Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CIPM > Module 2 - Privacy Governance > Flashcards

Module 2 - Privacy Governance Flashcards

1
Q

What is Privacy Governance?

A
  • It is foundational to a Privacy Program
  • Privacy Governance is a component that guides the privacy function towards compliance and supports the organization’s broader goals.
  • It consists of:
    a) Privacy vision/mission statement
    b) Scope/Charter of the privacy program
    c) Privacy framework
    d) Privacy strategy
    e) Structuring the privacy team.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What’s the difference between mission and vision?

A

Mission = what we do, who we do it for, and how we do it different or better

Vision = Description of what we believe or want to achieve.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the key components of a privacy strategy?

A
  1. Business Alignment - how does privacy enhance the business goals? Budget
  2. Data governance of personal information - applicable laws, data lifecycle,
  3. Inquiry/compliant handling procedures - training individuals, use technology to efficiently respond
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Where should privacy program sit within an organization?

A

It depends.
Which department has the most influence?
Who has the budget?
Who is the strongest supporter of privacy?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What’s the different between a Privacy Strategy and a Privacy Framework?

A

Privacy Program Strategy (PPS) is the “why?” - Why is privacy important to the organization.
Privacy Program Framework (PPF) is the “what?” - i.e. what form or structure will the privacy program take?

PPF - provides the implementation roadmap. Provides a benchmark to measure program. Includes policies and procedures. E.g. ISO 27001.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What does the Privacy Program Framework include?

A
  • Organizational policies
  • Standards and guidelines
  • Program activities
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are the different types of PPF?

A
  1. Principles and standards - e..g OECD data protection principles, AICPA General Accepted Privacy Principles (GAPP), ETSI 3GPP, ISO 27001
  2. Laws, regulations and programs - PIPEDA, Australian Privacy Principles, GDPR, LGPD, HIPAA, BCR
  3. Privacy program management solutions - NIST Privacy Engineering and Risk Management
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the privacy policy life cycle?

A
  1. Draft
  2. Get approval
  3. Disseminate & socialize
  4. Train
  5. Review & Revise
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the different kinds of privacy governance model within an organization?

A
  1. Centralized
  2. Localized/decentralized
  3. Hybrid
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are the factors that determine what kind of privacy governance model a organization adapts?

A
  1. Organizational Structure
  2. Existing governance model
  3. Privacy team’s position and authority
  4. Program maturity
  5. Senior leadership and stakeholder involvement
  6. Internal partnerships
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CIPM (3 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions