Policies Flashcards
What are the seven principles of Privacy by Design?
- Proactive, not reactive; preventative, not remedial
- Privacy as the default
- Privacy embedded into design
- Full functionality—positive-sum, not zero-sum
- End-to-end security—life cycle protection
- Visibility and transparency
- Respect for user privacy
What are the two major groups of privacy design strategies?
Process-oriented strategies and Data-oriented strategies
What are process-oriented privacy design strategies?
Process-oriented strategies guide the processes that ensure the responsible handling of personal data by:
* Enforcing established policies and processes
* Demonstrating compliance with policies and processes
* Informing the individual about how their data will be handled
* Providing users with control over how their data will be handled
What are data-oriented privacy design strategies?
Data-oriented strategies use technical measures to protect personal data by:
* Separating the processing of data, either logically or physically
* Minimizing how much data is collected and processed
* Abstracting data (by summarizing, grouping or approximating) to limit the amount of detail in the data
* Hiding data in ways that make it unconnectable or unobservable to others
What is ISO/IEC 27701?
ISO/IEC 27701 is considered the first mainstream global privacy management standard. It defines processes and provides guidance for protecting personal information on an ongoing, evolving basis and specifies the requirements for establishing, implementing, maintaining and continually improving a privacy-specific information security management system.
What are four examples of obfuscation?
Masking: Masking is a means of permitting parts of a sensitive value to be visible while leaving the remainder of the value shielded from view.
Randomization: Randomization uses random information or randomizes the data to complicate linking personal information back to an individual.
Noise: Noise adds false data to information to complicate identification of valid personal information.
Hashing: Hashing is taking user identifications and converting them into an ordered system to track the user’s activities without directly using personal information.
What are examples of Data Minimization?
Data segregation: Data segregation stores data in different areas to prevent aggregation or access to large amounts of data or linking data.
Compression: Compressing data, such as an audio file, maintains its comprehensibility while removing characteristics that may distinguish an individual.
Aggregation: Data aggregation is the process of combining data from multiple records so that the combined data reflects the attributes of a group versus an individual.
Deletion: Deleting unneeded or expired data is one of the best ways to remove the risk that can come from having too much data.
Deidentification: Deidentification is an action to remove identifying characteristics from data. Deidentified data is information that does not actually identify an individual. Some laws require specific identifiers to be removed.
Name five common security practices
Data loss prevention (DLP): DLP helps to ensure that sensitive data is not inadvertently released to the wrong person or entity.
Destruction: At the end of its life cycle, data should be destroyed.
Encryption: Encryption is the process of obscuring information, often through the use of a cryptographic scheme, in order to make the information unreadable without special knowledge, i.e., the use of code keys.
Auditing and testing: Auditing and testing are essential to verify that privacy requirements are being met and to validate the appropriateness of those requirements.
Access controls for physical and virtual systems: Access control is a mechanism by which access permission to a resource is managed.
Name two new privacy enhancing technologies
Differential privacy: Differential privacy is a database technique that permits the analysis of user data stored within the database without revealing any information about individuals that is unavailable to those without access to the database.
Homomorphic encryption: Homomorphic encryption is a type of advanced technology that prevents raw data from being accessed while still allowing for analysis of the data.
True or False: Vendors should be held to the same privacy standards as the organization they serve.
True! When engaging vendors, remember to: create a policy that outlines selection and logistics; identify vendors and their legal obligations; evaluate risk, policies and server locations; develop a thorough contract; and monitor vendors’ practices and performance
True or False: Vendors that provide cloud computing services may pose distinct privacy challenges
Therefore, a cloud computing acceptable use policy should: maintain compliance; require that agreements be approved by leadership; maintain data privacy and security; and mitigate risks of using cloud-based services
How long are you allowed to keep data under the GDPR?
No specified timeframe- it’s as long as you have a legitimate business purpose
What are the common goals of internal information security policies?
protecting against unauthorized access; providing stakeholders with information efficiently, while maintaining confidentiality, integrity and availability; promoting compliance with laws, regulations, standards and other organizational policies; and promoting data quality.
