore, at present, most business processes (business operations) that take place in a documentary or electronic form in any organization include the processing of personal data. Violations of the law during such operations may result in infringement of the rights and legitimate interests of citizens (subjects of personal data), as well as the suspension or termination of the relevant business process. In this regard, the assumption of legal errors in the organization of the processing and protection of personal data may pose an immediate threat both to individual areas of the company's commercial activity and to its business as a whole. According to the Public Report of Roskomnadzor for 2019, according to the results of scheduled supervisory inspections, violations of the legislation on personal data were detected in about 80% of cases. These statistics indicate a clearly insufficient level of elaboration of compliance issues in this area. This course involves a consistent and systematic study of regulatory requirements in the field of confidentiality and data protection, as well as the formation of skills for planning, optimizing and practical implementation of compliance measures aimed at meeting these requirements and implementing internal corporate control over their compliance. Since the issues of information protection are of an interdisciplinary nature, the emphasis is placed on the professional role, tasks and functions of a lawyer. Within the framework of the proposed course, topics that were not previously presented in sufficient volume in law courses are stated. For example, these include "Legal audit in the field of personal data", "Transactions with personal data", " Control and supervisory activities in the field of personal data "(according to the new Federal Law No. 248-FZ of 31.07.2020 "On State Control (Supervision) and Municipal Control in the Russian Federation").
Цель освоения дисциплины

Цель освоения дисциплины

  • As a result of studying the course, the student should know: the basic concepts used in the legislation on personal data, law enforcement practice; the main types of confidential information; regulatory requirements in the field of information security; the role and tasks of a lawyer in organizing compliance in the field of information security; the procedure for organizing a compliance project and its main stages; characteristics of business processes occurring in legal entities and related to the processing of personal data; methods of processing personal data; legal grounds for processing personal data; functions and duties of the personal data operator and other persons involved in the processing of personal data; goals, objectives and procedure for organizing internal and external audits in the company in the field of personal data; basic methods and techniques of legal audit in the field of personal data; procedure for preparing a legal audit report; basic legal and organizational measures in the field of personal data; options for registration of organizational and administrative documentation in the field of personal data; the procedure for managing access to personal data and other confidential information; the procedure for organizing work with material carriers of personal data and ensuring their security; the system of regulatory requirements for the protection of personal data when processing them in ISPDn; the levels of protection of personal data when processing them in ISPDn; legislative requirements and restrictions in the field of cross-border transfer of personal data; features of cross-border transfer of personal data in corporate ISPDn;
  • mandatory terms of the contract for the assignment of personal data processing; the procedure for transferring personal data to another operator for independent processing; legal aspects of the "purchase" and "sale" of personal data; types of legal liability in the field of personal data; the procedure and features of dismissal of employees for disclosure of legally protected secrets; the basic concepts of the GDPR; the scope of the GDPR; the rights of the subject of personal data under the GDPR; the principles of the GDPR; the rules on cross-border transfer of personal data under the GDPR; responsibility for violations of the GDPR and the practice of bringing to it; be able to: - make decisions and perform legal actions in strict accordance with the law; - apply regulatory legal acts, implement the norms of substantive and procedural law in professional activity; - legally correctly qualify facts and circumstances; - correctly and fully reflect the results of professional activity in legal and other documentation; - provide qualified legal advice on the legal regulation of personal data; - identify problems and trends in the development of legislation in the field of personal data, information, information technologies and information protection and the practice of its application; possess the skills of: - preparation of legal documents; - search for regulatory legal acts regulating specific relations that arise in the process of implementing compliance measures; - solutions to legal conflicts arising during the implementation of compliance measures; - interpretation of legal acts regulating the processing and protection of personal data, working with confidential information.
Планируемые результаты обучения

Планируемые результаты обучения

  • to have a clear understanding of legal practice that are emerging in the EU and Russia on the implementation of selected problems; • be able to use this knowledge in practice;
  • As a result of the development of the course the student should: • know and understand the system of normative legal acts regulating the legal relationship specified in the program issues;
  • have the skills to work with normative legal acts in the scientific literature and the analytical materials
Содержание учебной дисциплины

Содержание учебной дисциплины

  • Topic 1. The concepts of "confidentiality" and "privacy". Types of confidential information
  • Topic 2. Protection of confidential information as one of the areas of compliance and professional activity of a lawyer
  • Topic 3. Processing of personal data
  • Topic 4. Legal audit in the field of personal data
  • Topic 5. Legal and organizational measures of the personal data operator
  • Topic 6. Personal Data Information System (ISPDn). Measures of the personal data operator for the technical protection of ISPDn
  • Topic 7. Cross-border transfer of personal data
Элементы контроля

Элементы контроля

  • неблокирующий Активность на семинарах
  • блокирующий Экзамен
Промежуточная аттестация

Промежуточная аттестация

  • 2022/2023 учебный год 2 модуль
    0.5 * Экзамен + 0.5 * Активность на семинарах
Список литературы

Список литературы

Рекомендуемая основная литература

  • Савельев, А. И. Научно-практический постатейный комментарий к Федеральному закону «О персональных данных» / А. И. Савельев. — Москва : СТАТУТ, 2017. — 320 с. — ISBN 978-5-8354-1365-2. — Текст : электронный // Лань : электронно-библиотечная система. — URL: https://e.lanbook.com/book/107544 (дата обращения: 00.00.0000). — Режим доступа: для авториз. пользователей.
  • Савельев, А. И. Электронная коммерция в России и за рубежом: правовое регулирование : монография / А. И. Савельев. — 2-е изд., перераб. и доп. — Москва : СТАТУТ, 2016. — 640 с. — ISBN 978-5-8354-1263-1. — Текст : электронный // Лань : электронно-библиотечная система. — URL: https://e.lanbook.com/book/133484 (дата обращения: 00.00.0000). — Режим доступа: для авториз. пользователей.

Рекомендуемая дополнительная литература

  • Европейское право интеллектуальной собственности: основные акты Европейского Союза : сборник / составители В. О. Калятин, Е. А. Павлова , под общей редакцией Е. А. Павловой. — Москва : СТАТУТ, 2016. — 864 с. — ISBN 978-5-8354-1264-8. — Текст : электронный // Лань : электронно-библиотечная система. — URL: https://e.lanbook.com/book/92543 (дата обращения: 00.00.0000). — Режим доступа: для авториз. пользователей.
  • Научно-практический комментарий судебной практики в сфере защиты интеллектуальных прав / Л.А. Новоселова и др.; Под общ. ред. Л.А. Новоселовой - М.: Норма, 2014. - 480 с.: 60x90 1/16. (переплет) ISBN 978-5-91768-489-5 - Режим доступа: http://znanium.com/catalog/product/454471

Авторы

  • Жернова Мария Олеговна