lecture_privacy

lecture_privacy - Information Privacy IS-2150/TEL-2810 -...

Info iconThis preview shows pages 1–8. Sign up to view the full content.

View Full Document Right Arrow Icon
Information Privacy IS-2150/TEL-2810 - Introduction to Security Dec. 6, 2011 Amirreza Masoumzadeh
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
What is privacy? Hard to define “Privacy is the claim of individuals, groups, or institutions to determine for themselves when, how, and to what extent information about them is communicated to others” ▫ Alan Westin, Privacy and Freedom, 1967 2
Background image of page 2
OECD Guidelines on the Protection of Privacy (1980) Collection limitation Data quality Purpose specification Use limitation Security safeguards Openness Individual participation Accountability 3 http://www.oecd.org/document/18/0,3343,en_2649_34255_1815186_1_1_1_1,00.html#part2
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
FTC Fair Information Practice Principles Notice/Awareness Choice/Consent Access/Participation Integrity/Security Enforcement/Redress 4 http://www.ftc.gov/reports/privacy3/fairinfo.shtm
Background image of page 4
Privacy Laws EU: Comprehensive ▫ European Directive on Data Protection US: Sector specific ▫ HIPAA (Health Insurance Portability and Accountability Act of 1996) Protect individually identifiable health information ▫ COPPA ( Children„s Online Privacy Protection Act of 1998 ) Address collection of personal information from children under 13, how to seek verifiable parental consent from their parents, etc. ▫ GLB ( Gramm-Leach-Bliley-Act of 1999 ) Requires financial institutions to provide consumers with a privacy policy notice, including what info collected, where info shared, how info used, how info protected, opt-out options, etc. 5
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Online Privacy Seal Programs (1) WebTrust ▫ Developed by the American Institute of Certified Public Accountants and the Canadian Institute of Chartered Accountants ▫ Privacy standards established by the Online Privacy Alliance, the EU, and Canada with regard to business practices and information privacy, transaction integrity, and security TRUSTe ▫ Founded by Electronic Frontier Foundation and CommerceNet Consortium, Inc. ▫ Adherence to TRUSTe's privacy policies of disclosure, choice, access, and security ▫ Ongoing oversight and alternative dispute resolution processes 6 http://www.uschamber.com/issues/technology/online-privacy-seal-programs
Background image of page 6
Online Privacy Seal Programs (2) BBBOnLine ▫ Developed by the Council of Better Business Bureaus
Background image of page 7

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 8
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 31

lecture_privacy - Information Privacy IS-2150/TEL-2810 -...

This preview shows document pages 1 - 8. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online