About the Project
The General Data Protection Regulation
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect in the European Union (EU) in May 2018. The GDPR sets out strict requirements for the collection, use, storage, and protection of personal data, and gives individuals specific rights over their personal information, such as the right to access, the right to erasure, and the right to data portability.
Despite not being part of the EU, Albania can be impacted by this regulation, as GDPR applies not only to companies based in the EU, but also to companies outside of the EU if they offer goods or services to, or monitor the behavior of, individuals in the EU. Non-compliance with the GDPR can result in significant fines and reputational damage.
Informing the public and our students about the GDPR it is important because it sets out strict rules for the handling of personal data and applies to a wide range of activities, including the development, deployment, and use of software and technology. As a result, understanding the GDPR is becoming an increasingly important skill for all of us, especially IT professionals and those who contribute to all sectors of the economy.
By learning about the GDPR, CIT students can develop an understanding of how to design, develop, and deploy software and technology in a way that complies with data protection regulations. This includes understanding the technical and organizational measures that must be taken to protect personal data, as well as the legal framework for processing personal data.
The Project Objectives
To increase understanding of the GDPR among students, individuals, and organizations.
To promote EU best practices in data protection and privacy.
To promote excellence in education and research in the field of Data Protection
To prepare the future software engineers have a special focus on personal data;
To help prevent financial and reputational damage that may result from non-compliance with GDPR.
Needs analysis and specific objectives
This project aims to address the following Data Protection issues in Albania:
- Lack of information among citizens (importance and how to protect personal data);
- Lack of information among companies who deal with personal data of citizens, special focus the IT companies, where Big Data are elaborated on daily basis;
- Lack of information in public and private education institutions and in the health system.
The objectives of the project are based on a sound needs analysis in line with the specific objectives of the Jean Monnet Module projects. The project aims to address the challenge of ensuring that individuals, businesses, and organizations are aware of their obligations and responsibilities under the GDPR.
- Objective 1: To raise awareness among citizens, businesses, and organizations about the provisions of the GDPR and its impact on personal data protection.
- Indicator: Number of individuals (students), businesses, and organizations reached through the project’s awareness-raising activities (teaching process, workshops, roundtables, seminars).
- Objective 2: Improve curricula of IT programs by introducing students to Data Protection issues before Masters’ programs.
- Indicator: Number of students participating in the teaching program.
- Objective 3: To provide training and guidance to individuals, businesses, and organizations on how to comply with the GDPR.
- Indicator: Number of individuals, businesses, and organizations that have received training and guidance through the project’s activities.
- Objective 4: To promote the use of best practices for data protection in the EU.
- Indicator: Number of individuals, businesses, and organizations that have adopted best practices for data protection as a result of the project’s activities.
- Objective 5: To develop informative GDPR materials (handbooks, brochures) for teachers/professors, hospital administrators, software engineers etc.
- Indicator: Numbers of teachers, professors, hospital administrators, and software engineers receiving the materials.
The objectives are clear, measurable, realistic, and achievable within the duration of the project. By defining appropriate indicators for measuring achievement, the project can ensure that it is making progress toward its goals and can demonstrate its impact to stakeholders.
The project aims to address the gap in knowledge and understanding of the GDPR and its provisions among individuals, businesses, and organizations. By raising awareness and providing training and guidance, the project will help to ensure that the GDPR is implemented effectively and that personal data is protected in line with EU standards.
Concept and methodology
The approach and methodology behind the project are designed to achieve the project’s objectives most effectively and efficiently. These components will ensure that the project is well-informed, effective, and efficient in achieving its goals.
Needs Analysis
The project will conduct a needs analysis to identify the current level of awareness about the GDPR and its provisions, as well as the training and guidance needs of individuals, businesses, and organizations. This will inform the design and implementation of the project’s activities.
Multi-disciplinary Team
The project will bring together a team of experts from different fields, including law, IT, and communications, to provide a comprehensive and nuanced understanding of the GDPR and its implications. This will ensure that the project’s activities are informed by the latest research and best practices in the field.
Awareness-raising Activities
The project will carry out a range of awareness-raising activities, including workshops, roundtables, seminars, aimed at individuals, businesses, and organizations. These activities will provide information and guidance on the GDPR and its impact on personal data protection.
Teaching, Training, and Guidance
The project will provide teaching, training and guidance to IT students on how to comply with the GDPR. This will include practical guidance on best practices for data protection and how to implement these in a manner that is in line with the GDPR that is actually missing in the current curricula.
Dissemination and Communication
The project includes open lectures/seminars in other universities in Albania, and will disseminate its results and best practices through a range of channels, including a dedicated website, social media, and publications. This will ensure that the project’s impact and results are widely known and accessible.
Impact and ambition
The short-term effects of the project are expected to include:
- Increased Awareness:
- The project will increase awareness among target groups about the importance of data protection and the GDPR. This will help individuals, businesses, and organizations to understand their rights and responsibilities in relation to data protection and to take appropriate measures to protect their personal and sensitive data.
- Improved Knowledge:
- The project will improve the knowledge of target groups about the GDPR, including
its provisions, requirements, and obligations. This will help individuals, businesses, and organizations to understand how to comply with the regulations and to take steps to protect their data effectively.
- The project will improve the knowledge of target groups about the GDPR, including
- Increased Capacity:
- The project will increase the capacity of target groups to implement data protection measures and to comply with the GDPR. This will include training and awareness-raising activities, as well as the development of tools and resources to support implementation.
The medium-term effects of the project are expected to include:
- Improved Compliance:
- The project will help individuals, businesses, and organizations to improve their compliance with the GDPR and to take appropriate measures to protect their personal and sensitive data.
- Enhanced Trust:
- The project will enhance the trust of individuals and organizations in the EU’s data protection framework, including the GDPR. This will help to build confidence in the EU’s ability to protect personal and sensitive data and to encourage greater participation and engagement in data protection initiatives.
- Increased Engagement:
- The project will increase engagement among target groups in data protection initiatives and encourage greater participation in related activities. This will help to build a culture of data protection and raise awareness about the importance of protecting personal and sensitive data.
The long-term effects of the project are expected to include:
- Improved Data Protection Practices:
- The project will help to improve data protection practices among individuals, businesses, and organizations, and to promote a culture of data protection in the EU. This will help to build a more secure and trustworthy digital environment and to ensure the protection of personal and sensitive data.
- Greater Compliance with the GDPR:
- The project will help to increase compliance with the GDPR and to promote a culture of data protection in the EU. This will help to build a more secure and trustworthy digital environment and to ensure the protection of personal and sensitive data.