IAPP TRUSTe SYMPOSIUM 9-11 JUNE 2004

Slides:



Advertisements
Similar presentations
DATA PROTECTION and Research University Research Ethics Committee – David Cauchi David Cauchi Office of the Commissioner for Data Protection.
Advertisements

Convention for the protection of individual with regard to automatic processing of personal data “The purpose of this convention is to secure in the territory.
CHARTERED SECRETARIES AUSTRALIA New Privacy Laws 6 June 2013.
The Data Protection (Jersey) Law 2005.
Getting data sharing right for every child
Data Protection.
Identity Management In A Federated Environment Identity Protection and Management Conference Presented by Samuel P. Jenkins, Director Defense Privacy and.
 Main Benefit: › The main benefit that is occurred by introducing a new system to work with or instead of the old system, is the forms of cost saving.
DATA PROTECTION and Research University Research Ethics Committee – David Cauchi Office of the Data Protection Commissioner.
Privacy and Data Protection Issues for UCLA Christine Borgman, Professor Information Studies.
A European View of Privacy Protection John Woulds Director of Operations UK Data Protection Commissioner National Conference on Privacy, Technology & Criminal.
Per Anders Eriksson
Anglican Province of Canada Privacy Policy. Commitment to Privacy The Privacy Policy, including the Web Privacy Statement, is the Anglican Province of.
Contemporary Issues in Canadian Health Care Nola M. Ries, MPA, LLM Adjunct Assistant Professor, University of Victoria Research Associate, Health Law Institute,
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview
Protecting information rights –­ advancing information policy Privacy law reform for APP entities (organisations)
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
Data Protection for Church of Scotland Congregations
Privacy: Understanding the Needs, Policy, and Approach Owen Greenspan Director Law and Policy Program.
The Data Protection Act 1998 The Eight Principles.
The Eighth Asian Bioethics Conference Biotechnology, Culture, and Human Values in Asia and Beyond Confidentiality and Genetic data: Ethical and Legal Rights.
A Perspective: Data Flow Governance in Asia Pacific & APEC Framework Martin Abrams October 21, 2008.
IBT - Electronic Commerce Privacy Concerns Victor H. Bouganim WCL, American University.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
The right item, right place, right time. DLA Privacy Act Code of Fair Information Principles.
The Data Protection Act What the Act covers The misuse of personal data by organisations and businesses.
Twelve Guiding Principles for the Regulation of Surveillance Camera Systems Presented by: Alastair Thomas Date: 23 rd October 2013.
Malcolm Crompton APEC Information Privacy Framework: review, impact, & progress APEC Symposium on Information Privacy Protection in E Government & E Commerce.
PROTECTION OF PERSONAL DATA. OECD GUIDELINES: BASIC PRINCIPLES OF NATIONAL APPLICATION Collection Limitation Principle There should be limits to the collection.
Data Protection - Rights & Responsibilities Information Commissioner’s Office Orkney Practice Forum 4 th July 2007.
An Introduction to the Privacy Act Privacy Act 1993 Promotes and protects individual privacy Is concerned with the privacy of information about people.
An NZFFBS Training Module.  Objective 1  State the purpose and principles of the Privacy Act and the Code of Ethics.  Objective 2  Apply the principles.
APEC Privacy Framework “The lack of consumer trust and confidence in the privacy and security of online transactions and information networks is one element.
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
© University of Reading Lee Shailer 06 June 2016 Data Protection the basics.
Can you share? Yes you can!! Angus Council Adult Protection Maureen H Falconer, Senior Policy Officer Information Commissioner’s Office.
Presented by Ms. Teki Akuetteh LLM (IT and Telecom Law) 16/07/2013Data Protection Act, 2012: A call for Action1.
Protection of Personal Information Act An Analysis on the impact.
Clark Holt Limited (Co. No ), Hardwick House, Prospect Place, Swindon, SN1 3LJ Authorised and regulated by the Solicitors Regulation.
Understanding Privacy An Overview of our Responsibilities.
Data Protection Laws in the European Union John Armstrong CMS Cameron McKenna.
Understanding Privacy An Overview of our Responsibilities.
Director, Internet, Science, and Technology Research
The Data Protection Act 1998
The Data Protection Act 1998
Data Accessibility, Confidentiality and Copyright United Nations Statistics Division Demographic Statistics Section.
Privacy principles Individual written policies
Issues of personal data protection in scientific research
Data Protection: EU & International
HIPAA Administrative Simplification
General Data Protection Regulation
APP entities (organisations)
The Data Protection Act 1998
Data workshop WhOSE DATA IS IT ANYWAY? Alexia Christie
PERSONAL DATA PROTECTION ACT 2010
EU Directive 95/46/EC (Paragraph 2) “Whereas data-processing systems are designed to serve man; whereas they must Respect their fundamental rights.
Data Protection & Freedom of Information- An Introduction
GDPR - Individual’s Rights
Cyberforum 2018 March 8, 2018 Los Angeles GDPR & SECURITY
G.D.P.R General Data Protection Regulations
General Data Protection Regulation
Data Protection principles
OECD Guidelines Collection Limitation: should be limited to personal data, obtained by lawful and fair means, and (where appropriate) with knowledge and.
Investor protection and MIFID
General Data Protection Regulations 2018
Mandatory Breach Reporting (isn’t *that* bad)
Privacy and Information Quality
Data Protection What can I do? GDPR Principles General Data Protection
“Seven-minute Staff Meeting”
Presentation transcript:

