The presentation briefly mentions and describes the activities of the Social Insurance Agency in the area of information security in the years 2016 - 2017, made by its own internal resources and in cooperation with an external contractor.
The introduction defines the legal framework of these activities by presenting the main European and Slovak legal standards on information security in general as well as the protection of personal data in particular.
The individual findings of internal and external analyzes, measurements and process mapping are followed by specific measures with a timetable and estimated financial costs for their implementation.
The presentation also sets out the main obligations arising from the GDPR regulation.
Finally, possible risks are identified which could jeopardize the implementation of the measures taken to remove the identified discrepancies and shortcomings.