iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
CEN

EN 17740:2023

(Main)

Requirements for professional profiles related to personal data processing and protection

Requirements for professional profiles related to personal data processing and protection

The standard defines the requirements related to the professional activity of subjects active in the processing and protection of
personal data, namely the intellectual profession that is pursued at different levels of complexity and in different organizational
contexts, both public and private.
These requirements are specified, starting from the specific tasks and activities identified, in terms of knowledge, skills and
competence, in accordance with the European Qualifications Framework - EQF and are expressed in such a way as to facilitate and
contribute to harmonize, as far as possible, evaluation and validation processes of learning outcomes.

Anforderungen an Berufsprofile im Zusammenhang mit der Verarbeitung und dem Schutz personenbezogener Daten

Dieses Dokument definiert die Anforderungen an die berufliche Tätigkeit von Personen, die im Bereich der Verarbeitung und des Schutzes personenbezogener Daten tätig sind, d. h. an den intellektuellen Beruf, der auf verschiedenen Komplexitätsniveaus und in verschiedenen organisatorischen Kontexten, sowohl im öffentlichen als auch im privaten Bereich, ausgeübt wird.
Diese Anforderungen werden ausgehend von den identifizierten spezifischen Aufgaben und Tätigkeiten in Form von Wissen, Fertigkeiten und Kompetenzen in Übereinstimmung mit dem Europäischen Qualifikationsrahmen (EQR) spezifiziert und so ausgedrückt, dass sie die Evaluierungs- und Validierungsprozesse von Lernergebnissen erleichtern und so weit wie möglich zur Harmonisierung beitragen.

Exigences relatives aux profils de professionnels en lien avec le traitement et la protection de données à caractère personnel

Le présent document définit les exigences relatives à l'activité professionnelle des personnes intervenant activement dans le traitement et la protection des données à caractère personnel, à savoir la profession intellectuelle menée à différents niveaux de complexité et dans différents contextes organisationnels, à la fois publics et privés.
Ces exigences sont spécifiées en des termes de connaissances, d'aptitudes et de compétences conformément au cadre européen des certifications (CEC), en commençant par les tâches et activités spécifiques identifiées, et sont exprimées de telle manière à faciliter et contribuer à harmoniser, dans la mesure du possible, les processus d'évaluation et de validation des résultats d'apprentissage.

Zahteve za poklicne profile pri obdelavi in varovanju osebnih podatkov

Ta standard določa zahteve v zvezi s poklicno dejavnostjo oseb, ki so aktivne pri obdelavi in varstvu osebnih podatkov, in sicer intelektualnih poklicev, ki se jih opravlja z različnimi stopnjami zapletenosti in v različnih organizacijskih okvirjih, tako zasebnih kot javnih.
Te zahteve so določene, in sicer vse od posebnih nalog in dejavnosti v smislu znanj, spretnosti in pristojnosti, v skladu z evropskim ogrodjem kvalifikacij (EQF), in so izražene na način, da v največji možni meri olajša in prispeva k usklajenosti procesov ocenjevanja in preverjanja učnih rezultatov.

General Information

Status
Published
Publication Date
24-Oct-2023
ICS
03.100.30 - Management of human resources
35.030 - IT Security
Technical Committee
CEN/CLC/TC 13 - Cybersecurity and Data Protection
Drafting Committee
CEN/CLC/JTC 13/WG 5 - Data Protection, Privacy and Identity Management
Current Stage
6060 - Definitive text made available (DAV) - Publishing
Start Date
25-Oct-2023
Due Date
05-Aug-2022
Completion Date
25-Oct-2023
Ref Project
SIST EN 17740:2024 - Requirements for professional profiles related to personal data processing and protection

Buy Standard

EN 17740:2024EN 17740:2024
PreviousNext
Standard
EN 17740:2024
English language
53 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


SLOVENSKI STANDARD
01-april-2024
Zahteve za poklicne profile pri obdelavi in varovanju osebnih podatkov
Requirements for professional profiles related to personal data processing and protection
Anforderungen an Berufsprofile im Zusammenhang mit der Verarbeitung und dem
Schutz personenbezogener Daten
Exigences relatives aux profils de professionnels en lien avec le traitement et la
protection de données à caractère personnel
Ta slovenski standard je istoveten z: EN 17740:2023
ICS:
03.100.30 Vodenje ljudi Management of human
resources
35.030 Informacijska varnost IT Security
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

EUROPEAN STANDARD EN 17740
NORME EUROPÉENNE
EUROPÄISCHE NORM
October 2023
ICS 03.100.30; 35.030
English version
Requirements for professional profiles related to personal
data processing and protection
Exigences relatives aux profils de professionnels en Anforderungen an Berufsprofile im Zusammenhang
lien avec le traitement et la protection de données à mit der Verarbeitung und dem Schutz
caractère personnel personenbezogener Daten
This European Standard was approved by CEN on 4 September 2023.

