Explanation Article 10 outlines the circumstances in which a Data Controller may collect or process personal data without direct consent or for purposes other than the originally stated ones. While …
Master’s degree in computer science with Specialization in Software Engineering and Earned PGD in Management Information System. Accumulated 20+ years’ Information Technology, Data Governance, Data Management, and Compliance related consecutive hands-on experience, possess diversified business and technical background across the Aviation, Healthcare, Investment, Education, and Construction sectors.
45+ Online Professional Certifications, which includes:
• CDMP – Certified Data Management Professional
• CDPO – Certified Data Protection Officer
• GDPR – General Data Protection Regulation Practitioner
• EDRP – EC-Council Disaster Recovery Professional
• AWS Certified Cloud Practitioner
• Oracle Enterprise Data Management Professional
• Oracle Database Cloud Certified Professional
• ITIL – Information Technology Infrastructure Library (ITSM – IT)
Experience includes leading data governance and management initiatives, ensuring compliance with NDMO, GDPR and KSA PDPL, and implement/improve data security, privacy, & protection. Expertise spans a wide variety of platforms, tools, technologies, hardware, software, and operating systems.
Served in leadership capacities such as Manager – Data Management, Sr. Team Lead – Database Specialist, Sr. Team Lead Consultant, Sr. Applications DBA, Sr. Resident Consultant, and Manager Systems.
KSA NDMO – Personal Data Protection – Data Breach Notification – PDP.3.1 P2
Explanation In case an organization’s personal data is compromised (i.e., exposed, stolen, or leaked), the responsible party—either the Data Controller or Data Processor—must inform the Regulatory Authority. This notification must …
KSA PDPL – Article 9 (Data Access Timeframes and Limitations)
Explanation Article 9 of the KSA PDPL allows the Controller (the entity handling personal data) to set timeframes for when individuals (Data Subjects) can access their personal data. It also …
Data Strategy vs. Data Platform Strategy
Data Strategy and Data Platform Strategy are related but distinct concepts, each focusing on different aspects of an organization’s data management and utilization. The two strategies work together, with the …
KSA NDMO – Personal Data Protection – PDP Training – PDP.2.1 P1
Explanation Personal Data Protection Training ensures that every employee within an organization is well-informed about the principles, rules, and responsibilities related to handling personal data. It emphasizes the significance of …
KSA PDPL – Article 6 (Exemptions from Consent for Data Processing)
KSA PDPL Article 6 outlines specific situations where the processing of personal data can occur without the explicit consent of the data subject, which is normally required under Article 5. …
KSA PDPL – Article 5 (Consent Management and Withdrawal Mechanism)
Explanation in Simple WordsArticle 5 of the KSA PDPL emphasizes the importance of obtaining explicit consent from individuals (Data Subjects) before processing their personal data. It also outlines the rights …
KSA PDPL – Article 8 (Processor Selection and Monitoring)
Explanation This article emphasizes the importance of ensuring that any third-party processors (companies or individuals who handle personal data on behalf of the Controller) meet the required legal standards for …
KSA NDMO – Personal Data Protection – PDP Plan – PDP.1.2 P1
ExplanationThis specification outlines the requirement for an organization to develop a detailed plan to protect personal data, aligning with the regulations set by the National Data Management Office (NDMO). The …
TOGAF – Architecture Content Framework
The Architecture Development Method (ADM) has the following phases: ADM generates outputs during each phase. TOGAF organizes these outputs using the Architecture Content Framework, which categorizes them into three main …