Data Protection and Information Security (DBIS)

Purpose

The department aims to ensure that SSI continuously complies with data protection regulations and information security requirements. The department supports all of SSI’s business areas through advice and professional sparring and operates SSI’s management system for data protection, cyber security, and information security.

Tasks

• Development and maintenance of SSI’s management system for data protection and information security, including policies, procedures, and records.
• Conducting awareness and training activities across SSI.
• Advising SSI’s professional areas and management on the lawful and secure processing of data, including personal data.
• Supporting projects and development activities, including research projects, data sharing, and the use of, for example, AI.
• Contract negotiation.
• Handling information security incidents and personal data breaches.
• Responding to inquiries from citizens regarding SSI’s processing of personal data.
• Assisting with inspections from authorities, etc.
• Contributing to regulatory work and ministerial support within data protection and information security.