…Or why Castlebridge take an Enterprise Ontology approach to ROPAs.
One of the documentation requirements that organisations have been getting their heads around since GDPR came in is the “Register of Processing Activities” or “ROPA” required in Article 30.
Back in 2017 when some of our clients were first looking into making sure they had this new “register of processing activities”, one of the first things we did was look at the documentation they already had to
Katherine is a San Diegan living in Ireland and lives on green tea. She holds a PhD in Anglo-Irish literature. She joined Castlebridge in 2013 after a career in tutoring and lecturing in University College Dublin and Dublin City University. Since then she has developed a reputation nationally and internationally as an expert in data privacy and information ethics. She works with clients in Ireland and elsewhere in sectors as diverse as public-sector and not-for-profit organisations.
As Director of Training with Castlebridge, Katherine oversees the development of our various data literacy and data education training products and services. This encompasses both in-person and distance learning delivery. In addition, Katherine works on identifying the training and development needs of our clients and building education partnerships with selected partner organisations. She also works hands-on with a range of Castlebridge clients on data protection, data ethics, and data governance assignments. She is the designated DPO for a number of clients through our ClouDPO service.
Katherine lectures on information ethics and data protection practice at the Law Society of Ireland Diploma Centre. She also teaches on Information Ethics in the Sutherland School of Law in UCD. Katherine served on the DAMA International Board for a term as the Director of Professional Development, during which time she oversaw the roll-out of the updated CDMP certification program.