CEN and CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for
giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical
references concerning such national standards may be obtained on application to the CEN-CENELEC Management Centre or to
any CEN and CENELEC member.
This European Standard exists in three official versions (English, French, German). A version in any other language made by
translation under the responsibility of a CEN and CENELEC member into its own language and notified to the CEN-CENELEC
Management Centre has the same status as the official versions.

CEN and CENELEC members are the national standards bodies and national electrotechnical committees of Austria, Belgium,
Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy,
Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Republic of North Macedonia, Romania, Serbia,
Slovakia, Slovenia, Spain, Sweden, Switzerland, Türkiye and United Kingdom.

CEN-CENELEC Management Centre:
Rue de la Science 23, B-1040 Brussels
© 2023 CEN/CENELEC All rights of exploitation in any form and by any means
Ref. No. EN 17740:2023 E
reserved worldwide for CEN national Members and for
CENELEC Members.
Contents Page
European foreword . 4
Introduction . 5
1 Scope . 6
2 Normative references . 6
3 Terms and definitions . 6
4 Professional profile tasks and specific activities . 8
4.1 General. 8
4.2 Introduction to professional profiles . 8
4.3 Tasks and activities of the professional operating in the processing and protection of
personal data . 9
5 Knowledge, skills and competencies associated with professional activity . 9
5.1 General. 9
5.2 Data protection officer professional profile . 9
5.2.1 Short description . 9
5.2.2 Mission . 9
5.2.3 Deliverables . 10
5.2.4 Main tasks . 11
5.2.5 Skills . 11
5.2.6 Knowledge . 13
5.2.7 Area of application of KPIs . 14
5.3 Data protection manager professional profile . 14
5.3.1 Short description . 14
5.3.2 Mission . 15
5.3.3 Deliverables . 15
5.3.4 Main tasks . 16
5.3.5 Skills . 17
5.3.6 Knowledge . 19
5.3.7 Area of application of KPIs . 21
5.4 Data protection specialist professional profile . 21
5.4.1 Short description . 21
5.4.2 Mission . 21
5.4.3 Deliverables . 21
5.4.4 Main tasks . 22
5.4.5 Skills . 23
5.4.6 Knowledge . 24
5.4.7 Area of application of KPIs . 27
5.5 Data protection engineer professional profile. 27
5.5.1 Short description . 27
5.5.2 Mission . 27
5.5.3 Deliverables . 27
5.5.4 Main tasks . 27
5.5.5 Skills . 28
5.5.6 Knowledge . 30
5.5.7 Area of application of KPIs . 32
5.6 Data protection auditor professional profile . 32
5.6.1 Short description . 32
5.6.2 Mission. 32
5.6.3 Deliverables . 32
5.6.4 Main tasks . 33
5.6.5 Skills . 33
5.6.6 Knowledge . 34
5.6.7 Area of application of KPIs . 36
6 Elements for the evaluation and validation of learning outcomes . 36
6.1 General . 36
6.2 Assessment methods of knowledge and specific experiences of the professional
operating in the field of processing and protection of personal data . 36
6.3 Evaluation and validation of results . 37
6.4 Qualification . 37
6.5 Requirements for permanent professional update . 37
Annex A (informative) Index of skills and knowledge . 38
Annex B (normative) Requirements for professional profiles access . 51
Bibliography . 53