IAPP TRUSTe SYMPOSIUM 9-11 JUNE 2004 Peter Ford Acting Deputy Secretary Criminal Justice and Security Attorney-General’s Department Australia 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 1) Preventing Harm Recognizing the interests of the individual to legitimate expectations of privacy, personal information protection should be designed to prevent the misuse of such information. Further, acknowledging the risk that harm may result from such misuse of personal information, specific obligations should take account of such risk, and remedial measures should be proportionate to the likelihood and severity of the harm threatened by the collection, use and transfer of personal information . 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 2) Notice Personal information controllers should provide clear and easily accessible statements about their practices and policies with respect to personal information that should include: a) the fact that personal information is being collected; b) the purposes for which personal information is collected; c) the types of persons or organizations to whom personal information might be disclosed;. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 2) Notice (continued) d) the identity and location of the personal information controller, including information on how to contact them about their practices and handling of personal information; e) the choices and means the personal information controller offers individuals for limiting the use and disclosure of, and for accessing and correcting, their personal information. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 2) Notice (continued) All reasonably practicable steps shall be taken to ensure that such notice is provided either before or at the time of collection of personal information. Otherwise, such notice should be provided as soon after as is practicable. It may not be appropriate for personal information controllers to provide notice regarding the collection and use of publicly available information. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 3) Collection Limitation The collection of personal information should be limited to information that is relevant to the purposes of collection and any such information should be obtained by lawful and fair means, and where appropriate, with notice to, or consent of, the individual concerned. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 4) Uses of Personal Information Personal information collected should be used only to fulfil the purposes of collection and other compatible or related purposes except: a) with the consent of the individual whose personal information is collected; b) when necessary to provide a service or product required by the individual; or, c) by the authority of law and other legal instruments, proclamations and pronouncements of legal effect. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 5) Choice Where appropriate, individuals should be provided with clear, prominent, easily understandable, accessible and affordable mechanisms to exercise choice in relation to the collection, use and disclosure of their personal information. It may not be appropriate for personal information controllers to provide these mechanisms when collecting publicly available information. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 6) Integrity of Personal Information Personal information should be accurate, complete and kept up-to-date to the extent necessary for the purposes of use. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 7) Security Safeguards Personal information controllers should protect personal information that they hold with appropriate safeguards against risks, such as loss or unauthorized access to personal information, or unauthorized destruction, use, modification or disclosure of information or other misuses. Such safeguards should be proportional to the likelihood and severity of the harm threatened, the sensitivity of the information and the context in which it is held, and should be subject to periodic review and reassessment. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 8) Access and Correction Individuals should be able to: a) obtain from the personal information controller confirmation of whether or not the personal information controller holds personal information about them; 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 8) Access and Correction (Continued) b) have communicated to them, after having provided sufficient proof of their identity, personal information about them; i. within a reasonable time; ii. at a charge, if any, that is not excessive; iii. in a reasonable manner; iv. in a form that is generally understandable; and, 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 8) Access and Correction (Continued) c) challenge the accuracy of information relating to them and, if possible and as appropriate, have the information rectified, completed, amended or deleted. Such access and opportunity for correction should be provided except where: (i) the burden or expense of doing so would be unreasonable or disproportionate to the risks to the individual’s privacy in the case in question ; 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 8) Access and Correction (Continued) (ii) the information should not be disclosed due to legal or security reasons, security [or to protect confidential commercial information]; or (iii) the information privacy of persons other than the individual would be violated. If a request under (a) or (b) or a challenge under (c) is denied, the individual should be provided with reasons why and be able to challenge such denial. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 9) Accountability A personal information controller should be accountable for complying with measures that give effect to the Principles stated above. When personal information is to be transferred to another person or organization, whether domestically or internationally, the personal information controller should obtain the consent of the individual or exercise due diligence and take reasonable steps to ensure that the recipient person or organization will protect the information consistently with these Principles. 7/04/2019 Australian Attorney-General's Department

Australian Attorney-General's Department International Privacy: A model for Privacy in the Future – APEC and Beyond 10. Maximizing Benefits [Recognizing the interests of economies in maximizing the economic and social benefits available to their citizens and businesses, personal information should be collected, processed, held and used in a manner that both protects individual information privacy and avoids unnecessary barriers to the free flow of information both within and across borders. Therefore, information privacy protections should be designed to advance information privacy protections and to realize the benefits of developments in information management.] 7/04/2019 Australian Attorney-General's Department

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.