Today, organizations update their websitesÃ¢â‚¬â„¢ privacy policies more frequently to comply with the emerging regulations (e.g., GDPR, CCPA). Accordingly, today it is even more challenging for individuals to read privacy policies. The practical problem here is that organizations are attempting to comply with the regulations in order to protect themselves against potential lawsuits (therefore, detailed written privacy policies); however, this makes it practically infeasible for individuals to be informed about how their personal data is being collected, processed, and used by organizations.
As an InfoSec or privacy professional, your job is to:
(1)Provide a description of the proposed technique, method, or framework and make sure to justify any assumption(s) you make, if any. You can also use the GDPR summary document to strengthen your proposal. For example, you may consider incorporating into your proposal the Rights of the Data Subject, GDPR Chapter 3. (1-2 pages, double space)
(4)Suggest measures for validating the effectiveness of the proposed policy. (1-2 pages, double space)
(5)Add references whenever applicable.
———-Please use the attached presentation as a base for the framework that will be used for the report and build on it.
Ã¢â‚¬Â¢ Standard Framework mandated by the law and regulators
(one detailed policy e.g. GDPR)
Ã¢â‚¬â€œ applicable sections of policy depending on Information
Technology product/service i.e. different categories
Ã¢â‚¬Â¢ Clickable info/motion graphic page(s)
Ã¢â‚¬Â¢ (data collection, data storage, data processing/use, data sharing,
Ã¢â‚¬â€œ Approx. 15 words max for each element
Easy for customers to read and understand
Enforced customers to read to read
Higher transparency between firms and customers
data, and fair treatments of firms at the same time
Thank You !
Manage privacy the way your customers want!
Purchase answer to see full