This preview shows page 1. Sign up to view the full content.
Unformatted text preview: he ability of U.S.
companies to engage in many trans-Atlantic
transactions “Safe Harbor” Framework
Bridges U.S. privacy approaches with the
EU Certifying to the safe harbor will assure that
EU organizations know that your company
provides "adequate" privacy protection, as
defined by the Directive. Benefits small & medium enterprises. Voluntary for U.S. organizations 7 Safe Harbor Rules
1. Notice: Organizations must notify individuals about the purposes for which
they collect and use information about them.
they 2. Choice: Organizations must give individuals the opportunity to choose (opt
out) whether their personal information will be disclosed to a third party or
used for a purpose incompatible with the purpose for which it was originally
collected or subsequently authorized by the individual. 3.
3. Onward Transfer (Transfers to Third Parties): To disclose information to a
third party, organizations must apply the notice and choice principles. 4.
4. Access: Individuals must have access to personal information about them that
an organization holds and be able to correct, amend, or delete that information
where it is inaccurate, except where the burden or expense of providing access
would be disproportionate to the risks to the individual's privacy in the case in
question, or where the rights of persons other than the individual would be
violated. Safe Harbor Rules
5. Security: Organizations must take reasonable precautions to protect personal
information from loss, misuse and unauthorized access, disclosure, alteration and
destruction. 6. Data integrity: Personal information must be relevant for the purposes for which
it is to be used. An organization should take reasonable steps to ensure that data
is reliable for its intended use, and is accurate, complete, and current.
is 7. Enforcement: In order to ensure compliance with the safe harbor principles,
there must be (a) readily available and affordable independent recourse
mechanisms; (b) procedures for verifying that the commitments companies make
to adhere to the safe harbor principles have been implemented; and (c)
obligations to remedy problems arising out of a failure to comply wit...
View Full Document
This note was uploaded on 03/31/2014 for the course ACCOUNTING 1 taught by Professor Salendrez during the Spring '13 term at De La Salle University.
- Spring '13