FprEN 17740:2023 (E)
European foreword
This document (EN 17740:2023) has been prepared by Technical Committee CEN/CLC/JTC 13
“Cybersecurity and Data protection”, the secretariat of which is held by DIN.
This European Standard shall be given the status of a national standard, either by publication of an
identical text or by endorsement, at the latest by April 2024, and conflicting national standards shall be
withdrawn at the latest by April 2024.
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CEN shall not be held responsible for identifying any or all such patent rights.
Any feedback and questions on this document should be directed to the users’ national standards body.
A complete listing of these bodies can be found on the CEN website.
According to the CEN-CENELEC Internal Regulations, the national standards organisations of the
following countries are bound to implement this European Standard: Austria, Belgium, Bulgaria, Croatia,
Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland,
Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Republic of North
Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Türkiye and the United
Kingdom.
Introduction
The definition of requirements for professional profiles in the field of processing and protection of
personal data are necessary to establish the fundamental set of knowledges, skills and competences that
distinguish such profiles.
The standard applies to the professional profiles in the identified area, regardless of the working methods
and type of employment relationship. Tasks and activities related to the profession are described on the
basis of all functions actually performed by professionals working in the field of processing and
protection of personal data in different work contexts. These functions are varied and concern technical,
administrative, cultural, scientific and legal aspects.
This document adopts the reference European framework for the definition of competences and related
skills: EN 16234-1. For related ICT-oriented profiles, such as for example the system administrator,
please refer to CEN CWA 16458-1.
The profiles specified in this document are not intended to be exhaustive and are applicable reg
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

CEN
EN 1888-3:2024(Main)
Child care articles - Wheeled child conveyances - Part 3: Pushchairs intended for leisure sport activities
kSIST FprEN 1888-3:2024

This document specifies the safety requirements of pushchairs when used for running/jogging or skating (excluding ice skating), intended for the transport of one or two children up to 15 or 22 kg each.
Pushchairs intended to transport the carer while pushing (e.g. the combination of longboard and stroller) are excluded from the scope of this document.
This document applies in conjunction with and in addition to the European standards EN 1888 1:2018+A1:2022 or EN 1888-2:2018+A1:2022 and it cannot be used separately.
If the product has several functions or can be converted into another function, the relevant European standards apply to it.

  • Draft
    22 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 15877-1:2024(Main)
Railway applications - Markings of railway vehicles - Part 1: Freight wagons
kSIST FprEN 15877-1:2024

This document specifies the markings on heavy rail freight wagons, or parts of heavy rail freight wagons, relating to their technical, operational and maintenance characteristics. It specifies the characteristics of these markings, the requirements pertaining to their presentation, their shape and position on a rail vehicle and their meaning. Some markings are accompanied with (a) note(s), where appropriate.
Tank manufacturers’ design criteria, test and product specification plates have not been considered in this document as they are specified in EN 12561 1:2011.
Where fully specified in RID [14] dangerous goods markings have not been considered in this document (dimensions, colour, location and form). Where markings are not fully specified in RID they are included in this document.

  • Draft
    126 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 2884:2024(Main)
Aerospace series - Screws, pan head, offset cruciform recess, coarse tolerance normal shank, short thread, in titanium alloy, anodized, MoS2 lubricated - Classification: 1 100 MPa (at ambient temperature)/315 °C
kSIST FprEN 2884:2024

This document specifies the characteristics of screws, pan head, offset cruciform recess, coarse tolerance normal shank, short thread, in titanium alloy, anodized, MoS2 lubricated.
Classification: 1 100 MPa /315 °C ·

  • Draft
    11 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 12159:2024(Main)
Builders hoists for persons and materials with vertically guided cages
kSISTF prEN 12159:2022

