The two hosts were Steven and Shahar, One way they each loved to sweat includes:
What is Snowboarding or Fly Fishing and What is Running, yoga or hiking
We attended the session for 3 reasons about people data
What are safe ways of using, sharing and protecting it
this refers to all data lululemon collects and stores for all lululemon employees, former employees, applicants, candidates, consultants, contractors, and vendors
What is People Data?
What is Personal Information (PI) aka Personally Identifiable Information (PII)?
Any information that is reasonably capable of being associated with a specific person – whether consumer, household, or employee.
What is Personal Information (PI) aka Personally Identifiable Information (PII)?
Data access is assigned at the role level and all users are granted roles based on job function.
What is role access ?
Within the various systems you have an assigned role and access rights that let you see data
What is role access?
Number of sharepoint sites at lululemon
What is over 25,000?
this refers to any information in print, electronic, or audio-visual format, including but not limited to machine-readable data and printed data on all media, principal copies, backup copies, and archival copies
What is people data ?
The name of the first beacon lit to call Gondor for Aid?
What is Amon Dîn?
In LOTR Gandalf breaks a bridge beneath the Balrog that bridge was called
What is Bridge of Khazad-dûm, also known as Durin's Bridge?
The character referenced in BAD practice of protecting people data
Who is golum?
These are a better place to store files and can have tight controls when managed
What are teams folders?
Demographic and sentiment make up what type of people data
What is our most sensitive people data?
Recap (not part of answer)
Demographic gender, age, faith, race or ethnicity
Sentiment - survey results, comments, collected data
Approved by lululemon's management for public release, meaning it can be shared freely without risk
What is External Data
The security principle that each role is granted the minimum data access authorizations to perform its job function.
What is Least Privledge
A place to change where your files download to for increased safety & security
What is OneDrive?
This Elf says "You shall not pass" in The Lord of the Rings
Who is Gandalf ?
Data retention rules do not apply to this type of data so they should be deleted as soon as possible.
What is a working copy?
Potentially sensitive and not meant for public sharing. Internal data should only be shared with lululemon staff or approved external individuals or groups with a formal, contractual relationship with lululemon.
What is internal?
Your basic work identifiers (email, preferred name, org, manager/supervisor, location
Restricted people data needs to be accessed in role permissioned systems while minimizing the export and retention in external files.
What is in system access?
Three places to consider when scheduling a recurring clean-up task
What are your
Hard Drive, SharePoint & Teams folders ?
They enforce programmatic security. That way if the email gets forwarded to someone with less privilege, access is enforced automatically
Why use Teams links or Systems links?
Three actions you can take now and forever to protect people data include Clean up your laptop and phone, Schedule a recurring task to clean up your files and
What is send a link, not a File?
These two types of data could harm the organization, our Guests, or our employees if shared without authorization and ould severely harm the organization, our Guests, or our employees if shared without authorization.
What is confidential & restricted ?
(Note: rstricted also includes sensitive information)
- pay code, hours worked
- Actual pay, benefits selected
-What you might think of as your true PII (Home address, personal phone number, dependents, Legal Name, Passport data, Government ID or numbers)
Their role is to define what is the appropriate level of Least Privilege for each role/job function and assist in implementing role access that matches those access privileges
What is the role of People Data Governance?