• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

Project Management Knowledge

Simply explained by a PMI-certified Project Manager

  • Home
  • Acronyms and Abbreviations
  • Definitions
  • About the Author
  • Show Search
Hide Search

GAPP & Project Management

Tom · Apr 23, 2011 · Leave a Comment

Data privacy is an important concern in project management. The administration of a project may involve collecting, handling, or storing information from a wide variety of sources. For example, in the software consulting industry, performing a mainframe migration for a client might involve access to large quantities of data on that client’s customers and/or employees. Almost all projects will have some data elements that are considered private or confidential. This means part of the planning and administration for a project should concern how to keep data secure and ensure it is used only in appropriate ways.

What Standards Apply?

There are many standards that could be used as a framework or starting point for these policies and procedures. The Generally Accepted Privacy Principles (GAPP) developed by the AICPA is one set of standards to consider. The level of stringency with which these principles are applied should correlate to the sensitivity of the data being handled. Here is an overview of a few of these principles and how they might be applied to the project management sphere.

Privacy Management

This is the overarching strategy that is developed to safeguard sensitive data. It includes the creation of policies and procedures for the privacy program. These policies and procedures must be documented and communicated to all relevant parties. Adequate resources should be assigned to put infrastructure elements in place that help ensure the achievement of policy objectives. Accountability must be assigned to those responsible for implementing and maintaining privacy so that there are well defined consequences for program failure. The management policy must also include monitoring to identify evolving risks or any new regulations that might affect the privacy policy and practices. In project management, privacy should be discussed as it relates to both communications planning and risk management.

Collection & Use Notices

Whenever any personal identifying information or other confidential data is collected, it should be made clear why the data is being collected and how it will be used. This is typically done through the presentation of some type of notice. The notice includes the contact information for the group or individual responsible for answering questions or resolving issues regarding how private information is collected or used. For project management, the topic of confidential or proprietary information is often covered in an NDA or similar contractual document. This represents a formal agreement to follow ethical privacy practices in not disclosing a client’s confidential data to any third party without express, prior written consent. The use, retention, and eventual disposal of such data may also be addressed.

Security of Privacy

This aspect of privacy management concerns the physical, procedural, and electronic steps your organization takes to safeguard privileged project management data. It should take into consideration the potential for and consequences of accidental and deliberate destruction, unauthorized access, disclosure, or other misuse. Any administrative, physical, and technical controls put in place should include a backup plan in case the personnel authorized to access the confidential project management data become unavailable. Privacy security safeguards should be tested at least once a year to ensure they are functioning as intended.

Related Articles:

 
  • The History of Project Management The pyramids. Built thousands of years ago. Huge buildings. In some cases, with very complex structures inside. How likely is...
  •  
  • Privacy Policy Privacy Policy We are very delighted that you have shown interest in our enterprise. Data protection is of a particularly...
  •  
  • Manage Communications Communication is an essential element in project management. It is not only talking to the team members and telling them...
  •  
  • Acceptance – Definition Acceptance is the noun form of the previously defined verb “accept“. It represents the state of being in which one...
  •  
  • To-Complete Performance Index The To-Complete Performance Index (TCPI) is a tool in project management that is used to measure the cost performance required...
  • Uncategorized planning, project management, risk management

    Reader Interactions

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    This site uses Akismet to reduce spam. Learn how your comment data is processed.

    Primary Sidebar

    Articles

    • August 2023
    • July 2023
    • June 2023
    • May 2023
    • April 2023
    • March 2023
    • February 2023
    • January 2023
    • December 2022
    • August 2021
    • September 2020
    • October 2019
    • October 2018
    • April 2017
    • June 2016
    • April 2016
    • November 2015
    • April 2013
    • March 2013
    • May 2011
    • April 2011
    • March 2011
    • February 2011
    • January 2011
    • December 2010
    • November 2010
    • October 2010
    • September 2010
    • August 2010
    • July 2010
    • March 2010
    • January 2010
    • October 2009
    • August 2009
    • June 2009
    • April 2009
    • March 2009
    • February 2009
    • January 2009
    • December 2008
    • November 2008
    • October 2008
    • September 2008
    • August 2008
    • July 2008
    • June 2008
    • January 2008

    Dear Visitor,

    I am a certified project manager (PMP) - Please let me know if you have any questions about project management that are not explained on this site!

    Best Regards,

    Tom

    Copyright © 2023

    • Privacy Policy