1.1   This document specifies power operated temporarily installed builders’ hoists (referred to as “hoists” in this document) intended for use by persons who are permitted to enter sites of engineering and construction, serving landing levels, having a cage:
-   designed for the transportation of persons or of persons and materials;
-   guided;
-   travelling vertically or along a path within 15° max. of the vertical;
-   supported or sustained by rack and pinion;
-   designed with and / or without support from separate structure.
1.2   This document specifies the significant hazards, hazardous situations or hazardous events relevant to the machine as listed in Annex C which arise during the various phases in the life of the machine and describes methods for the elimination or reduction of these hazards when it is used as intended and under conditions of misuse which are reasonably foreseeable by the manufacturer.
1.3   This document does not specify the additional requirements for:
-   operation in severe conditions (e.g. extreme climates, strong magnetic fields);
-   lightning protection;
-   operation subject to special rules (e.g. potentially explosive atmospheres);
-   electromagnetic compatibility (emission, immunity);
-   handling of loads the nature of which could lead to dangerous situations (e.g. molten metal, acids/bases, radiating materials, fragile loads);
-   the use of combustion engines;
-   the use of remote controls;
-   hazards occurring during manufacture;
-   hazards occurring as a result of mobility;
-   hazards occurring as a result of being erected over a public road;
-   earthquakes;
-   emission of airborne noise;
-   dual (twin) cage hoists;
-   twin masts hoists;
-   combination hoists, e.g. an EN 12159 hoist with an EN 12158-1 hoist;
-   counterweighted hoists, neither by separate counterweight nor counterweighted by another cage.
1.4   This document does not apply to:
-   builders’ hoists for the transport of goods only EN 12158-1:2021 and EN 12158-2:2000+A1:2010;
-   lifts according to EN 81-20:2020, EN 81-3:2000+A1:2008 and EN 81-43:2009;
-   work cages suspended from lifting appliances;
-   work platforms carried on the forks of fork trucks;
-   work platforms according to EN 1495:1997+A2:2009  ;
-   transport platforms according to EN 16719:2018;
-   funiculars;
-   lifts specially designed for military purposes;
-   mine lifts;
-   theatre elevators;
-   hoists with hydraulic drive/braking systems and hydraulic safety devices.
1.5   This document specifies the hoist installation. It includes the base frame and base enclosure but excludes the design of any concrete, hard core, timber or other foundation arrangement. It includes the design of mast ties but excludes the design of anchor bolts to the supporting structure. It includes the landing gates and their frames but excludes the design of any anchorage fixing bolts to the supporting structure.
1.6   This document does not apply to builders’ hoists for persons and material with vertically guided cages which are manufactured before the date of publication of this document by CEN.

  • Draft
    65 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 4013:2024(Main)
Aerospace series - Shank nut, self-locking, in heat resisting nickel base alloy NI PH2601 (Inconel 718), silver plated - Classification: 1 550 MPa (at ambient temperature)/600 °C
kSIST FprEN 4013 rev:2024

This document specifies the characteristics of self-locking, shank nuts, in NI-PH2601, silver plated, for aerospace applications.
Classification: 1 550 MPa /600 °C .

  • Draft
    7 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 13991:2024(Main)
Derivatives from coal pyrolysis - Coal tar based oils: creosotes - Specifications and test methods
kSIST FprEN 13991:2024

This document specifies the requirements and the test methods for creosotes for industrial wood preservation.
Different grades of creosote are used depending on the desired properties of the treated wood.
WARNING — The use of this document can involve hazardous materials, operations and equipment. This document cannot address all of the safety implications associated with its use. It is the responsibility of the user of this document to establish appropriate health and safety practices and assess the applicability of regulatory limitations prior to use. The warnings to use are covered in Annex C.

  • Draft
    16 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 915:2024(Main)
Gymnastic equipment - Asymmetric bars - Requirements and test methods including safety
kSIST FprEN 915:2024

This document specifies functional requirements (see Clause 4) and specific safety requirements in addition to the general safety requirements in EN 913:2018+A1:2021 (see Clause 5).
This document is applicable to 2 types of asymmetric bars (see Table 1) intended for use under supervision of a competent person.

  • Draft
    10 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 21420:2020/A1:2024(Amendment)
Protective gloves - General requirements and test methods - Amendment 1 (ISO 21420:2020/Amd 1:2022)
SIST EN ISO 21420:2020/oprA1:2022
  • Draft
    6 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 11890-2:2020/A1:2024(Amendment)
Paints and varnishes - Determination of volatile organic compounds(VOC) and/or semi volatile organic compounds (SVOC) content - Part 2: Gas-chromatographic method - Amendment 1 (ISO 11890-2:2020/Amd 1:2024)
SIST EN ISO 11890-2:2020/kFprA1:2024
  • Draft
    6 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 17983:2024(Main)
Algae and algae products - Measurement for renewable algal raw material for energy and non-energy applications
SIST EN 17983:2024

This document specifies methods for the measurement of energy content and main elements balances of algae from cultivation or from wild growth and algae products to provide biomass, intended for renewable algal raw material used as bioenergy and in bio-based products.
This document also specifies carbon source parameters specific to algae as bio-based and it is applicable to studies covering algae production life cycle assessment (LCA) e.g. algal biomass farming or wild collection.
This document does not apply to methods of algae and algae products sampling, harvesting and pre/postprocessing.
This document does not apply to algae and algae products intended for the food and feed sector.

  • Standard
    32 pages
    English language
    sale 10% off
    e-Library read for
    1 day