Privacy

Thu
19
Jan

Key Principles to maintain Privacy and Confidentiality

Key Principles to maintain Privacy and Confidentiality

The Key Principles for the foundation of commitment to maintain Privacy and Confidentiality are as follows:

 

I. Transparency: Organization needs to be transparent about the collection and use of PII and Customer Data. Unit that collect PII and Customer Data must disclose to individuals and customers how PII and Customer Data will be collected, used and shared. They must collect, use, and share PII and Customer Data in accordance with its disclosures and with applicable laws and regulations. Disclosures must be clear, visible and easily accessible, and available or provided before or at the time of collection of the PII and Customer Data, or as soon after the collection as feasible.

Thu
17
Nov

What are you trying to protect?

What are you trying to protect?

Business and organizations today spent a lot of time and effort developing its customer base, highly specialized operating procedures, or some revolutionary technology or product. It has become imperative in today’s time to have a confidentiality and privacy policy in place to protect your customer/ business information or products from possible competitors and hackers.

Before you decide whether you really need a confidentiality and privacy policy for your organization you'll have to classify the information that you deal with and identify what you actually want to protect.

Employers can have a hard time knowing what they should consider secret. It's hard to control employees' access to information unless you know what you're trying to protect.

In deciding what's confidential about your business, look at:

Mon
19
Sep

Business value creation is a function of regulatory compliance

Business value creation is a function of regulatory compliance
Europen Union  and United States of America, both have been front runners in enhancing and enforcing privacy regulations across different industries. The focus has been to ensure that firstly there is sufficient notice to and adequate consent from customers[1] before personal data is processed. Secondly, personal data is processed with adequate security measures, and finally that personal data is disposed off securely once the purpose for which the personal data was acquired, has been fulfilled.
The incentives for regulation compliance has been increasing gradually across globe. With GDPR put forth formally, any organization with EU interest has a regulatory risk of higher of 4% of global revenue and 20 million euros. This takes data regulatory risk straight in to the board room.
 

Conflict between Business and Regulations

Thu
24
Dec

What is Privacy and It's Governing Principles?

What is Privacy and It's Governing Principles?

Privacy is key concern for customer's, people's  and employee's confidence. Privacy governance enables companies to expand their business scope across various geographies in compliance with geographical privacy regimes. Having a strong privacy safeguards deployment also enables adoption of various technologies including cloud technology for business expansion. There are multiple channels like web, social media , instant messaging , partner networks through which organizations are trying to understand customer’s purchasing habits and present the related service and product to them. In this process companies  are collecting lot of customer personally identifiable (PII) data without understanding the implication of incorrect use of this data and having loose protection controls. Organizations needs to follow the basic privacy principle while dealing with privacy data.

Mon
31
Aug

Data collection, usage & retention: resultant risks

Enterprises have been struggling to decide on a question related to customer data for too long which is “how much data to collect, how best to use it and how long or how much to retain in view of privacy and security concerns”.  This dilemma continues in their efforts to comply with various regulations, Customers’ reasonable expectations and Internet of things or for that matter in every business decision.
One possible example of inappropriate usage of key customer data could be collection of PAN numbers by Indian Railways. This critical information (PAN) is publicly displayed on Reservation charts which could be a clear violation of reasonable privacy practices. Another example could be that of credit rating or credit reporting and permissible uses of customer credit report information under certain circumstances.  

Sun
30
Aug

Are security and privacy one and the same?

security and privacy

We are faced with this question many times, so what are the similarities and differences between security and privacy let’s start by looking at their definition.
Privacy is an individual’s right to safeguard his or her information shared with third party from un-acceptable disclosure other than the reasons for which the information is shared with third party. Many countries have enacted laws to ensure data privacy. Examples of data covered under privacy include health records, credit card data, and financial data.
Security is protection of information to prevent it from, unauthorized access which may lead to information loss (leakage, deletion) resulting financial loss, reputation or legal litigations. Security is to ensure confidentiality, integrity and availability of any type of data which may include personal data.

Wed
17
Jun

European Privacy Directive Explained

European Privacy Directive Explained

The European Union privacy focus has been more broadly on the individual’s right to privacy regardless of industry vertical. The EU Data Protection (Directive 95/46/EC) is stricter from data protection perspective. This often becomes a challenge for MNCs, how to handle data especially when they need to transfer data across international boundaries. These regulations include:

Pages

Subscribe to RSS - Privacy