Maintenance Of Personal Data In The Organization
Educational organizations are personal data operators, as they process personal data from students and educators. Consequently, the responsible officials of these organizations should ensure compliance with the above-mentioned law.
Compliance with the requirements of the law in educational organizations
Article 19 of FS No. 152, Personal data. Measures to ensure the security of personal data in processing:
- The operator in the processing of personal data is required to take the necessary organizational and technical measures, including the use of cryptographic (cryptographic) means to protect personal data from improper or accidental access to them, destruction, modification, blocking, copying, dissemination of personal data, and other irregularities.
- Use and storage biometric personal data Outside the information systems, personal data can only be made available on and using such data storage technology as to protect these data from improper or accidental access to them, destruction, alteration, blocking, copying, distribution.
A set of work should be carried out within educational organizations to collect a package of documents to be checked by monitoring organizations.
At present, there are no regulations to confirm the form of these model departmental documents for the protection of personal data in educational organizations.