Data security and Data privacy

Welcome to the course “Data security and Data privacy”. This is a collection of sessions addressed to M&E and IM professionals who wish to increase their knowledge and confidence in regards to data security and data privacy regulations.

These are free training sessions provided by the ActivityInfo team.

Are these sessions for me?

  • Are you responsible for managing users’ access to various tools and software?
  • Do you wish to understand better data security risks that are not necessarily related to technology?
  • Do you wish to learn more about data privacy laws and ethical considerations?
  • Are you wondering how to protect data integrity and confidentiality?

Then, get started with these sessions!

Keeping your Monitoring and Evaluation data secure

During this session, we address the most important risks related to data security and concepts such as data confidentiality, integrity and availability. We also discuss ways to mitigate these risks by adopting a few simple procedures for your team, such as hard drive encryption and password managers.

In summary, we explore:

  • Emerging cyberthreats for NGOs
  • Best practices for securing your team’s IT
  • Best practices for configuring your data access
  • Access reviews

Learn more

Device security in the field

In this session, we welcome two experienced Security professionals from Arculus Cyber-Security, who discuss information security and more specifically device security.

In summary, we look into:

  • Pre-Deployment Considerations
  • Risk Assessment / Risk Appetite
  • Equipment Security in the Field
  • Operating Systems
  • Device Hardening Considerations
  • Hacking, Malware and Phishing considerations

Learn more

Data privacy laws in Monitoring and Evaluation

The session provides participants with an in-depth understanding of key privacy laws, such as GDPR, CCPA, and others, and their impact on data collection, storage, and analysis within M&E practices. Participants also learn about best practices for compliance and strategies for adapting to evolving privacy standards.

In summary, we look into:

Key topics

  • Key privacy regulations and their relevance to M&E practices: Global perspectives on privacy legislation(EU,US, Nigeria, and Brazil)
  • Implications of privacy legislation on data collection and analysis
  • Overview of joint controllership and data processing agreements and their implications for M&E activities.
  • Checklist on drafting and managing data processing agreements to define roles and responsibilities.

Data security and ethical considerations in M&E:

  • Best practices for data privacy compliance in M&E
  • Adapting M&E practices to evolving privacy standards (a checklist)

Learn more