| Component | Description |
| Values statements | Values statements describe what the organizations believe in. Examples might include truth, fairness, or justice. These statements provide a framework for ethical handling of data and decision-making. |
| Ethical data handling principles | Ethical data handling principles describe how an organization approaches challenges presented by data; for example, how to respect the right of individuals to privacy. Principles and expected behaviors can be summarized in a code of ethics and supported through an ethics policy. Socialization of the code and policy should be included in the training and communications plan. |
| Compliance framework | A compliance framework includes factors that drive organizational obligations. Ethical behaviors should enable the organization to meet compliance requirements. Compliance requirements are influenced by geographic and sector concerns. |
| Risk assessments | Risk assessments identify the likelihood and the implications of specific problems arising within the organization. These should be used to prioritize actions related to mitigation, including employee compliance with ethical principles. |
| Training and communications | Training should include review of the code of ethics. Employee must sign off that they are familiar with the code and the implications of unethical handling of data. Training needs to be ongoing, for example, through a requirement for an annual ethics statement affirmation. Communications should reach all employees. |
| Roadmap | The roadmap should include a timeline with activities that can be approved by management. Activities will include execution of the training and communications plan, identification, and remediation of gaps in existing practices, risk mitigation, and monitoring plans. Develop detailed statements that reflect the target position of the organization on the appropriate handling of data, include roles, responsibilities, and processes, and references to experts for more information. The roadmap should cover all applicable laws, and cultural factors. |
| Approach to auditing and monitoring | Ethical ideas and the code of ethics can be reinforced through training. It is also advisable to monitor specific activities to ensure that they are being executed in compliance with ethical principles. |
Ethical Data Handling Strategy
Master’s degree in computer science with Specialization in Software Engineering and Earned PGD in Management Information System. Accumulated 20+ years’ Information Technology, Data Governance, Data Management, and Compliance related consecutive hands-on experience, possess diversified business and technical background across the Aviation, Healthcare, Investment, Education, and Construction sectors.
45+ Online Professional Certifications, which includes:
• CDMP – Certified Data Management Professional
• CDPO – Certified Data Protection Officer
• GDPR – General Data Protection Regulation Practitioner
• EDRP – EC-Council Disaster Recovery Professional
• AWS Certified Cloud Practitioner
• Oracle Enterprise Data Management Professional
• Oracle Database Cloud Certified Professional
• ITIL – Information Technology Infrastructure Library (ITSM – IT)
Experience includes leading data governance and management initiatives, ensuring compliance with NDMO, GDPR and KSA PDPL, and implement/improve data security, privacy, & protection. Expertise spans a wide variety of platforms, tools, technologies, hardware, software, and operating systems.
Served in leadership capacities such as Manager – Data Management, Sr. Team Lead – Database Specialist, Sr. Team Lead Consultant, Sr. Applications DBA, Sr. Resident Consultant, and Manager Systems.